c63bbfc58be9eef8897a668add26bec0ffd57a03dfe049f31b4a29c9d55b947d

General

Target

c63bbfc58be9eef8897a668add26bec0ffd57a03dfe049f31b4a29c9d55b947d
Size

153KB
MD5

6fe6d86ab15a0cf9de2ed947d2931120
SHA1

e92090f2611204c38c34f0ca5cc76e3a7e1cc908
SHA256

c63bbfc58be9eef8897a668add26bec0ffd57a03dfe049f31b4a29c9d55b947d
SHA512

eba8c2a9dcd988032bc17c6cc7176da982a239f0874b3a06794482753da47d0fb4669e99daa2b06a3c0f42168044efacfc070734a16304bf3c4ae945c69a1b18
SSDEEP

3072:3x6MkO22Soo/WaFDEFzY6OMjGPlgurzwzyTy:3x6MhSz4l/Duvw

Score

N/A

Malware Config

Signatures

Files

c63bbfc58be9eef8897a668add26bec0ffd57a03dfe049f31b4a29c9d55b947d
.exe windows x86

d9d3365f4674bb81525a72c3823e0f60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

kernel32

GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileType
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetVersion
GetVersionExA
HeapAlloc
HeapCreate
HeapDestroy
GetCurrentProcess
HeapReAlloc
LCMapStringA
LCMapStringW
LoadLibraryA
LocalAlloc
LocalFree
MapViewOfFile
MultiByteToWideChar
RtlUnwind
SetEvent
SetHandleCount
TerminateProcess
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualFree
WaitForSingleObject
WideCharToMultiByte
WriteFile
GetCommandLineA
GetCPInfo
GetACP
FreeEnvironmentStringsW
FreeEnvironmentStringsA
ExitProcess
CreateFileMappingA
CreateEventA
CloseHandle
HeapFree

advapi32

StartServiceCtrlDispatcherA
SetSecurityDescriptorDacl
RegisterServiceCtrlHandlerA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
InitializeSecurityDescriptor
SetServiceStatus

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9d3365f4674bb81525a72c3823e0f60

Headers

File Characteristics

Imports

shell32

kernel32

advapi32

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 25KB - Virtual size: 25KB

.rsrc Size: 21KB - Virtual size: 21KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 21KB - Virtual size: 21KB