f38256aaa6900f236bd8725404e79972b77c81808c59a52b07afa77c73a6d912

General

Target

f38256aaa6900f236bd8725404e79972b77c81808c59a52b07afa77c73a6d912
Size

185KB
MD5

6bd66480ead14df1ee711124f1c824f7
SHA1

b054dc6684fbf9f0cd6d7a0d63a32b1d0bb77535
SHA256

f38256aaa6900f236bd8725404e79972b77c81808c59a52b07afa77c73a6d912
SHA512

3bf2db1384432df4f81b069ee6779187aa9d27bc91be558993f55a1f8128ab0aab16e3a06ec3dd6252a5b9598d46834ab3dc93e103f377f583c442b251b68f78
SSDEEP

3072:sjfd++g0tee5LL7zGHh8HBN0TVbrdHHCOwbS8/U+c7690jccJpKGk6fW8:UR7FLPGHacr0O8/U+c7vgwK96fW

Score

N/A

Malware Config

Signatures

Files

f38256aaa6900f236bd8725404e79972b77c81808c59a52b07afa77c73a6d912
.exe windows x86

23fb3c444b1ff152a735312426a2822b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
InitializeCriticalSection
LeaveCriticalSection
LCMapStringW
MultiByteToWideChar
GetStringTypeA
FreeLibrary
GetOEMCP
AddAtomA
GetModuleHandleA
FindFirstFileA
GetEnvironmentStringsW
lstrcmpiA
FreeEnvironmentStringsW
lstrcpyA
CreateFileA
GetStringTypeW
lstrcpynA
GetFileAttributesA
IsBadReadPtr
DeleteCriticalSection
GetCPInfo
GetFullPathNameA
SetStdHandle
EnumResourceNamesW
CloseHandle
GetDiskFreeSpaceA
LoadLibraryA
lstrcmpA
SetUnhandledExceptionFilter
IsBadCodePtr
UnhandledExceptionFilter
LCMapStringA
SetDllDirectoryW
GetEnvironmentStrings
Sleep
GetStartupInfoA
MulDiv
WideCharToMultiByte
EnterCriticalSection
FreeEnvironmentStringsA
ReadFile
GetTickCount
lstrlenA
FlushFileBuffers
GetCurrentThreadId
GetThreadLocale
SetFilePointer
GetLastError
GetProcAddress
VirtualProtect
WriteFile
RaiseException

setupapi

CM_Get_Child
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 98KB - Virtual size: 246KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23fb3c444b1ff152a735312426a2822b

Headers

File Characteristics

Imports

kernel32

setupapi

Sections

.text Size: 98KB - Virtual size: 246KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 83KB - Virtual size: 83KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 98KB - Virtual size: 246KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 83KB - Virtual size: 83KB

.rsrc
Size: 512B - Virtual size: 4KB