c61606cc989bd17492ad7ced6bbf68e0b13ea8f53cac1e54f0f1094d88ed39bf

General

Target

c61606cc989bd17492ad7ced6bbf68e0b13ea8f53cac1e54f0f1094d88ed39bf
Size

88KB
MD5

607a6025d46443f68a105b94d7dd8bd8
SHA1

b918428c089fccb0fb8a8217c8f2fc85fc4c75b0
SHA256

c61606cc989bd17492ad7ced6bbf68e0b13ea8f53cac1e54f0f1094d88ed39bf
SHA512

bda3e26046cd7fc8300d6d528cb4dafd30d8d6023874cada8217a6746fea8fb3651feea5ac2b8cb5d6087c5b25e4beed8a18af0f8c6906e771725c460af6dac7
SSDEEP

1536:x4Io/nM4rDpn7OA3/Snixzur6X4mCoV086F2h/bymB5kOftQ45Czypk4:x0PhfIAPSnixzkWOo56F28+JCzAk4

Score

N/A

Malware Config

Signatures

Files

c61606cc989bd17492ad7ced6bbf68e0b13ea8f53cac1e54f0f1094d88ed39bf
.exe windows x86

48e23d22083bea58b478fd82b7ff2352

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_onexit
__dllonexit
_except_handler3
??2@YAPAXI@Z
__set_app_type
__p__fmode
__p__commode
vsprintf
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
_XcptFilter
_exit
vprintf
printf
??3@YAXPAX@Z
strcpy
_stricmp
strcat
memset
exit
memcmp

kernel32

CreateEventA
GetLastError
ExitProcess
CloseHandle
lstrcmpiA
FormatMessageA
LocalFree
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameA
lstrlenA
LoadLibraryA
GetProcAddress
FreeLibrary
WaitForSingleObject
Sleep
SetEvent
SetConsoleCtrlHandler

advapi32

RegCreateKeyA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

CoRevokeClassObject
CoInitializeEx
CoRegisterClassObject
CoUninitialize

w95scm

SQLSCMControlA
SQLSCMQueryServiceConfigA
SQLSCMGetServiceStateA
SQLSCMChangeServiceConfigA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

48e23d22083bea58b478fd82b7ff2352

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

ole32

w95scm

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 72KB - Virtual size: 72KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 72KB - Virtual size: 72KB