aa4cd0c24ab65a5049688ca41760ec2e26ed95d08efdd0c4d418c383dc30c8ed

General

Target

aa4cd0c24ab65a5049688ca41760ec2e26ed95d08efdd0c4d418c383dc30c8ed
Size

168KB
MD5

aac7384276d96532ea6de0f905f25b94
SHA1

ec1bc86c835cf34b91173adb1586730c9877108e
SHA256

aa4cd0c24ab65a5049688ca41760ec2e26ed95d08efdd0c4d418c383dc30c8ed
SHA512

217c9ed71b823d85154a3254c6fb18a6b7ba1eea778761f9a690ff769c5125b7810d9107a7d0d6153a21d3018988cfb0a5f9464ab15868057d2389f3b6a803bb
SSDEEP

3072:Xt5lPkWzIrPzkjuQMGHwtTFXJAIRdiAvL7qUatcTWIQG7:XtfPfcrojHH+TNriA/qUa2iIQ

Score

N/A

Malware Config

Signatures

Files

aa4cd0c24ab65a5049688ca41760ec2e26ed95d08efdd0c4d418c383dc30c8ed
.exe windows x86

673d28f37ef9ee232b3eba0fb77d0625

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZCopy
LZClose
LZOpenFileA

kernel32

GetTickCount
InitializeCriticalSection
GetLastError
InterlockedDecrement
CloseHandle
GetModuleFileNameW
InterlockedIncrement
AddAtomA
GetSystemTimeAsFileTime
Sleep
GetTempPathA
GetSystemTime
GetCurrentThreadId
GetVolumeInformationA
CopyFileA
CreateFileW
ReleaseMutex
VirtualFree
CreateMutexA
MultiByteToWideChar
WideCharToMultiByte
VirtualAlloc
GetModuleFileNameA
DeleteFileA
EnumResourceNamesW
CreateDirectoryA
LocalFree
GetCurrentProcessId
SetFilePointer
GlobalFree
LocalAlloc
WaitForSingleObject
QueryPerformanceCounter
GlobalLock
CreateFileA
ReadFile
CheckNameLegalDOS8Dot3W
SetFileAttributesA
GetFileAttributesA
lstrlenA
GlobalUnlock
GetFileSize
DeviceIoControl
GetVersionExA
DeleteCriticalSection
DisableThreadLibraryCalls
GetTempFileNameA
FreeLibrary

setupapi

CM_Get_Child
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 88KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

673d28f37ef9ee232b3eba0fb77d0625

Headers

File Characteristics

Imports

lz32

kernel32

setupapi

Sections

.text Size: 88KB - Virtual size: 484KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 76KB - Virtual size: 75KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 88KB - Virtual size: 484KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 76KB - Virtual size: 75KB

.rsrc
Size: 512B - Virtual size: 4KB