updater_2357[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

updater_2357.exe
Size

1.9MB
MD5

66490d4520c2680555bbda14d832aa36
SHA1

04fab8643288b4cac335f79587a929a4d9336860
SHA256

b7729ad0144a85f8b5d4e3a057e3404cdc3204da2010c87798f32b146a21dbae
SHA512

2110867fd81517419855069f35368cff7a23fc64c2f74a8cdd23c52ecdf78b5748725496ea09693434b5d115ef89da6c2376f0d88ea8560ac2ba1fef362405e5
SSDEEP

49152:LPvfUOPFqT/Bhs1hmvIps1hmvIps1hmvISs1hmvIe:7v8OPFqTB46X6X6W6l

Score

N/A

Malware Config

Signatures

Files

updater_2357.exe
.exe windows x86

e34255f24c16c6689f04ecd0d604895e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
FileTimeToSystemTime
GetSystemTimeAsFileTime
GetProcAddress
GetLocaleInfoA
GetProcessHeap
DeleteCriticalSection
RaiseException
GetACP
InterlockedExchange
HeapAlloc
DebugBreak
LoadLibraryA
RtlUnwind
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetStdHandle
WriteFile
InterlockedDecrement
OutputDebugStringA
InterlockedIncrement
GetModuleFileNameA
GetModuleHandleA
HeapFree
CloseHandle
GetCurrentProcess
FreeLibrary
TerminateProcess
ExitProcess
TlsAlloc
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
SetLastError
GetLastError
GetCurrentThread
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
HeapReAlloc
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
SetConsoleCtrlHandler
VirtualQuery
SetUnhandledExceptionFilter
IsBadCodePtr
UnhandledExceptionFilter
GetCommandLineA
GetOEMCP
GetCPInfo
InitializeCriticalSection
GetTimeFormatA
GetDateFormatA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
WideCharToMultiByte
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
GetTimeZoneInformation
VirtualProtect
GetSystemInfo
SetFilePointer
GetLocaleInfoW
SetStdHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
WaitForSingleObject
SetEvent
OpenEventA
lstrlenA
lstrcpyA
lstrcpyW
OutputDebugStringW
lstrcpynW
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetVersion
OpenFileMappingA
GetModuleFileNameW
GetVersionExA

user32

DispatchMessageW
TranslateMessage
GetMessageA
GetMessageW
IsWindowUnicode
PeekMessageA
MsgWaitForMultipleObjects
DispatchMessageA
UnregisterClassA
MessageBoxA

advapi32

SetThreadToken
OpenThreadToken
RevertToSelf

ole32

CoMarshalInterface
CreateStreamOnHGlobal
CoUnmarshalInterface
CoRevokeClassObject
CoRegisterClassObject
CoReleaseMarshalData

Sections

.text
Size: 612KB - Virtual size: 608KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e34255f24c16c6689f04ecd0d604895e

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Sections

.text Size: 612KB - Virtual size: 608KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 8KB - Virtual size: 53KB

.text
Size: 612KB - Virtual size: 608KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 8KB - Virtual size: 53KB