a0ff653d40086a3a6bd802f8458c1cd61a6296621695fe9c0aeafc0fdecc13b1

General

Target

a0ff653d40086a3a6bd802f8458c1cd61a6296621695fe9c0aeafc0fdecc13b1
Size

168KB
MD5

bb9c62d450e62cb7a4ef82385b27a402
SHA1

250ebb82d129230125f009e9e8612341ca4eb84d
SHA256

a0ff653d40086a3a6bd802f8458c1cd61a6296621695fe9c0aeafc0fdecc13b1
SHA512

b70f54930a3c42938df8876dc7ace0158cef5f559725a63ae0db095116da504f0b6a920df4df9f732f58fdc68e4b7dfeb32e3484aa3d7cb0690ceda3060c0046
SSDEEP

3072:TKEXuFQ48Uw8fh56AWHoOhcwCk60TWHN8jsBZvMGEg6Q05aRcIPgduUNcp9Q:TKEXuFQ4/wAhVOth60TWOjHGLv05aKIm

Score

N/A

Malware Config

Signatures

Files

a0ff653d40086a3a6bd802f8458c1cd61a6296621695fe9c0aeafc0fdecc13b1
.exe windows x86

db35148843327b11e4e4a5c686541d3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GlobalAddAtomW
OutputDebugStringW
LeaveCriticalSection
ResumeThread
GetSystemTimeAsFileTime
FindClose
GetFileAttributesW
SetThreadPriority
CreateDirectoryW
LoadLibraryExW
DeleteFileW
GetTickCount
EnterCriticalSection
LoadResource
FindFirstFileW
EnumResourceLanguagesW
CreateFileW
GetCurrentProcessId
GetStartupInfoW
ExitProcess
ReleaseMutex
SetPriorityClass
OpenThread
GetProcAddress
LoadModule
GetModuleHandleA
DeviceIoControl
FindNextFileW
QueryPerformanceCounter
GetDriveTypeW
CopyFileW
GetExitCodeThread
FindResourceW

setupapi

CM_Get_Sibling
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status

advapi32

OpenSCManagerW
DeleteService
ControlService
RegEnumKeyExW
ReportEventW
RegisterEventSourceW
OpenProcessToken
OpenThreadToken
DeregisterEventSource
CloseServiceHandle
SetServiceStatus
OpenServiceW
CreateServiceW

ole32

CoTaskMemRealloc
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance
CoUninitialize
CoTaskMemFree
CoInitialize
CoRevokeClassObject
CoRegisterClassObject
CoInitializeSecurity

Sections

.text
Size: 83KB - Virtual size: 483KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

db35148843327b11e4e4a5c686541d3c

Headers

File Characteristics

Imports

kernel32

setupapi

advapi32

ole32

Sections

.text Size: 83KB - Virtual size: 483KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 81KB - Virtual size: 80KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 83KB - Virtual size: 483KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 81KB - Virtual size: 80KB

.rsrc
Size: 512B - Virtual size: 4KB