8aae7dce88cdf3767dc78c0139576e64b2e28cfee34643eab76db03be9c1c1e3

General

Target

8aae7dce88cdf3767dc78c0139576e64b2e28cfee34643eab76db03be9c1c1e3
Size

557KB
MD5

ca7c340c3c289da9fb7c1b877c3e48af
SHA1

8796a17e83dd5f2e4b1199e375774ad1cc420cd3
SHA256

8aae7dce88cdf3767dc78c0139576e64b2e28cfee34643eab76db03be9c1c1e3
SHA512

51cec34191fd41fe1a5f6f5a890c85c9f73a1b8d6dcd9b9f2eb869f6dd45ba5cf5f1b2f311b6a394e5c5f388df4e0214296b19bb288b26e99f8ee6d1227b6015
SSDEEP

12288:KVihKOfIE3yqAZq3iI2MYSIMVrHSUpnty:KAKfE32aPQMhyUpty

Score

N/A

Malware Config

Signatures

Files

8aae7dce88cdf3767dc78c0139576e64b2e28cfee34643eab76db03be9c1c1e3
.exe windows x86

c5c63ffefea9415ad6fa40edb5c46536

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

msacm32

acmDriverID

shlwapi

SHCreateThread
SHQueryInfoKeyA
SHQueryInfoKeyW
SHQueryValueExA
SHQueryValueExW
SHRegCloseUSKey
SHRegCreateUSKeyA
SHRegCreateUSKeyW
SHRegDeleteEmptyUSKeyA
SHRegDeleteEmptyUSKeyW
SHRegDeleteUSValueA
SHRegDeleteUSValueW
SHRegDuplicateHKey
SHRegEnumUSKeyA
SHRegEnumUSKeyW
SHRegEnumUSValueA
SHRegEnumUSValueW
SHRegGetBoolUSValueA
SHRegGetBoolUSValueW
SHRegGetPathA
SHRegGetPathW
SHRegGetUSValueA
SHRegGetUSValueW
SHRegGetValueA
SHRegGetValueW
SHRegOpenUSKeyA
SHRegOpenUSKeyW
SHRegQueryInfoUSKeyA
SHRegQueryInfoUSKeyW
SHRegQueryUSValueA
SHRegQueryUSValueW

kernel32

GetTickCount
_lopen
GetWindowsDirectoryA
GetACP
OutputDebugStringA
PeekConsoleInputA
HeapReAlloc
HeapSetInformation
SetFileApisToANSI
SetFileApisToOEM
LZRead

msi

MsiGetFeatureCostW
MsiGetFeatureInfoA
MsiGetFeatureInfoW
MsiDatabaseExportA
MsiDatabaseExportW
MsiDatabaseGetPrimaryKeysA
MsiDatabaseGetPrimaryKeysW
MsiDatabaseImportA
MsiDatabaseImportW
MsiDatabaseIsTablePersistentA
MsiDatabaseIsTablePersistentW
MsiDatabaseMergeA
MsiDatabaseMergeW
MsiDatabaseOpenViewA
MsiDatabaseOpenViewW

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 262KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 519KB - Virtual size: 520KB

IMAGE_SCN_MEM_READ

Size: - Virtual size: 8KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c5c63ffefea9415ad6fa40edb5c46536

Headers

File Characteristics

Imports

msacm32

shlwapi

kernel32

msi

Sections

.text Size: 23KB - Virtual size: 23KB

.data Size: 6KB - Virtual size: 262KB

.rsrc Size: 519KB - Virtual size: 520KB

Size: - Virtual size: 8KB

.text
Size: 23KB - Virtual size: 23KB

.data
Size: 6KB - Virtual size: 262KB

.rsrc
Size: 519KB - Virtual size: 520KB