a2b9516d745a081a08924a0d9d9e396fe0b7acfbe2a3cd68413e9d13d85ec08a

Sharing

Copy URL

Twitter E-mail

General

Target

a2b9516d745a081a08924a0d9d9e396fe0b7acfbe2a3cd68413e9d13d85ec08a
Size

1.1MB
MD5

111402a234365176c2d82e2922685856
SHA1

6e6f5d20decc0e5ae6980ecedec77d7fbba3ec51
SHA256

a2b9516d745a081a08924a0d9d9e396fe0b7acfbe2a3cd68413e9d13d85ec08a
SHA512

1ccbf4f9e49e55b9320f9808f7fc4ec8039850d7ee9498d2cc6d1098160185d5ef93cd3bd20b9bf5c721425a03e4235e3a64faf3286d471cf5aff457421f59db
SSDEEP

24576:DPa6f/9PePDs1GTaZZ2S8EiGC8/QY4boKQ/r+gj7I:LQPDcG2X2S8wCuQYgoKQ/PPI

Score

N/A

Malware Config

Signatures

Files

a2b9516d745a081a08924a0d9d9e396fe0b7acfbe2a3cd68413e9d13d85ec08a
.exe windows x86

fb8eecb19a440861c07c2985b3a6bf34

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentVariableW
ExpandEnvironmentStringsW
SetFilePointer
WriteFile
GetLocalTime
OutputDebugStringW
ExitThread
HeapFree
CreateProcessW
GetModuleHandleW
MultiByteToWideChar
GetStdHandle
GetFileType
WriteConsoleW
SetLastError
GetConsoleOutputCP
SearchPathW
LocalAlloc
GetCommandLineW
CreateMutexA
WaitForSingleObject
ReleaseMutex
CopyFileA
ExpandEnvironmentStringsA
LocalFree
WritePrivateProfileStringA
UnhandledExceptionFilter
FindFirstFileA
FindNextFileA
CompareStringA
lstrcmpA
GetPrivateProfileSectionA
lstrcmpiA
lstrcpynA
lstrcpyA
GetWindowsDirectoryA
GetCommandLineA
GetCurrentDirectoryA
CreateFileW
LockResource
CreateFileA
lstrlenA
GetShortPathNameA
WritePrivateProfileSectionA
GetSystemDirectoryA
GetPrivateProfileStringA
FreeLibrary
LoadLibraryExA
SetFileAttributesA
GetStartupInfoA
InterlockedDecrement
SetCurrentDirectoryA
CreateDirectoryA
GetSystemInfo
GetVersionExA
HeapAlloc
GetProcessHeap
HeapReAlloc
GetStartupInfoW
GetLastError
GetProcAddress
LoadLibraryW
SetEvent
CloseHandle
WaitForMultipleObjects
WaitCommEvent
CreateEventW
SetCommMask
QueryPerformanceCounter
GetModuleHandleA
EscapeCommFunction
Sleep
ExitProcess
GetComputerNameW
ResetEvent
CreateThread
SetCurrentDirectoryW
GetSystemDirectoryW
FindFirstFileW
FindClose
SetFileAttributesW
GlobalAlloc
ReadFile
SetFileTime
DosDateTimeToFileTime
CreateDirectoryW
DeleteFileW
GetTempFileNameW
GetTempPathW
VerifyVersionInfoW
VerSetConditionMask
GetFileAttributesW
lstrcpynW
lstrcatA
FindNextFileW

user32

CharPrevA
CharNextA
LoadStringA
GetDlgItemTextA
DialogBoxParamA
CheckDlgButton
wsprintfW
GetDlgItem
SetFocus
ExitWindowsEx
LoadStringW

advapi32

RegDeleteValueA
RegSetValueExA
OpenProcessToken
RegOpenKeyExA
RegQueryValueExA
RegEnumValueA
RegQueryValueExW
RegOpenKeyExW
ReportEventW
RegisterEventSourceW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
SetServiceStatus
RegCloseKey
RegCreateKeyExA

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHChangeNotify
SHGetDesktopFolder
SHFileOperationA

ole32

CoInitializeSecurity
CoCreateInstance
CoTaskMemFree
CoInitialize
CoUninitialize

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

msvcrt

fread
exit
wcsrchr
wcschr
wcstombs
swscanf
swprintf
wcsncpy
wprintf
wcscpy
atol
wcsncmp
printf
fwscanf
fwprintf
vswprintf
vfwprintf
free
malloc
fprintf
setlocale
wcslen
wcscat

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb8eecb19a440861c07c2985b3a6bf34

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

version

msvcrt

setupapi

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 76KB - Virtual size: 2.2MB

.rsrc Size: 12KB - Virtual size: 9KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 76KB - Virtual size: 2.2MB

.rsrc
Size: 12KB - Virtual size: 9KB