c4ee1af6fd4fef42f5e3d70b7a854cf40afab8dfb0b26db4cb0066530b0693bc

General

Target

c4ee1af6fd4fef42f5e3d70b7a854cf40afab8dfb0b26db4cb0066530b0693bc
Size

280KB
MD5

5eb36d6a47672f55f552f7d0ff7f4093
SHA1

9110dc3355511ba0cfdb59e84c789a1695a2537c
SHA256

c4ee1af6fd4fef42f5e3d70b7a854cf40afab8dfb0b26db4cb0066530b0693bc
SHA512

72aff08e3557f231f8882084609c31a45ba1de38deb9bc7c92c2e35e66f4017684a0741ef0c8ef692fb69245901f6645329863ec5756f92659a3061b0874fd8c
SSDEEP

6144:zAqeJG9MfGXcLxVrorEucC6VUZabKoqsHYpN:zAqKG9sUmVrowuEbKXsHYpN

Score

N/A

Malware Config

Signatures

Files

c4ee1af6fd4fef42f5e3d70b7a854cf40afab8dfb0b26db4cb0066530b0693bc
.exe windows x86

15b930592699513ef4414acfb07af5f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
LCMapStringA
LeaveCriticalSection
GetOEMCP
GetStringTypeA
ReadFile
lstrcatA
GetStringTypeW
GetFileAttributesA
GetCPInfo
LoadLibraryA
SetUnhandledExceptionFilter
GetFullPathNameA
GetThreadLocale
MulDiv
lstrcpyA
WriteFile
GetCurrentThreadId
IsBadReadPtr
DeleteCriticalSection
lstrlenA
GetStartupInfoA
GetEnvironmentStrings
GetModuleHandleA
lstrcpynA
UnhandledExceptionFilter
EnumResourceNamesW
GetEnvironmentStringsW
GetTickCount
FreeLibrary
lstrcmpA
lstrcmpiA
CloseHandle
SetFilePointer
LCMapStringW
SetDllDirectoryW
SetStdHandle
IsBadCodePtr
InitializeCriticalSection
CreateFileA
GetProcAddress
GetDiskFreeSpaceA
WideCharToMultiByte
VirtualProtect
FindFirstFileA
FreeEnvironmentStringsW
GetLastError
FlushFileBuffers
FreeEnvironmentStringsA
Sleep
MultiByteToWideChar
EnterCriticalSection
RaiseException

setupapi

CM_Get_Child
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

Sections

.text
Size: 150KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

15b930592699513ef4414acfb07af5f8

Headers

File Characteristics

Imports

kernel32

setupapi

Sections

.text Size: 150KB - Virtual size: 285KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 127KB - Virtual size: 126KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 150KB - Virtual size: 285KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 127KB - Virtual size: 126KB

.rsrc
Size: 512B - Virtual size: 4KB