cabda92e1c493ca87f2d47bfd7a23ef8f5ed24de709299fef210c1776c982ab0

General

Target

cabda92e1c493ca87f2d47bfd7a23ef8f5ed24de709299fef210c1776c982ab0
Size

120KB
MD5

c2a9e859847f659116d40c0dcc7903a8
SHA1

785160667ebd32de8cf250989ef55af0220e2745
SHA256

cabda92e1c493ca87f2d47bfd7a23ef8f5ed24de709299fef210c1776c982ab0
SHA512

76d07c65822dd8707ce3be62ece3429c95306c51da682b0ba03231ed70b8b0c9afa0657c849962827decef0fab3335ba7d7751bf9020032189748146751db8dc
SSDEEP

3072:BiVN3GyjA9F5L/zPbBLSoiXhYfhe7t4dLxiaUONIzB:BsN3Gyj2rtGrXufBiaUhz

Score

N/A

Malware Config

Signatures

Files

cabda92e1c493ca87f2d47bfd7a23ef8f5ed24de709299fef210c1776c982ab0
.dll windows x86

97acd51e3588af5191dc7a9adcc303a1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
LocalFree
lstrlenA
ReleaseMutex
GetCommandLineA
WaitForSingleObject
InterlockedCompareExchange
CreateDirectoryA
CreateEventA
GetProcAddress
lstrlenW
EnterCriticalSection
GetModuleHandleA
CreateProcessA
CopyFileA
GetLastError
SetLastError
ExitProcess
LeaveCriticalSection
GetModuleFileNameA
OpenEventA
UnmapViewOfFile
MapViewOfFile
LoadLibraryA
InterlockedDecrement
Sleep
GetTickCount
CloseHandle

ole32

CoUninitialize
OleSetContainedObject
CoCreateGuid
CreateBindCtx
CoInitialize
OleCreate

user32

FindWindowA
GetWindowLongA
CreateWindowExA
GetSystemMetrics
GetParent
PostQuitMessage
TranslateMessage
DispatchMessageA
SetTimer
RegisterWindowMessageA
SetWindowLongA
GetMessageA
DestroyWindow
SendMessageA
KillTimer
PostMessageA
GetClassNameA
DefWindowProcA

oleaut32

SysFreeString
SysAllocStringLen
SysAllocString

shlwapi

UrlUnescapeW
StrStrIW

advapi32

RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA

Exports

Exports

usbAuthenticationUsb

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97acd51e3588af5191dc7a9adcc303a1

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB