ccadc16edd4f75f4fb99ae175963af4ef302424a33f8abd5ca2108248a68e79b

General

Target

ccadc16edd4f75f4fb99ae175963af4ef302424a33f8abd5ca2108248a68e79b
Size

167KB
MD5

40257a4449370f8d829272f73b998443
SHA1

c4c1ee61a76b4e3ae513231558718bd9ddf89751
SHA256

ccadc16edd4f75f4fb99ae175963af4ef302424a33f8abd5ca2108248a68e79b
SHA512

92b4e823dc702b5e447656361e5f46d0188273c4b4d158b1c5d86b7f3c3a09b8b9c736eb3a5ede95b500fc462d565e40270c4d6349a2eedfee8c8d21133da912
SSDEEP

3072:KJW3NI8PM+RaFCD8Im7lVkl/I286gGpZaiOnuYalaY+bQuQwO1i0S2Zw6ykqKtH:8gXM+RwKZm7lVklw6gCZaJfa4YeQp7Mp

Score

N/A

Malware Config

Signatures

Files

ccadc16edd4f75f4fb99ae175963af4ef302424a33f8abd5ca2108248a68e79b
.exe windows x86

84d6fe29e9d5e0f4f20eed9f6ecd3e35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Get_Child
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

lz32

LZClose
LZCopy
LZOpenFileA

advapi32

RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

kernel32

InitializeCriticalSection
CreateMutexA
GlobalFree
AddAtomW
SetFileAttributesA
CreateFileA
GetTempPathA
GetFileSize
GlobalLock
GetSystemTime
DeleteFileA
SetFilePointer
CreateDirectoryA
VirtualFree
GetSystemTimeAsFileTime
GetFileAttributesA
GetModuleFileNameA
InterlockedDecrement
CopyFileA
GetModuleFileNameW
DisableThreadLibraryCalls
MultiByteToWideChar
GetVersionExA
GetVolumeInformationA
lstrlenA
InterlockedIncrement
EnumResourceNamesA
LocalFree
Sleep
GetTempFileNameA
CheckNameLegalDOS8Dot3W
GetCurrentProcessId
CloseHandle
WaitForSingleObject
ReadFile
LocalAlloc
VirtualAlloc
WideCharToMultiByte
GlobalUnlock
QueryPerformanceCounter
GetCurrentThreadId
DeviceIoControl
GetTickCount
CreateFileW
GetLastError
ReleaseMutex
DeleteCriticalSection
FreeLibrary

Sections

.text
Size: 86KB - Virtual size: 482KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84d6fe29e9d5e0f4f20eed9f6ecd3e35

Headers

File Characteristics

Imports

setupapi

lz32

advapi32

kernel32

Sections

.text Size: 86KB - Virtual size: 482KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 77KB - Virtual size: 77KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 86KB - Virtual size: 482KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 512B - Virtual size: 4KB