54c5e56a95a116af6f574ea83b1e8f28e764ccf89cba1a58946f68b08f8f563f

Sharing

Copy URL Twitter E-mail

General

Target

54c5e56a95a116af6f574ea83b1e8f28e764ccf89cba1a58946f68b08f8f563f
Size

5.2MB
MD5

cb119118dfe42b691606d7a0da084742
SHA1

caa4cbff779db7737f6c49a588b1cd81744174a0
SHA256

54c5e56a95a116af6f574ea83b1e8f28e764ccf89cba1a58946f68b08f8f563f
SHA512

40dc73f844b06832f9d8d92bc4ecd4f948a7909c9485a0a0e336d702c580425b9847aba7e89bf11c272d473228b76227f7e57fcc6dcfcdd0d815012eb18636fe
SSDEEP

98304:d6IRD1ppsX7FiTC8iqf2P0Hh73Jx3Q8eNX+pnJoQ74s/c0EipMMnbuI:dTYETSq+sHh7L3K2otMc0EBCSI

Score

1^/10

Malware Config

Signatures

Files

54c5e56a95a116af6f574ea83b1e8f28e764ccf89cba1a58946f68b08f8f563f
.exe windows x86

27c6cd818fb7965e293a4013210e21e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

DeleteCriticalSection
TlsSetValue
lstrlenA
Sleep

user32

GetKeyboardType
CreateWindowExA

advapi32

RegQueryValueExA
SetSecurityDescriptorDacl

oleaut32

SysFreeString
SafeArrayPtrOfIndex

version

VerQueryValueA

gdi32

UnrealizeObject

comctl32

ImageList_SetIconSize

iphlpapi

GetAdaptersInfo

msvcrt

sprintf
gmtime

setupapi

SetupDiGetClassDevsA
SetupDiGetClassDevsA

hid

HidD_GetHidGuid
HidD_GetHidGuid

winscard

SCardDisconnect

sekeygensdk

SEGenerateKeyBufferWithDatA

keygen32

VMProtectFreeSerialNumberMemory

get95zizunmid

getid

psapi

GetMappedFileNameW

shell32

SHGetFolderPathW

Sections

CODE
Size: 280KB - Virtual size: 668KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4.9MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27c6cd818fb7965e293a4013210e21e0

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

version

gdi32

comctl32

iphlpapi

msvcrt

setupapi

hid

winscard

sekeygensdk

keygen32

get95zizunmid

psapi

shell32

Sections

CODE Size: 280KB - Virtual size: 668KB

.sedata Size: 4.9MB - Virtual size: 4.9MB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 10KB - Virtual size: 12KB

.sedata Size: 4KB - Virtual size: 4KB

CODE
Size: 280KB - Virtual size: 668KB

.sedata
Size: 4.9MB - Virtual size: 4.9MB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 10KB - Virtual size: 12KB

.sedata
Size: 4KB - Virtual size: 4KB