e778605324350bb772478fdc971af84e562b513d104a579424668a248688ec71

General

Target

e778605324350bb772478fdc971af84e562b513d104a579424668a248688ec71
Size

177KB
MD5

15ec6a52cac756dcf9e215ed8eaadbd1
SHA1

ca14d0c4eb73a39511939c8e88743e2293a28681
SHA256

e778605324350bb772478fdc971af84e562b513d104a579424668a248688ec71
SHA512

fbf7e5e13e0695c2dbb3f0ca878505985614f067e909c6149012d52aab22e7c6c05f6af0eee35282591c174ae4eb79dc97f33cc96fd96507e106eface4f10b49
SSDEEP

3072:aLa3HWluCT0ov1/hpCxeD16fKbS3b0/TPKaFnmBb877Uhc6fPUy/pm1x:aLaKuC51/116fKbib8TPKaS2UhZcGp

Score

N/A

Malware Config

Signatures

Files

e778605324350bb772478fdc971af84e562b513d104a579424668a248688ec71
.exe windows x86

7c59f55bbd118d92db684ac9d1e32cc7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryW
GetAtomNameW
SetFilePointer
ReadFile
FreeLibrary
GlobalAlloc
WriteFile
GetExitCodeProcess
FindNextFileW
DeleteFileW
FindFirstFileW
EnumResourceNamesW
LoadLibraryExW
GetProcAddress
GetPrivateProfileStringW
WritePrivateProfileStringW
WaitCommEvent
GetModuleHandleW
MulDiv
MultiByteToWideChar
FindClose
WaitForSingleObject
GlobalFree

rpcrt4

NdrConformantArrayFree
UuidCreate

newdev

UpdateDriverForPlugAndPlayDevicesW

setupapi

SetupDiSetClassInstallParamsW
SetupGetInfFileListA
SetupDiGetDeviceRegistryPropertyA
SetupDiCallClassInstaller
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiSetDeviceRegistryPropertyW
SetupDiCreateDeviceInfoList
SetupDiGetClassDescriptionW
SetupDiGetDeviceInstanceIdW
SetupDiBuildClassInfoList
SetupDiDeleteDeviceInfo
SetupDiCreateDeviceInfoA
SetupDiClassNameFromGuidW
SetupCopyOEMInfW
SetupDiClassGuidsFromNameW
CMP_WaitNoPendingInstallEvents
SetupCloseInfFile
SetupDiGetDeviceInstallParamsA
SetupDiGetDeviceRegistryPropertyW
SetupOpenInfFileA
SetupGetLineTextA
SetupDiGetClassDevsW
CM_Get_DevNode_Status

mprapi

MprConfigServerDisconnect
MprConfigServerConnect
MprConfigGetFriendlyName

iphlpapi

GetIpAddrTable

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 388KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7c59f55bbd118d92db684ac9d1e32cc7

Headers

File Characteristics

Imports

kernel32

rpcrt4

newdev

setupapi

mprapi

iphlpapi

Sections

.text Size: 92KB - Virtual size: 92KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 81KB - Virtual size: 80KB

.reloc Size: 1024B - Virtual size: 388KB

.text
Size: 92KB - Virtual size: 92KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 81KB - Virtual size: 80KB

.reloc
Size: 1024B - Virtual size: 388KB