f0e71f643ea6c85db36546688b0f15b612717736f7e2adcaac65398b0637666e

General

Target

f0e71f643ea6c85db36546688b0f15b612717736f7e2adcaac65398b0637666e
Size

170KB
MD5

3d7e09f8dd3308a24de0145fd2b1b350
SHA1

2b1e1f9953c86cdb6df5a6a1b8f83397c787251b
SHA256

f0e71f643ea6c85db36546688b0f15b612717736f7e2adcaac65398b0637666e
SHA512

922adfc064b1ad2d248c2d30aab2346d02f0be42289bb202b249a8f79f7453b9cd9f1fdaeb498e087027703170933c9fd17f0adeafe0bf3f4c2eb5dadad065d1
SSDEEP

3072:a4MuQfhFdmTYAAdrzivmROsaicKFM8TKcApiat1+/34Z80VyfIQzjqUA79:a4bchFdmET5mvshF7Kc2tIf080Vk72

Score

N/A

Malware Config

Signatures

Files

f0e71f643ea6c85db36546688b0f15b612717736f7e2adcaac65398b0637666e
.exe windows x86

677ca6a240298ac85b9ffdcb6deb58cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

setupapi

CM_Get_Global_State
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

kernel32

FlushFileBuffers
GetEnvironmentStringsW
GetProcAddress
AddAtomA
GetCPInfo
InitializeCriticalSection
Sleep
MulDiv
SetStdHandle
FreeEnvironmentStringsW
DeleteCriticalSection
lstrcmpiA
FreeEnvironmentStringsA
lstrcatA
IsBadCodePtr
SetFilePointer
GetStringTypeW
LCMapStringW
GetThreadLocale
GetStartupInfoA
lstrlenA
IsBadReadPtr
GetStringTypeA
UnhandledExceptionFilter
FreeLibrary
GetOEMCP
EnumResourceNamesW
lstrcpynA
CloseHandle
LCMapStringA
CreateFileA
GetFileAttributesA
LeaveCriticalSection
GetEnvironmentStrings
VirtualProtect
GetDiskFreeSpaceA
FindFirstFileA
lstrcpyA
GetCurrentThreadId
WriteFile
lstrlenW
WideCharToMultiByte
GetLastError
GetFullPathNameA
MultiByteToWideChar
EnterCriticalSection
LoadLibraryA
lstrcmpA
GetTickCount
SetUnhandledExceptionFilter
ReadFile
GetModuleHandleA
RaiseException

Sections

.text
Size: 93KB - Virtual size: 489KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

677ca6a240298ac85b9ffdcb6deb58cf

Headers

File Characteristics

Imports

setupapi

kernel32

Sections

.text Size: 93KB - Virtual size: 489KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 73KB - Virtual size: 72KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 93KB - Virtual size: 489KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 73KB - Virtual size: 72KB

.rsrc
Size: 512B - Virtual size: 4KB