b0f7225515e4cc217657a5ad41555329d298c47db9137ef00cd076d2f5389579

Sharing

Copy URL

Twitter E-mail

General

Target

b0f7225515e4cc217657a5ad41555329d298c47db9137ef00cd076d2f5389579
Size

92KB
MD5

155b1620013062bd00e01331c0caf0e4
SHA1

85ba4e26ea58c3d89702f3ec6bd6ad58b5fb38d7
SHA256

b0f7225515e4cc217657a5ad41555329d298c47db9137ef00cd076d2f5389579
SHA512

a6a7ad6fec60ed1e454cb0dd6aabd41d97a5379ae7d7a5de0e6dbd4f287b382403aa128fec5f61815aa5ba50a566796197114833bcb990bd5936e0ab65f56d00
SSDEEP

1536:3AK+YLaCiuLHIJUUE+yHTGSMHECciEMbtXhfzbjaZhLj1DtUM3:QKHLapcHdV6j1DbLajLj1DtUM3

Score

N/A

Malware Config

Signatures

Files

b0f7225515e4cc217657a5ad41555329d298c47db9137ef00cd076d2f5389579
.exe windows x86

7e1f3f2352f6abf041def48e5af78979

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateMutexW
CreateDirectoryW
GetWindowsDirectoryW
WaitForSingleObject
CreateProcessW
HeapFree
GetTickCount
WideCharToMultiByte
DeleteCriticalSection
DeleteFileW
Sleep
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
HeapCreate
CloseHandle
LeaveCriticalSection
GetCPInfoExW
EnterCriticalSection
HeapAlloc
CopyFileW
MultiByteToWideChar
ReadFile
SetEndOfFile
GetLocaleInfoW
HeapSize
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CreateFileA
LCMapStringW
LCMapStringA
SetFilePointer
HeapReAlloc
VirtualAlloc
ExitThread
GetCurrentThreadId
CreateThread
GetSystemTimeAsFileTime
InterlockedIncrement
InterlockedDecrement
GetVersionExA
GetProcessHeap
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleA
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
RtlUnwind
WriteFile
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
LoadLibraryA
InitializeCriticalSection

advapi32

RegEnumValueW
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
RegOpenKeyExW
RegCloseKey
ControlService
OpenServiceW
SetServiceStatus
RegisterServiceCtrlHandlerExW
StartServiceW
ChangeServiceConfig2W
CreateServiceW
StartServiceCtrlDispatcherW
CloseServiceHandle
OpenSCManagerW
RegDeleteValueW

ws2_32

WSACleanup
shutdown
closesocket
connect
htons
inet_addr
WSAStartup
gethostbyname
WSAIoctl
setsockopt
WSASocketW
send
recv
inet_ntoa

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e1f3f2352f6abf041def48e5af78979

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

Sections

.text Size: 72KB - Virtual size: 72KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 14KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 72KB - Virtual size: 72KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 14KB

.rsrc
Size: 1KB - Virtual size: 1KB