7c7229e2cecb9a9c9bcae9d351857dc699c5b49ea2f6e0b673dcd53085cd2f7f

Sharing

Copy URL Twitter E-mail

General

Target

7c7229e2cecb9a9c9bcae9d351857dc699c5b49ea2f6e0b673dcd53085cd2f7f
Size

393KB
MD5

1402c916448e7976e947e33c9c4b8b46
SHA1

a0e0dbd3355ecd52a3f81430cb31454a4204d1e1
SHA256

7c7229e2cecb9a9c9bcae9d351857dc699c5b49ea2f6e0b673dcd53085cd2f7f
SHA512

4be9e6ca9e6593cec99dd5a8499e877b8172022c0407823e77616235d42932b7d3c9a43095251a3985dc482db55692bc0807bd6df4583fa1d81a8b1c8bacdbaf
SSDEEP

6144:QXIU6UiLvFdkQ19BskSK3X6+QRUzfZ1QpgmS52mqh7eR/mdHSa7UC:QXIDDkO9BsMXkmZbmS5qGkyaL

Score

1^/10

Malware Config

Signatures

Files

7c7229e2cecb9a9c9bcae9d351857dc699c5b49ea2f6e0b673dcd53085cd2f7f
.exe windows x86

4b2c6f3ba04af88d91951f397c756e9b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

psapi

GetProcessImageFileNameA

kernel32

CloseHandle
CreateEventA
ResetEvent
CreateThread
SetThreadPriority
ResumeThread
WaitForSingleObject
SetEvent
DebugBreak
lstrcmpA
GetLastError
GetTickCount
GetCurrentThreadId
PostQueuedCompletionStatus
CreateIoCompletionPort
CreateMutexA
ReleaseMutex
GetQueuedCompletionStatus
Process32First
GetSystemTimeAsFileTime
FormatMessageA
Process32Next
CreateToolhelp32Snapshot
GetVersionExA
HeapAlloc
GetProcessHeap
HeapFree
WritePrivateProfileStringA
CopyFileA
DeleteFileA
OpenProcess
TerminateProcess
CreateProcessA
GetExitCodeProcess
EnterCriticalSection
LeaveCriticalSection
SetUnhandledExceptionFilter
GetCurrentProcess
CreateFileA
GetLocalTime
GetModuleFileNameW
InitializeCriticalSection
DeleteCriticalSection
GetTempPathA
Thread32Next
SuspendThread
OpenThread
Thread32First
GetSystemInfo
GetModuleHandleA
SetFileAttributesA
lstrcpynA
QueryPerformanceFrequency
QueryPerformanceCounter
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
WriteFile
SetFilePointer
OutputDebugStringA
FileTimeToSystemTime
FileTimeToLocalFileTime
CompareFileTime
GetPrivateProfileIntA
WaitForMultipleObjects
GetOverlappedResult
ReadFile
DisconnectNamedPipe
FlushFileBuffers
ConnectNamedPipe
ExitThread
CreateNamedPipeA
SetNamedPipeHandleState
HeapCreate
VirtualAlloc
VirtualFree
TlsSetValue
TlsAlloc
TlsGetValue
TlsFree
TerminateThread
GetModuleHandleW
LCMapStringW
LCMapStringA
GetCPInfo
GetTimeZoneInformation
GetUserDefaultLCID
RtlUnwind
GetCommandLineA
GetDateFormatA
GetTimeFormatA
IsDebuggerPresent
UnhandledExceptionFilter
MultiByteToWideChar
RaiseException
HeapSize
HeapReAlloc
HeapDestroy
GetFileAttributesA
Sleep
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetACP
GetOEMCP
FreeLibrary
GetProcAddress
LoadLibraryA
WideCharToMultiByte
FindResourceExA
FindResourceA
LoadResource
LockResource
SizeofResource
FindClose
FindNextFileA
FindFirstFileA
GetCurrentProcessId
GetModuleFileNameA
GetPrivateProfileStringA
SetLastError
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetFileSize
ExitProcess
IsValidCodePage
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
GetLocaleInfoW
WriteConsoleA
GetStdHandle
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
GetEnvironmentStrings

user32

IsWindow
GetForegroundWindow
BringWindowToTop
SetWindowPos
SetForegroundWindow
FindWindowA
PeekMessageA
AttachThreadInput
SendInput
IsIconic
MessageBoxA
PostThreadMessageA
DefWindowProcA
KillTimer
SetTimer
DestroyWindow
GetMessageA
CreateWindowExA
RegisterClassExA
GetClassInfoA
DispatchMessageA
TranslateMessage
GetWindowThreadProcessId
PostMessageA

advapi32

SetSecurityDescriptorDacl
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
QueryServiceStatusEx
EnumDependentServicesA
RegSetValueExA
ChangeServiceConfig2A
StartServiceCtrlDispatcherA
SetServiceStatus
RegisterServiceCtrlHandlerA
StartServiceA
QueryServiceStatus
ControlService
DeleteService
OpenServiceA
CloseServiceHandle
CreateServiceA
OpenSCManagerA
InitializeSecurityDescriptor

shell32

SHGetSpecialFolderPathA

ole32

StringFromGUID2
CoCreateGuid

oleaut32

VariantClear
SysAllocString
SysFreeString

shlwapi

StrRChrA
SHGetValueA
SHSetValueA
SHDeleteValueA

ws2_32

ntohl
gethostname
gethostbyname
inet_ntoa
WSAStartup
inet_addr
htonl
WSARecv
WSASend
WSACleanup
ioctlsocket
htons
setsockopt
bind
socket
listen
WSAIoctl
WSAGetLastError
ntohs
closesocket
WSASocketA
recvfrom
sendto
recv

mswsock

GetAcceptExSockaddrs
AcceptEx

iphlpapi

GetAdaptersInfo

Exports

Exports

overlap_free
overlap_malloc
pool_free
pool_malloc
vp_free
vp_malloc

Sections

.text
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b2c6f3ba04af88d91951f397c756e9b

Headers

DLL Characteristics

File Characteristics

Imports

version

psapi

kernel32

user32

advapi32

shell32

ole32

oleaut32

shlwapi

ws2_32

mswsock

iphlpapi

Exports

Exports

Sections

.text Size: 313KB - Virtual size: 312KB

.rdata Size: 51KB - Virtual size: 51KB

.data Size: 8KB - Virtual size: 18KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 18KB - Virtual size: 17KB

.text
Size: 313KB - Virtual size: 312KB

.rdata
Size: 51KB - Virtual size: 51KB

.data
Size: 8KB - Virtual size: 18KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 18KB - Virtual size: 17KB