c5ce1f984eef4f949191d7699b733bdb0b6a4ef72ae37a8a799a31b62dd5b607

General

Target

c5ce1f984eef4f949191d7699b733bdb0b6a4ef72ae37a8a799a31b62dd5b607
Size

184KB
MD5

681ca6845d94d5d3b10e95ed197f347d
SHA1

b332f884778733c042aabc8b72689d4618801ac8
SHA256

c5ce1f984eef4f949191d7699b733bdb0b6a4ef72ae37a8a799a31b62dd5b607
SHA512

cc60afb94b2c15a88f8e3ac05c91fe81b78cc75e963c5ef8641ea415823a212ecbf63e1ae06b179d4525efbeea419b99950110eb6f6586182ab4baf6aea7095e
SSDEEP

3072:6pdQBC5ZhQdebdIs6zhh9K52s3DEnSNPbwSocu5sz7Km8XYhlT1HotCwEK:6pmBMZhq/QhDoEw5cvyLXYh04

Score

N/A

Malware Config

Signatures

Files

c5ce1f984eef4f949191d7699b733bdb0b6a4ef72ae37a8a799a31b62dd5b607
.exe windows x86

02268102387b8ca0d21e5e42987edf92

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZClose
LZCopy
LZOpenFileA

kernel32

GetModuleFileNameW
GetTickCount
ReleaseMutex
MultiByteToWideChar
CopyFileA
SetFilePointer
AddAtomW
CreateMutexA
GetCurrentThreadId
InterlockedDecrement
GetTempFileNameA
LocalFree
CreateDirectoryA
GlobalLock
lstrlenA
GetModuleFileNameA
GetSystemTimeAsFileTime
GetVolumeInformationA
GetVersionExA
InitializeCriticalSection
CloseHandle
GetFileSize
EnumResourceNamesA
DeviceIoControl
QueryPerformanceCounter
ReadFile
DeleteFileA
Sleep
DeleteCriticalSection
GlobalFree
VirtualFree
InterlockedIncrement
CreateFileA
CheckNameLegalDOS8Dot3W
GetCurrentProcessId
WaitForSingleObject
CreateFileW
WideCharToMultiByte
GlobalUnlock
GetTempPathA
DisableThreadLibraryCalls
VirtualAlloc
GetFileAttributesA
GetLastError
SetFileAttributesA
LocalAlloc
GetSystemTime
FreeLibrary

advapi32

RegEnumKeyA
RegEnumKeyExA
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
RegOpenKeyA
RegCloseKey

setupapi

CM_Get_Child
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

Sections

.text
Size: 94KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02268102387b8ca0d21e5e42987edf92

Headers

File Characteristics

Imports

lz32

kernel32

advapi32

setupapi

Sections

.text Size: 94KB - Virtual size: 233KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 87KB - Virtual size: 86KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 94KB - Virtual size: 233KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 87KB - Virtual size: 86KB

.rsrc
Size: 512B - Virtual size: 4KB