cbf9b019d617c4a7940947e8fae820da262cdbf5ec59eec175f485bd44ebe7f0

Sharing

Copy URL

Twitter E-mail

General

Target

cbf9b019d617c4a7940947e8fae820da262cdbf5ec59eec175f485bd44ebe7f0
Size

116KB
MD5

003c62321435e377e1dffc4c2bd952e0
SHA1

881208d0b955e9b74affa2c30568d4e604988df3
SHA256

cbf9b019d617c4a7940947e8fae820da262cdbf5ec59eec175f485bd44ebe7f0
SHA512

1978fb853a50da09d3d1b1ec4ea8dedc3cb79bb2b8c47dd2b7251137d7c49556ec9f07b3d8a4440efb906c4184f7717a7237acfaa42c2120738bba7ea575a044
SSDEEP

3072:911Jp5OzQcJ5nDQpA9ngLjhyxwG7PDPmOtdR6:913p5EQcJ5nDmAajhyxxbDPzD

Score

N/A

Malware Config

Signatures

Files

cbf9b019d617c4a7940947e8fae820da262cdbf5ec59eec175f485bd44ebe7f0
.exe windows x86

092bfc080ddafc32037c69560bfff566

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegisterServiceCtrlHandlerW
SetServiceStatus
RegCloseKey
RegSetValueExW
RegCreateKeyW
RegDeleteKeyW
RegOpenKeyExW
CloseServiceHandle
CreateServiceW
OpenSCManagerW
StartServiceCtrlDispatcherW
DeleteService
QueryServiceStatus
ControlService
OpenServiceW
QueryServiceConfigW
RegEnumKeyExW
DeregisterEventSource
ReportEventW
RegisterEventSourceW

ole32

CoInitialize
CoUninitialize
CoCreateInstance

oleaut32

VariantClear
SysFreeString
VariantInit
GetErrorInfo

kernel32

lstrcpynW
FormatMessageW
GetVersionExW
GetComputerNameW
GetSystemDirectoryW
LoadLibraryW
LocalFree
lstrlenW
GetLastError
FreeLibrary
GetProcAddress
OutputDebugStringW
Sleep

msvcrt

wcscpy
_itow
wcsncat
__dllonexit
wcscmp
memset
_except_handler3
__p__fmode
wprintf
_wtoi
_wcsicmp
wcslen
_ultow
wcsncpy
swprintf
wcscat
_onexit
??3@YAXPAX@Z
??2@YAPAXI@Z
div
_adjust_fdiv
__p__commode
_controlfp
__set_app_type
free
malloc
wcschr
_exit
_XcptFilter
exit
__p___winitenv
__wgetmainargs
_initterm
__setusermatherr

netapi32

NetApiBufferFree
NetGetAnyDCName

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

�a�
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

092bfc080ddafc32037c69560bfff566

Headers

File Characteristics

Imports

advapi32

ole32

oleaut32

kernel32

msvcrt

netapi32

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 17KB

.rsrc Size: 4KB - Virtual size: 1KB

�a� Size: 52KB - Virtual size: 52KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 17KB

.rsrc
Size: 4KB - Virtual size: 1KB

�a�
Size: 52KB - Virtual size: 52KB