da3eb7958229f409489b103df58ea218aaeba9280f4df0175bc497057d21410d

General

Target

da3eb7958229f409489b103df58ea218aaeba9280f4df0175bc497057d21410d
Size

278KB
MD5

cc44cfb5b95270b93edeb9706c3a46a2
SHA1

8faa896cfe63ce05ee7fa61aa4aebd66c43c8a34
SHA256

da3eb7958229f409489b103df58ea218aaeba9280f4df0175bc497057d21410d
SHA512

0d85ea6a635009dfa71dac6a8041a648bdabe4eb40378e5b00897f3daf7720012735ed39054de802904fc0df55ce6aaa91739673915a0e3161a8534439fd18c3
SSDEEP

6144:NKb64qXcPTjTXen2aQk44Ot3bDitEqsXJDyEksTrJDX9:NO6PXcPbXe3rU1bXquDyEzJDN

Score

N/A

Malware Config

Signatures

Files

da3eb7958229f409489b103df58ea218aaeba9280f4df0175bc497057d21410d
.exe windows x86

68761b9e1c0fb3d7828b0ef115a67bba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZCopy
LZClose
LZOpenFileA

setupapi

CM_Get_Child
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

kernel32

GlobalUnlock
CreateFileA
GetSystemTime
ReadFile
GetModuleFileNameW
GetVersionExA
Sleep
GetTickCount
AddAtomA
DeviceIoControl
WaitForSingleObject
lstrlenA
VirtualAlloc
InterlockedIncrement
CreateDirectoryA
GetLastError
DeleteFileA
GetCurrentThreadId
LocalFree
GetModuleFileNameA
EnumResourceNamesW
GlobalFree
InitializeCriticalSection
DeleteCriticalSection
CreateFileW
CopyFileA
CloseHandle
VirtualFree
GetCurrentProcessId
GetTempFileNameA
CheckNameLegalDOS8Dot3W
MultiByteToWideChar
WideCharToMultiByte
GetVolumeInformationA
GetFileSize
DisableThreadLibraryCalls
GetSystemTimeAsFileTime
GlobalLock
LocalAlloc
ReleaseMutex
GetFileAttributesA
CreateMutexA
GetTempPathA
QueryPerformanceCounter
SetFileAttributesA
InterlockedDecrement
SetFilePointer
FreeLibrary

Sections

.text
Size: 146KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68761b9e1c0fb3d7828b0ef115a67bba

Headers

File Characteristics

Imports

lz32

setupapi

kernel32

Sections

.text Size: 146KB - Virtual size: 274KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 128KB - Virtual size: 128KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 146KB - Virtual size: 274KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 128KB - Virtual size: 128KB

.rsrc
Size: 512B - Virtual size: 4KB