d3de190699879c03ac61e5d66c5a10d7d4b000354afe0a60d7b2a3fd90453957

Sharing

Copy URL

Twitter E-mail

General

Target

d3de190699879c03ac61e5d66c5a10d7d4b000354afe0a60d7b2a3fd90453957
Size

162KB
MD5

88938121fa4d2f743b1c4869e7ac94e6
SHA1

5efd0b85f62b8c69a82bb8b52c199428bf230dee
SHA256

d3de190699879c03ac61e5d66c5a10d7d4b000354afe0a60d7b2a3fd90453957
SHA512

b838bf168c90917f63d9be562ecf34bdc928968381866426373f1a44cd49b95b8df5d1b3f9e25e11c085cf932000222d7b8640f75ba13497fe3f6906349a72cb
SSDEEP

1536:rtHMtr4p1cFGNDBp4s2DhK6dAsAXf2+uykU:rtH44pOF+1p50lAsGMykU

Score

N/A

Malware Config

Signatures

Files

d3de190699879c03ac61e5d66c5a10d7d4b000354afe0a60d7b2a3fd90453957
.exe windows x86

85b912cbf2569439dbd286a80147c4f0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExW
InitializeSecurityDescriptor
RegOpenKeyW
RegEnumValueW
RegSetValueExW
RegEnumKeyExW
GetLengthSid
RegQueryValueExW
AdjustTokenPrivileges
AllocateAndInitializeSid
FreeSid
AllocateAndInitializeSid
OpenThreadToken
RegOpenKeyExA
RegCreateKeyExA
InitializeAcl
RegOpenKeyW
RegOpenKeyW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExA
AddAccessAllowedAce
OpenThreadToken
RegDeleteValueW
InitializeAcl

user32

SetCursor
SetCapture
TranslateMessage
GetWindowLongW
wsprintfW
CreateDialogParamW
LoadIconW
GetDC
PostQuitMessage
CreateDialogParamW
GetParent
RegisterClassW
MessageBoxA
DispatchMessageA
UpdateWindow
KillTimer
GetSubMenu
TranslateMessage
LoadStringW
GetCursorPos

kernel32

FreeLibrary
LocalAlloc
CreateFileW
GetStartupInfoW
GetCurrentProcess
VirtualFree
HeapDestroy
CreateThread
GetModuleHandleA
GetModuleHandleA
FreeLibrary

Sections

Size: 148KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�vmp0
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE

�reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

�reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

85b912cbf2569439dbd286a80147c4f0

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

Size: 148KB - Virtual size: 160KB

Size: 1KB - Virtual size: 4KB

�vmp0 Size: 4KB - Virtual size: 4KB

�reloc Size: 1024B - Virtual size: 4KB

�reloc Size: 1024B - Virtual size: 4KB

�reloc Size: 1024B - Virtual size: 4KB

�reloc Size: 4KB - Virtual size: 4KB

�vmp0
Size: 4KB - Virtual size: 4KB

�reloc
Size: 1024B - Virtual size: 4KB

�reloc
Size: 1024B - Virtual size: 4KB

�reloc
Size: 1024B - Virtual size: 4KB

�reloc
Size: 4KB - Virtual size: 4KB