ddcc2583c3c779d78752eb263416d51263a02e7bfd5fe8e0fa96d0ea45afa301

Sharing

Copy URL

Twitter E-mail

General

Target

ddcc2583c3c779d78752eb263416d51263a02e7bfd5fe8e0fa96d0ea45afa301
Size

442KB
MD5

4a39155444298850e5f4979f0210b725
SHA1

44188109fa84ddbde1c480796c8c37d85f59fc9b
SHA256

ddcc2583c3c779d78752eb263416d51263a02e7bfd5fe8e0fa96d0ea45afa301
SHA512

06b0c9a43d26f8c4b06b7a8d6ed3ca35a42b88cb5d379322d8cf9763587b6f18d1b2d14a49920500f6906eeed039b521ad0f203c6b686d28e2bc9d3d6f8c1e95
SSDEEP

12288:S/7coH9fR3Sxa7rXDvbnaHszyhg0hlAyw2oKquF:S/YodJ3ZbbtvKjw2oKquF

Score

N/A

Malware Config

Signatures

Files

ddcc2583c3c779d78752eb263416d51263a02e7bfd5fe8e0fa96d0ea45afa301
.exe windows x86

3eacd8080a932ba7a0618bfd0deaff1c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_CxxThrowException
free
_purecall
__CxxFrameHandler
malloc
_adjust_fdiv
??1type_info@@UAE@XZ
?terminate@@YAXXZ
__dllonexit
wcsrchr
_wcsupr
_wtol
wcsncmp
wcstol
_ltow
_callnewh
_initterm
_except_handler3
_onexit
_wcsicmp
_ultow
wcsncpy
wcscmp
wcscpy
wcslen
??0exception@@QAE@ABV0@@Z

msvcp60

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??1out_of_range@std@@UAE@XZ
??0out_of_range@std@@QAE@ABV01@@Z
??0logic_error@std@@QAE@ABV01@@Z
??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ
?nothrow@std@@3Unothrow_t@1@B
??0bad_alloc@std@@QAE@ABV01@@Z
??1bad_alloc@std@@UAE@XZ
??0bad_alloc@std@@QAE@PBD@Z
??0out_of_range@std@@QAE@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@1@@Z

atl

ord15
ord30
ord58
ord32
ord20
ord16
ord21
ord23
ord17

iassvcs

IASVariantChangeType

rtutils

TraceVprintfExW
TraceRegisterExW
TraceDeregisterA

oleaut32

VariantClear
SysFreeString
SysAllocString
LoadRegTypeLi
SysStringLen
SafeArrayCreate
VariantInit
SafeArrayDestroy
SafeArrayCreateVector
SafeArrayUnaccessData
SafeArrayAccessData
SysAllocStringByteLen
SysStringByteLen
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetDim
GetErrorInfo
VariantCopy

ole32

CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoInitializeEx
CoCreateInstance
CLSIDFromProgID
CoRevertToSelf
CoImpersonateClient
CoUninitialize
CoInitializeSecurity

advapi32

CloseServiceHandle
RegisterServiceCtrlHandlerA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
DeleteService
OpenServiceA
OpenSCManagerA
RegDeleteKeyA
RegEnumKeyExA
RegSetValueExA
RegCreateKeyExA
SetServiceStatus

rpcrt4

UuidCreate
RpcStringFreeA
UuidToStringA

user32

wsprintfW

kernel32

lstrlenA
EnterCriticalSection
LeaveCriticalSection
VirtualQuery
InterlockedExchange
Sleep
FormatMessageW
lstrcpynA
lstrcatA
lstrcpyA
lstrcmpiA
SetLastError
CreateEventW
WaitForSingleObject
CloseHandle
CreateDirectoryA
GetEnvironmentVariableA
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
DisableThreadLibraryCalls
SetEvent
GetModuleFileNameA
GetLastError
lstrcmpA
SwitchToThread
TryEnterCriticalSection
LocalFree
DeleteFileA
CopyFileA
GetWindowsDirectoryA
GetSystemWow64DirectoryA
RemoveDirectoryA

Exports

Exports

?adasdasdasd@@YGHPAEH@Z
?oiuqwoeuopqwe@@YGXPADID@Z

Sections

.text
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.uuup
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kuup
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ouup
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.duup
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.auuu
Size: 413KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qiii
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gooo
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.faaa
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3eacd8080a932ba7a0618bfd0deaff1c

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

msvcp60

atl

iassvcs

rtutils

oleaut32

ole32

advapi32

rpcrt4

user32

kernel32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 8KB

.rdata Size: 5KB - Virtual size: 8KB

.data Size: 1KB - Virtual size: 4KB

.uuup Size: 512B - Virtual size: 4KB

.kuup Size: 512B - Virtual size: 4KB

.ouup Size: 512B - Virtual size: 4KB

.duup Size: 512B - Virtual size: 4KB

.auuu Size: 413KB - Virtual size: 416KB

.qiii Size: 512B - Virtual size: 4KB

.gooo Size: 512B - Virtual size: 4KB

.faaa Size: 512B - Virtual size: 4KB

.rsrc Size: 11KB - Virtual size: 24KB

.text
Size: 7KB - Virtual size: 8KB

.rdata
Size: 5KB - Virtual size: 8KB

.data
Size: 1KB - Virtual size: 4KB

.uuup
Size: 512B - Virtual size: 4KB

.kuup
Size: 512B - Virtual size: 4KB

.ouup
Size: 512B - Virtual size: 4KB

.duup
Size: 512B - Virtual size: 4KB

.auuu
Size: 413KB - Virtual size: 416KB

.qiii
Size: 512B - Virtual size: 4KB

.gooo
Size: 512B - Virtual size: 4KB

.faaa
Size: 512B - Virtual size: 4KB

.rsrc
Size: 11KB - Virtual size: 24KB