fca7d5e2c4af3c7078f0369c693f3c60479061a08c062f34df334a5615d09ae4

Sharing

Copy URL Twitter E-mail

General

Target

fca7d5e2c4af3c7078f0369c693f3c60479061a08c062f34df334a5615d09ae4
Size

67KB
MD5

7f9ef67bf2b7e22133c168b4677a0467
SHA1

0873dc482e84a70aa8965ba5f5594172976201ff
SHA256

fca7d5e2c4af3c7078f0369c693f3c60479061a08c062f34df334a5615d09ae4
SHA512

e697b547386cfc3ae29862cfe2671a7012680ee73f147bd24f910a2bd0f112bec9ed5b1881cb743f348f5aea4713515b39299b0a819397f74188aaac85c60360
SSDEEP

768:IOozkSlsf/yhT7rQ8RWINZaamfCnKfNWlLI2s/IEB3i9w44J5TMu+Ovi7yST2Of5:1gmfqhT7M04foxLxFWTMai7ySSOf5

Score

N/A

Malware Config

Signatures

Files

fca7d5e2c4af3c7078f0369c693f3c60479061a08c062f34df334a5615d09ae4
.exe windows x86

4d7e2e269196c55e9d755c756df0f428

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

pdh

PdhCollectQueryData
PdhGetFormattedCounterValue
PdhOpenQueryA
PdhLookupPerfNameByIndexA
PdhAddCounterA
PdhCloseQuery

kernel32

GetSystemInfo
Sleep
InitializeCriticalSection
GetTickCount
GetCurrentThreadId
GetExitCodeThread
GetLastError
GetModuleHandleA
GetThreadPriority
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetVersionExA
HeapCreate
TlsAlloc
ExitProcess
GetCurrentProcess
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentStringsW
GetACP
GetOEMCP
GetCPInfo
LoadLibraryA
QueryPerformanceCounter
GetCurrentProcessId
GetLocaleInfoA
GetVersion
GetProcAddress

user32

GetCursorPos

userenv

RefreshPolicy
FreeGPOListA
GetProfilesDirectoryA
EnterCriticalPolicySection
DllRegisterServer
DestroyEnvironmentBlock
WaitForUserPolicyForegroundProcessing
GetDefaultUserProfileDirectoryA
DllUnregisterServer
LoadUserProfileW
UnloadUserProfile
RefreshPolicyEx

diskcopy

DllCanUnloadNow
DiskCopyRunDllW

Sections

.text
Size: 1024B - Virtual size: 612B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kYdeFt
Size: 4KB - Virtual size: 880KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Ku
Size: 3KB - Virtual size: 537KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Wwk
Size: 3KB - Virtual size: 724KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.LXuRqx
Size: 3KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 6KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.MkpCMj
Size: 4KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 12KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.UYOz
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cC
Size: 512B - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d7e2e269196c55e9d755c756df0f428

Headers

File Characteristics

Imports

pdh

kernel32

user32

userenv

diskcopy

Sections

.text Size: 1024B - Virtual size: 612B

.kYdeFt Size: 4KB - Virtual size: 880KB

.text Size: 12KB - Virtual size: 11KB

.Ku Size: 3KB - Virtual size: 537KB

.Wwk Size: 3KB - Virtual size: 724KB

.rdata Size: 2KB - Virtual size: 17KB

.LXuRqx Size: 3KB - Virtual size: 83KB

.edata Size: 6KB - Virtual size: 85KB

.MkpCMj Size: 4KB - Virtual size: 149KB

.data Size: 8KB - Virtual size: 246KB

.edata Size: 12KB - Virtual size: 50KB

.UYOz Size: 512B - Virtual size: 12KB

.cC Size: 512B - Virtual size: 9KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 1024B - Virtual size: 612B

.kYdeFt
Size: 4KB - Virtual size: 880KB

.text
Size: 12KB - Virtual size: 11KB

.Ku
Size: 3KB - Virtual size: 537KB

.Wwk
Size: 3KB - Virtual size: 724KB

.rdata
Size: 2KB - Virtual size: 17KB

.LXuRqx
Size: 3KB - Virtual size: 83KB

.edata
Size: 6KB - Virtual size: 85KB

.MkpCMj
Size: 4KB - Virtual size: 149KB

.data
Size: 8KB - Virtual size: 246KB

.edata
Size: 12KB - Virtual size: 50KB

.UYOz
Size: 512B - Virtual size: 12KB

.cC
Size: 512B - Virtual size: 9KB

.rsrc
Size: 5KB - Virtual size: 4KB