d3a942f3d1a644562325bb397cf43bacfdec011a87316a8ec5e28b7ac886f827

General

Target

d3a942f3d1a644562325bb397cf43bacfdec011a87316a8ec5e28b7ac886f827
Size

92KB
MD5

3e6092fca8c39709e749469ddaff968e
SHA1

b8c15d1ce3ed4abb5446927f87a930d280d73828
SHA256

d3a942f3d1a644562325bb397cf43bacfdec011a87316a8ec5e28b7ac886f827
SHA512

ea455ee2c4d7c5f164d5056cf5d15811ca553fe6cfa2f96a09722b30d4bfb7e11f0a6116b3a913683ab76ad41045c6ac83ffc614e5ec41f5817c6bcc4bd2f869
SSDEEP

1536:D4/WCd4AkJpVztlHGjjpLVxtPpr3lBlcPWG2qLQukbwQt2O9N5TrIK367dKSt:D0W2oJp1fmpLLtBrXlCWTqL1BQN5Tr9E

Score

N/A

Malware Config

Signatures

Files

d3a942f3d1a644562325bb397cf43bacfdec011a87316a8ec5e28b7ac886f827
.exe windows x86

8ec86b2eb862aa7a6fa4a5db0324a784

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
VirtualAlloc
GetVersion
GetLastError
GetModuleHandleA
GetCurrentProcess
TerminateProcess
UnhandledExceptionFilter
QueryPerformanceCounter
GetTickCount
CloseHandle
GetStartupInfoA
GetProcessHeap
HeapFree
HeapReAlloc
HeapAlloc
GetFileType
ExitProcess
FormatMessageW
Sleep
CreateFileW
ReadFile
GetCommandLineA

user32

TranslateMessage
PostQuitMessage
DispatchMessageW

advapi32

LookupPrivilegeValueW
SetSecurityDescriptorDacl
SetServiceStatus
AdjustTokenPrivileges
CloseServiceHandle
ControlService
RegOpenKeyExA
OpenSCManagerW
RegDeleteKeyW
OpenServiceW
OpenThreadToken
QueryServiceStatus
RegOpenKeyW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW

ws2_32

closesocket
socket
bind
accept
gethostbyaddr
connect

msvcrt

_exit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
free
malloc
memcpy
memchr
fclose
_XcptFilter
exit
_acmdln
__getmainargs

Exports

Exports

KVRcqLFJj
XTyBtuNuix
isMCbgMdKLdEPs
uhUMY

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ec86b2eb862aa7a6fa4a5db0324a784

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

msvcrt

Exports

Exports

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 47KB - Virtual size: 116KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 47KB - Virtual size: 116KB

.rsrc
Size: 1KB - Virtual size: 1KB