b4262a13930fadde8aa9a9e674fa443f3d8809988f54e81dc54db619066cf430

General

Target

b4262a13930fadde8aa9a9e674fa443f3d8809988f54e81dc54db619066cf430
Size

184KB
MD5

4d9324967ef1d7d1d2e1fdf1f420b54a
SHA1

5a57fe4d41b03988d4f9b954c854e501cb54e94f
SHA256

b4262a13930fadde8aa9a9e674fa443f3d8809988f54e81dc54db619066cf430
SHA512

5a60cb50918b795080a8e9349c967e2042fa1c13fcc640aee1220886796de8706f22311b20a0bc4e548631fbf23d44c904eb455a8bfdb88f5f12a56cd39415ea
SSDEEP

3072:jiINLM5KiIgwgPGblk0/tJHIwr6Omn6mPdgiBxUA/6DM25Xa/c9P40:pLMlfGbR/zH1GJaAyNa/cR

Score

N/A

Malware Config

Signatures

Files

b4262a13930fadde8aa9a9e674fa443f3d8809988f54e81dc54db619066cf430
.exe windows x86

0b4486f5dfd6d9497e0282add3825a17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyA
RegDeleteKeyA
RegQueryValueA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyExA
RegCloseKey

kernel32

CreateFileA
AddAtomW
LCMapStringA
GetThreadLocale
GetStartupInfoA
GetCPInfo
FreeEnvironmentStringsW
GetEnvironmentStrings
GetStdHandle
SetFilePointer
TlsSetValue
GetEnvironmentStringsW
GetFileType
WriteFile
WideCharToMultiByte
SetUnhandledExceptionFilter
GetVersionExA
LCMapStringW
FindFirstFileA
EnumResourceNamesA
VirtualProtect
GetCurrentProcess
HeapSize
TlsGetValue
SetStdHandle
IsBadCodePtr
SetHandleCount
TerminateProcess
FreeEnvironmentStringsA
GetFileAttributesA
GetFullPathNameA
IsBadReadPtr
GetModuleFileNameA
WriteFileGather
GetOEMCP
GetLocaleInfoA
GetStringTypeW
UnhandledExceptionFilter
FlushFileBuffers
GetStringTypeA
ReadFile
GetACP
GetDiskFreeSpaceA

setupapi

CM_Get_Depth
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

lz32

LZCopy
LZClose
LZOpenFileA

Sections

.text
Size: 99KB - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0b4486f5dfd6d9497e0282add3825a17

Headers

File Characteristics

Imports

advapi32

kernel32

setupapi

lz32

Sections

.text Size: 99KB - Virtual size: 239KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 81KB - Virtual size: 81KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 99KB - Virtual size: 239KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 81KB - Virtual size: 81KB

.rsrc
Size: 512B - Virtual size: 4KB