972710ef37489bd0f6557361342df2b71b4c6ff918b025b4df2943131a268860

Sharing

Copy URL

Twitter E-mail

General

Target

972710ef37489bd0f6557361342df2b71b4c6ff918b025b4df2943131a268860
Size

174KB
MD5

dafc8559fc5c9c10afaac118f88eae8e
SHA1

286f4195ecfa85cc47caa9d3785c8db37a16edf4
SHA256

972710ef37489bd0f6557361342df2b71b4c6ff918b025b4df2943131a268860
SHA512

14a0203ea03a80ab82624d2f7f322692b1cd7fd3159922a346ea7ef44cb82587c6391172efb232c841df9ee19c07c138f29ce91adc917886f5cd1a32f28ec9e5
SSDEEP

1536:PtMcRchAdBP1qo4IDKgKR/hZPO+kwfzSjviHnp7Y80Cp1f2Qdw:tcGeCDK7BQ6GjviHnp7Y80Cp1eQ

Score

N/A

Malware Config

Signatures

Files

972710ef37489bd0f6557361342df2b71b4c6ff918b025b4df2943131a268860
.exe windows x86

2ab579534fb87f6aba40504683ea36f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueW
FreeSid
GetTokenInformation
AdjustTokenPrivileges
RegCreateKeyExA
RegOpenKeyExW
RegQueryValueExW
SetSecurityDescriptorDacl
AdjustTokenPrivileges
OpenProcessToken
RegCloseKey
RegQueryValueExA
AddAccessAllowedAce
RegCreateKeyExW
AddAccessAllowedAce
AddAccessAllowedAce
RegCreateKeyExA
RegSetValueExW
RegOpenKeyW
GetLengthSid
AddAccessAllowedAce
RegQueryInfoKeyW
RegOpenKeyExW
RegEnumValueW
CloseServiceHandle
RegCloseKey
RegCreateKeyExA
InitializeAcl
CloseServiceHandle
InitializeSecurityDescriptor
RegSetValueExW
RegEnumKeyExW
RegDeleteValueW
RegCloseKey
AddAccessAllowedAce
RegEnumValueW
AddAccessAllowedAce
RegEnumKeyExW
RegSetValueExA
RegEnumKeyExW
RegCreateKeyExA
InitializeAcl
RegCreateKeyExW
FreeSid
RegQueryValueExW
AllocateAndInitializeSid
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegQueryValueExA
RegSetValueExA
RegDeleteKeyW
InitializeSecurityDescriptor
RegQueryInfoKeyW
RegSetValueExA
RegEnumKeyExW
RegQueryValueExW
InitializeSecurityDescriptor
RegSetValueExA
RegQueryInfoKeyW
GetTokenInformation
GetLengthSid
InitializeSecurityDescriptor
RegOpenKeyW
RegSetValueExA
OpenProcessToken
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyExW
RegOpenKeyW
RegOpenKeyW
GetLengthSid
AllocateAndInitializeSid
RegDeleteValueW
RegOpenKeyExA
RegQueryValueExA

user32

IsIconic
InvalidateRect
GetCursorPos
GetMenu
ScreenToClient
LoadMenuW
DefWindowProcW
LoadAcceleratorsW
SetTimer
SendDlgItemMessageW
DispatchMessageA
IsWindowVisible
LoadMenuW
SystemParametersInfoW
GetMessageW
KillTimer
GetDesktopWindow
EndDialog
GetDesktopWindow
DestroyWindow
GetWindowLongW
LoadIconW
TranslateMessage
FillRect
EndDialog
MessageBoxA
SendMessageW
SystemParametersInfoW
GetClientRect
ReleaseCapture
IsDlgButtonChecked
PeekMessageW
CheckDlgButton
GetFocus
DispatchMessageW
LoadIconW

kernel32

GetLastError
GetCurrentProcessId
CloseHandle
UnhandledExceptionFilter
LoadLibraryW
LoadLibraryA
DeleteCriticalSection
VirtualFree
SetEvent
InitializeCriticalSection

Sections

Size: 148KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�vmp0
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

�reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2ab579534fb87f6aba40504683ea36f2

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

Size: 148KB - Virtual size: 160KB

Size: 3KB - Virtual size: 4KB

Size: 2KB - Virtual size: 4KB

�vmp0 Size: 5KB - Virtual size: 5KB

.rsrc Size: 1024B - Virtual size: 4KB

�reloc Size: 3KB - Virtual size: 4KB

�reloc Size: 3KB - Virtual size: 4KB

�reloc Size: 1024B - Virtual size: 4KB

�reloc Size: 2KB - Virtual size: 4KB

�reloc Size: 4KB - Virtual size: 4KB

�vmp0
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 1024B - Virtual size: 4KB

�reloc
Size: 3KB - Virtual size: 4KB

�reloc
Size: 3KB - Virtual size: 4KB

�reloc
Size: 1024B - Virtual size: 4KB

�reloc
Size: 2KB - Virtual size: 4KB

�reloc
Size: 4KB - Virtual size: 4KB