e7e64ed2722f1195ea18b6a22fe01f8ab6eaa3dce6c22c6c695d56357df801e5

General

Target

e7e64ed2722f1195ea18b6a22fe01f8ab6eaa3dce6c22c6c695d56357df801e5
Size

177KB
MD5

25a74607234d3c59ed6d67338a2f513f
SHA1

6593f72ff685c46aa20223b73fe305f6a16e4d4d
SHA256

e7e64ed2722f1195ea18b6a22fe01f8ab6eaa3dce6c22c6c695d56357df801e5
SHA512

e9019edd30c8fcba9ff2a1b52a4b0fe0c238dd5588a95e7949bbe8398a2e046ba38a5b442a3531bf3e65f3dd1e48f0c931cc3f8f4d04ba1b63efb15af25a2770
SSDEEP

3072:uYK/kmpS1FUCQpAoUBIu/PLfEb7hi6jTQkCaNNdY/YkfGgAdMpjTWHkltjnM06r:uimpsq+o6uT7NygEBKMJTZjnM

Score

N/A

Malware Config

Signatures

Files

e7e64ed2722f1195ea18b6a22fe01f8ab6eaa3dce6c22c6c695d56357df801e5
.exe windows x86

ef836f8e4610df795df3b81ee521a127

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
IsBadCodePtr
InitializeCriticalSection
AddAtomA
GetOEMCP
GetThreadLocale
FreeEnvironmentStringsA
GetLastError
MulDiv
LoadLibraryA
lstrcmpiA
ReadFile
FreeEnvironmentStringsW
IsBadReadPtr
GetStringTypeA
GetModuleHandleA
GetEnvironmentStringsW
GetCPInfo
SetUnhandledExceptionFilter
CloseHandle
lstrcpyA
GetProcAddress
WideCharToMultiByte
LeaveCriticalSection
lstrcpynA
WriteFile
FindFirstFileA
GetTickCount
lstrlenA
MultiByteToWideChar
EnumResourceNamesW
GetEnvironmentStrings
lstrlenA
GetCurrentThreadId
GetStringTypeW
FlushFileBuffers
DeleteCriticalSection
Sleep
GetFullPathNameA
CreateFileA
SetFilePointer
FreeLibrary
LCMapStringW
VirtualProtect
EnterCriticalSection
lstrcatA
LCMapStringA
UnhandledExceptionFilter
SetStdHandle
GetStartupInfoA
GetFileAttributesA
GetDiskFreeSpaceA
RaiseException

setupapi

CM_Get_Global_State
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 89KB - Virtual size: 241KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef836f8e4610df795df3b81ee521a127

Headers

File Characteristics

Imports

kernel32

setupapi

Sections

.text Size: 89KB - Virtual size: 241KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 84KB - Virtual size: 84KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 89KB - Virtual size: 241KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 84KB - Virtual size: 84KB

.rsrc
Size: 512B - Virtual size: 4KB