b39d3abc6a1f46779a9ed4d4e772f9f82b554624c74f2a4df21e1663ceeada23

General

Target

b39d3abc6a1f46779a9ed4d4e772f9f82b554624c74f2a4df21e1663ceeada23
Size

169KB
MD5

c446ab2bde39e6d8dac6d70c111cc17e
SHA1

61e35ad602d2248e51a4d3019df922a3a351c0bb
SHA256

b39d3abc6a1f46779a9ed4d4e772f9f82b554624c74f2a4df21e1663ceeada23
SHA512

08a8140a3499d8dd5c0f8313a556d933a00aeab8e552abf69fe92de9d6783ce973d1d667dbc8d45f8663ca340baec7a2bc8df9afa408ac07443a8dd62468ad39
SSDEEP

3072:PT/um/FYQJJoNwZZEqd6fOQomqqbwtBM833EQIlZnyEDN3hsap:r/uAFYQMeZZP0ocilHclZnyEDN3n

Score

N/A

Malware Config

Signatures

Files

b39d3abc6a1f46779a9ed4d4e772f9f82b554624c74f2a4df21e1663ceeada23
.exe windows x86

1622bb86549c32072b62d523d7b44f36

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFolderPathW

iphlpapi

GetIpAddrTable

shlwapi

StrCmpNIA
StrStrA

newdev

UpdateDriverForPlugAndPlayDevicesW

kernel32

GetPrivateProfileIntW
lstrlenA
GetStartupInfoA
FindClose
InterlockedExchange
RtlUnwind
GetTickCount
GetModuleHandleA
GlobalAddAtomW
GetSystemInfo
ReleaseMutex
GetSystemDirectoryW
GetProcAddress
lstrcmpiW
GetModuleHandleW
GetFileType
HeapAlloc
FreeLibrary
GetVersionExW
QueryPerformanceCounter
ExpandEnvironmentStringsW
CompareStringW
GetCurrentThreadId
EnumResourceLanguagesW
FindFirstFileW
SetFileAttributesW
FindNextFileW
GetWindowsDirectoryA
GetPrivateProfileSectionW
GetPrivateProfileStringW
WaitForSingleObject
LoadModule
LoadLibraryExA
GetCurrentDirectoryW
GetLastError
WritePrivateProfileStringW
GetCurrentProcessId
LocalFree
InterlockedCompareExchange
LoadLibraryExW
CreateMutexW
lstrcmpW
HeapFree
CopyFileW
Sleep
GetProcessHeap
SetUnhandledExceptionFilter
LoadLibraryW
GetCurrentProcess
WritePrivateProfileSectionW

setupapi

CM_Get_Sibling
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 90KB - Virtual size: 489KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1622bb86549c32072b62d523d7b44f36

Headers

File Characteristics

Imports

shell32

iphlpapi

shlwapi

newdev

kernel32

setupapi

Sections

.text Size: 90KB - Virtual size: 489KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 76KB - Virtual size: 75KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 90KB - Virtual size: 489KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 76KB - Virtual size: 75KB

.rsrc
Size: 512B - Virtual size: 4KB