9707cc3d68d6b79cb84e8f61ad2121ad6ce60483ca54fd4521808a121dec4d19

Sharing

Copy URL Twitter E-mail

General

Target

9707cc3d68d6b79cb84e8f61ad2121ad6ce60483ca54fd4521808a121dec4d19
Size

253KB
MD5

51b4c7496cfb0e736a130ed1f1f01f73
SHA1

d61a61b3c33ba289438fd756e84343458b9b9b0c
SHA256

9707cc3d68d6b79cb84e8f61ad2121ad6ce60483ca54fd4521808a121dec4d19
SHA512

e867c4660ca09e588fd2c13856e6342a5b1b9f6473455cd51ff144c840b099ef4597bf3a2cb15ab6f3dc46eaf75bd9615c4ccf86307a50489fa25f335631e6d5
SSDEEP

6144:Mjf9q9bm5NdTiwx1LyAnaZIm2O7E6vEL8irXOGFPQgrFQ0HaN1I:Mjf9j5fTiw7nm2OI6vEL8irXOkQiQ7

Score

N/A

Malware Config

Signatures

Files

9707cc3d68d6b79cb84e8f61ad2121ad6ce60483ca54fd4521808a121dec4d19
.exe windows x86

467c225b99b5477ab02268089de02699

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32NextW
CreateToolhelp32Snapshot
GetCurrentProcessId
SetStdHandle
Module32FirstW
GetStringTypeW
HeapReAlloc
GetConsoleCP
SetFilePointer
RtlUnwind
Process32FirstW
CreateProcessW
SetCurrentDirectoryW
FindClose
lstrlenW
OpenProcess
WaitForSingleObject
FindFirstFileW
LockResource
GetVersionExW
SizeofResource
LoadResource
FindResourceW
MultiByteToWideChar
WriteFile
DeleteFileW
CloseHandle
DeviceIoControl
GetProcAddress
GetCurrentDirectoryW
GetLastError
CreateFileW
CopyFileW
LoadLibraryW
GetSystemDirectoryW
GetModuleHandleW
FreeLibrary
GetCurrentProcess
LocalFree
ReadConsoleInputW
SetConsoleMode
GetConsoleMode
GetSystemTimeAsFileTime
GetCommandLineW
HeapSetInformation
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapAlloc
HeapFree
IsProcessorFeaturePresent
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
WriteConsoleW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
Sleep
HeapSize
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WideCharToMultiByte
LCMapStringW
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoW
HeapCreate
QueryPerformanceCounter
GetTickCount
FlushFileBuffers

shlwapi

SHGetValueW
PathFileExistsW

wininet

InternetOpenW
InternetReadFile
InternetCloseHandle
InternetOpenUrlW
InternetQueryDataAvailable

user32

GetSystemMetrics
CharUpperW
CharLowerW

advapi32

GetTokenInformation
ConvertSidToStringSidW
FreeSid
SetEntriesInAclW
AllocateAndInitializeSid
SetNamedSecurityInfoW
RegEnumKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
InitiateSystemShutdownW
RegEnumKeyExW
OpenProcessToken
RegSetValueExW
RegCloseKey
ControlService
RegOpenKeyExW
ChangeServiceConfigW
RegDeleteValueW
StartServiceW
RegDeleteKeyW
RegQueryValueExW
RegSetValueW
RegCreateKeyExW
OpenServiceW
OpenSCManagerW
DeleteService
CloseServiceHandle
CreateServiceW

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 53KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

467c225b99b5477ab02268089de02699

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shlwapi

wininet

user32

advapi32

Sections

.text Size: 68KB - Virtual size: 67KB

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 103KB - Virtual size: 102KB

.reloc Size: 53KB - Virtual size: 56KB

.text
Size: 68KB - Virtual size: 67KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 103KB - Virtual size: 102KB

.reloc
Size: 53KB - Virtual size: 56KB