2823ebc577a7064fdbde4aae7aa8a96d7103957a52213dfbbf3b3955ff3cedce

General

Target

2823ebc577a7064fdbde4aae7aa8a96d7103957a52213dfbbf3b3955ff3cedce
Size

801KB
MD5

53a2b9afaef5b6c96f66e610656cf93a
SHA1

e1de46073e2269b022d3b6bf14694b18577aa4e7
SHA256

2823ebc577a7064fdbde4aae7aa8a96d7103957a52213dfbbf3b3955ff3cedce
SHA512

c8b148e097b6d1fdb1c5afe529e40b22c4b6a90c428406c5d7c464cb59cedca2ba292516ce8497c390c6ed12479e1c01396d5dccdf46ddb2e95e693bfad0ca30
SSDEEP

24576:B/emWTL9c2h+Dhh5+hEugTG86U2Hj/ohTh3:cDTL6hhgRzTKTR

Score

N/A

Malware Config

Signatures

Files

2823ebc577a7064fdbde4aae7aa8a96d7103957a52213dfbbf3b3955ff3cedce
.exe windows x86

65e0927b4909ed84ecc753d0aa76e36b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LeaveCriticalSection
SetFileTime
CreateMutexW
GetStartupInfoW
CreatePipe
LoadLibraryA
ReadFile
GetModuleHandleA
SetFileTime
FindResourceW
InitializeCriticalSection
lstrcatA
CloseHandle
GetLastError
IsBadWritePtr
GetExitCodeProcess
SetFileTime
lstrcpyA
FormatMessageW
GetFileSize
HeapCreate

mstscax

DllRegisterServer
DllUnregisterServer
DllCanUnloadNow
DllGetClassObject

advapi32

IsValidAcl
RegDeleteValueA
InitializeSid
CreateProcessAsUserA
IsValidSid
RegQueryValueW
ControlService
IsTextUnicode
CreateServiceW
ClearEventLogW
RegEnumKeyA
RegCreateKeyExW
IsValidSecurityDescriptor

rasapi32

DwRasUninitialize

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 728KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rich
Size: 1KB - Virtual size: 176B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 787KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ole
Size: 512B - Virtual size: 112B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

65e0927b4909ed84ecc753d0aa76e36b

Headers

File Characteristics

Imports

kernel32

mstscax

advapi32

rasapi32

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 728KB

.data Size: 4KB - Virtual size: 3KB

.rich Size: 1KB - Virtual size: 176B

.RSRC Size: 787KB - Virtual size: 1.5MB

.ole Size: 512B - Virtual size: 112B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 728KB

.data
Size: 4KB - Virtual size: 3KB

.rich
Size: 1KB - Virtual size: 176B

.RSRC
Size: 787KB - Virtual size: 1.5MB

.ole
Size: 512B - Virtual size: 112B