db60e8a0d0888327fef0ba214516b742ff9838f5f2ed9fbe039051b9be0c30ef

General

Target

db60e8a0d0888327fef0ba214516b742ff9838f5f2ed9fbe039051b9be0c30ef
Size

556KB
MD5

1cebc8a01652adf4568eaf1582f574a5
SHA1

f1db9e76444e76feec91e5b8a2313d8d2d966a36
SHA256

db60e8a0d0888327fef0ba214516b742ff9838f5f2ed9fbe039051b9be0c30ef
SHA512

a688d0f5935c1383b26e29e70f7113529a98915bb9913f7f6c07ae97d3c6433a45b020052b2e0ba56593e8003135190e2e668dd8082ecfb331896000801dd64e
SSDEEP

12288:FJihKOfIE3yqAZq3iI2MYSIMVrHSUpntyJ:F8KfE32aPQMhyUpty

Score

N/A

Malware Config

Signatures

Files

db60e8a0d0888327fef0ba214516b742ff9838f5f2ed9fbe039051b9be0c30ef
.exe windows x86

c5c63ffefea9415ad6fa40edb5c46536

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED

Imports

msacm32

acmDriverID

shlwapi

SHCreateThread
SHQueryInfoKeyA
SHQueryInfoKeyW
SHQueryValueExA
SHQueryValueExW
SHRegCloseUSKey
SHRegCreateUSKeyA
SHRegCreateUSKeyW
SHRegDeleteEmptyUSKeyA
SHRegDeleteEmptyUSKeyW
SHRegDeleteUSValueA
SHRegDeleteUSValueW
SHRegDuplicateHKey
SHRegEnumUSKeyA
SHRegEnumUSKeyW
SHRegEnumUSValueA
SHRegEnumUSValueW
SHRegGetBoolUSValueA
SHRegGetBoolUSValueW
SHRegGetPathA
SHRegGetPathW
SHRegGetUSValueA
SHRegGetUSValueW
SHRegGetValueA
SHRegGetValueW
SHRegOpenUSKeyA
SHRegOpenUSKeyW
SHRegQueryInfoUSKeyA
SHRegQueryInfoUSKeyW
SHRegQueryUSValueA
SHRegQueryUSValueW

kernel32

GetTickCount
_lopen
GetWindowsDirectoryA
GetACP
OutputDebugStringA
PeekConsoleInputA
HeapReAlloc
HeapSetInformation
SetFileApisToANSI
SetFileApisToOEM
LZRead

msi

MsiGetFeatureCostW
MsiGetFeatureInfoA
MsiGetFeatureInfoW
MsiDatabaseExportA
MsiDatabaseExportW
MsiDatabaseGetPrimaryKeysA
MsiDatabaseGetPrimaryKeysW
MsiDatabaseImportA
MsiDatabaseImportW
MsiDatabaseIsTablePersistentA
MsiDatabaseIsTablePersistentW
MsiDatabaseMergeA
MsiDatabaseMergeW
MsiDatabaseOpenViewA
MsiDatabaseOpenViewW

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 270KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 518KB - Virtual size: 524KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c5c63ffefea9415ad6fa40edb5c46536

Headers

File Characteristics

Imports

msacm32

shlwapi

kernel32

msi

Sections

.text Size: 23KB - Virtual size: 23KB

.data Size: 6KB - Virtual size: 270KB

.rsrc Size: 518KB - Virtual size: 524KB

.text
Size: 23KB - Virtual size: 23KB

.data
Size: 6KB - Virtual size: 270KB

.rsrc
Size: 518KB - Virtual size: 524KB