ec96824ff613aefb24c39c23cb3f1af50b92ef1ace0fed686a1edaeac748002b

Sharing

Copy URL Twitter E-mail

General

Target

ec96824ff613aefb24c39c23cb3f1af50b92ef1ace0fed686a1edaeac748002b
Size

176KB
MD5

1588ce1caf9646a6f29ac8774cc8a5d3
SHA1

c3fe56e317f10b59f9ab6232bb10d4efcd41aad5
SHA256

ec96824ff613aefb24c39c23cb3f1af50b92ef1ace0fed686a1edaeac748002b
SHA512

93f33e1ec22362aaa9caba2d46cd7d124515d271073ca3aa5996910aa689b6817a5100acd31d7194434cd0049fc36330bc6b272e3faca7e97b8898ff27a65567
SSDEEP

3072:iwRUZ/UxYCFsTO9MjMUTfvTzu45tVujlTf0RnJQSKt1gb:iYUZ/IFgcMQMW4VQTf7

Score

N/A

Malware Config

Signatures

Files

ec96824ff613aefb24c39c23cb3f1af50b92ef1ace0fed686a1edaeac748002b
.exe windows x86

69c68f8d7f0404e2a7cc62a11f6cd591

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

IsEqualGUID

oleaut32

SysStringLen
SysReAllocStringLen
VariantClear
VariantCopyInd
SysFreeString
SysAllocStringLen
VariantChangeTypeEx

kernel32

GetOEMCP
UnhandledExceptionFilter
MulDiv
TlsGetValue
LoadLibraryExA
CreateEventA
GetProcessHeap
CompareStringA
SetThreadLocale
LocalFree
RtlUnwind
lstrcmpA
ReadFile
VirtualQuery
RaiseException
GlobalDeleteAtom
SetEvent
TlsFree
GetCurrentThreadId
GetSystemDirectoryA
GetModuleHandleA
EnumCalendarInfoA
GlobalFree
LoadLibraryA
GetLocaleInfoA
GetLastError
WaitForSingleObject
GetLocalTime
GetEnvironmentStringsA
ExitProcess
LocalAlloc
GetThreadLocale
SetHandleCount
VirtualFree
CloseHandle
GetFileSize
GetCurrentProcess
GetCommandLineA
lstrlenA
SetErrorMode
GetVersion
InterlockedDecrement
WriteFile
HeapFree
GlobalAddAtomA
GetACP
FindClose
SizeofResource
GlobalReAlloc
GetPrivateProfileStringA
GetStringTypeW
GetVersionExA
lstrcpynA
GetWindowsDirectoryA
FindFirstFileA
TlsAlloc
WideCharToMultiByte
LeaveCriticalSection
GetTickCount
GlobalUnlock
GetDiskFreeSpaceA
GlobalHandle
GlobalLock
GetCPInfo
GetModuleFileNameA
InterlockedIncrement
GlobalAlloc
InitializeCriticalSection
SetLastError
FormatMessageA
SetFilePointer
LockResource
TlsSetValue
GetStartupInfoA
FreeLibrary
MultiByteToWideChar
LoadResource
GetStdHandle
GetFileType
CreateThread
FindResourceA
VirtualAlloc
lstrcpyA
SetConsoleCtrlHandler
CreateFileA
GetProcAddress
EnterCriticalSection
DeleteFileA
WinExec
DeleteCriticalSection
SetEndOfFile
GetSystemInfo
HeapAlloc

advapi32

OpenProcessToken
RegOpenKeyExA
AdjustTokenPrivileges
RegOpenKeyA
LookupPrivilegeValueA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegDeleteKeyA

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69c68f8d7f0404e2a7cc62a11f6cd591

Headers

File Characteristics

Imports

ole32

oleaut32

kernel32

advapi32

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 3KB