4f2b768cf8fea1297b82c1933ddb565c262688fd05e9e05bf48a679df27a5274 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4f2b768cf8fea1297b82c1933ddb565c262688fd05e9e05bf48a679df27a5274
Size

16KB
MD5

7c57f5787c38199687654ae8666774f0
SHA1

27fc55cc22b77416155cb8d15ed4d9a329e75122
SHA256

4f2b768cf8fea1297b82c1933ddb565c262688fd05e9e05bf48a679df27a5274
SHA512

d430f47efe85226788cac269c19f0926f4bcfb1ea0355314008f30e0e876ba7080b0ef98d38753ee25fb953ed72633fae06e7d364e630ad90c60cdabe3988d34
SSDEEP

192:qBkySNAF7ht9vrpi0Xe8iux7uYrLVKTtzZnBtzJ4Wy1+eMT5H/1rHxn2AJzG:qBtSNC9vrsuFuYrLVKT7nBk0NTtJq

Score

N/A

Malware Config

Signatures

Files

4f2b768cf8fea1297b82c1933ddb565c262688fd05e9e05bf48a679df27a5274
.exe windows x86

813089cfc79726be07ab586ca105b203

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
lstrcatA
GetSystemDirectoryA

advapi32

DeleteService
ControlService
OpenSCManagerA
StartServiceA
OpenServiceA
CloseServiceHandle
CreateServiceA

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 354B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ