7e3459bc2fbb51b8987d8f07c697cca27b682f79d8bf84c5682d6b7725be685c

Sharing

Copy URL Twitter E-mail

General

Target

7e3459bc2fbb51b8987d8f07c697cca27b682f79d8bf84c5682d6b7725be685c
Size

175KB
MD5

6b2e7aeb765832644a498450909149fe
SHA1

4e375a394f4a46ff11a861750be71e2e5a6a3551
SHA256

7e3459bc2fbb51b8987d8f07c697cca27b682f79d8bf84c5682d6b7725be685c
SHA512

719a23ba4163fc6dee3ee667c4c2ac24ee1a04d573908a2a6d6f648dc61b195d1215e16e0ad4f329bd850df1f1937f40afc01515299f5573c656edac23c8420b
SSDEEP

3072:dud6gklJ9W8wwstPRhJ5mM38xVicj3EvRvrLp8VyFIzLiJ:dudmVW/pRGoKEJ/p8V2Iq

Score

N/A

Malware Config

Signatures

Files

7e3459bc2fbb51b8987d8f07c697cca27b682f79d8bf84c5682d6b7725be685c
.exe windows x86

1e12ab7a5f68a781a64e66649afc1ef2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEndOfFile
HeapSize
WriteConsoleA
LeaveCriticalSection
RtlUnwind
GetACP
ReadFile
GetTimeZoneInformation
HeapFree
SetEnvironmentVariableA
WriteFile
LCMapStringW
GetOEMCP
GetTimeFormatA
GetCurrentProcess
RaiseException
GetLocaleInfoA
InitializeCriticalSection
UnhandledExceptionFilter
MultiByteToWideChar
LoadLibraryA
GetConsoleOutputCP
QueryPerformanceCounter
GetDateFormatA
EnumResourceTypesA
SetStdHandle
IsDebuggerPresent
GetCurrentProcessId
EnterCriticalSection
HeapReAlloc
HeapCreate
GetStringTypeW
VirtualAlloc
CreateMailslotW
SetFilePointer
CompareStringA
LCMapStringA
GetTickCount
CompareStringW
IsValidCodePage
SetUnhandledExceptionFilter
HeapDestroy
VirtualFree
FreeLibrary
GetCPInfo
TerminateProcess
GetSystemTimeAsFileTime
GetStringTypeA

iphlpapi

GetIpAddrTable

advapi32

SetSecurityInfo
CloseServiceHandle
InitializeSecurityDescriptor
GetInheritanceSourceW
LookupPrivilegeDisplayNameA
UnlockServiceDatabase
AdjustTokenPrivileges
InitializeAcl
GetTokenInformation
EqualSid
LookupPrivilegeValueA
RegCreateKeyExW
OpenSCManagerW
GetSecurityInfo
AddAce
RegDeleteKeyW
AllocateAndInitializeSid
RegQueryValueExW
LookupPrivilegeNameA
SetEntriesInAclA
DeleteService
FreeInheritedFromArray
RegDeleteValueW
SetEntriesInAclW
OpenServiceW
GetAclInformation
IsValidAcl
ChangeServiceConfigW
GetAce
IsValidSecurityDescriptor
QueryServiceConfigW
SetSecurityDescriptorDacl
FreeSid
GetNamedSecurityInfoW
RegGetKeySecurity
GetSecurityDescriptorControl
LookupAccountSidW
SetNamedSecurityInfoW
QueryServiceStatus
CreateServiceW
EnumDependentServicesW
RegSetValueExW
RegCloseKey
QueryServiceLockStatusW
RegEnumKeyExW
RegSaveKeyW
ControlService
RegOpenKeyExW
RegRestoreKeyW
LockServiceDatabase
OpenProcessToken
ChangeServiceConfig2W
StartServiceA
RegEnumValueW

oleacc

LresultFromObject
AccessibleObjectFromPoint

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e12ab7a5f68a781a64e66649afc1ef2

Headers

File Characteristics

Imports

kernel32

iphlpapi

advapi32

oleacc

Sections

.text Size: 42KB - Virtual size: 42KB

.rdata Size: 3KB - Virtual size: 154KB

.data Size: 128KB - Virtual size: 128KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 42KB - Virtual size: 42KB

.rdata
Size: 3KB - Virtual size: 154KB

.data
Size: 128KB - Virtual size: 128KB

.rsrc
Size: 512B - Virtual size: 4KB