79321299956d095aeff565532cbce2ff856b6c6544b5e0ba0770f20715b63a25

General

Target

79321299956d095aeff565532cbce2ff856b6c6544b5e0ba0770f20715b63a25
Size

40KB
MD5

a71cc863e7b6864005f68ba5d51eddd4
SHA1

d2970aaabad0f3edd259b02b10b222f1fbed7a79
SHA256

79321299956d095aeff565532cbce2ff856b6c6544b5e0ba0770f20715b63a25
SHA512

f8d424419bcfa194c31965b3a0cc44c08fffc1318b6698490e98cbe848b44d15bdfb6773b1780d1496ca8fa28b4b487bcd10ec9d7d3e2db665e7b54e8cc6056f
SSDEEP

384:gOp4kqCXOKrnnZVIHSJ6RqemWmclWpmcnNHixYkMAyWaVXPeTfNySASIKLsrq1iO:/4BKjIHRqenUNC2OpawhySASI3Nk

Score

N/A

Malware Config

Signatures

Files

79321299956d095aeff565532cbce2ff856b6c6544b5e0ba0770f20715b63a25
.exe windows x86

48e23d22083bea58b478fd82b7ff2352

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_onexit
__dllonexit
_except_handler3
??2@YAPAXI@Z
__set_app_type
__p__fmode
__p__commode
vsprintf
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
_XcptFilter
_exit
vprintf
printf
??3@YAXPAX@Z
strcpy
_stricmp
strcat
memset
exit
memcmp

kernel32

CreateEventA
GetLastError
ExitProcess
CloseHandle
lstrcmpiA
FormatMessageA
LocalFree
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameA
lstrlenA
LoadLibraryA
GetProcAddress
FreeLibrary
WaitForSingleObject
Sleep
SetEvent
SetConsoleCtrlHandler

advapi32

RegCreateKeyA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

CoRevokeClassObject
CoInitializeEx
CoRegisterClassObject
CoUninitialize

w95scm

SQLSCMControlA
SQLSCMQueryServiceConfigA
SQLSCMGetServiceStateA
SQLSCMChangeServiceConfigA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

48e23d22083bea58b478fd82b7ff2352

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

ole32

w95scm

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 1KB

.mrdata Size: 20KB - Virtual size: 20KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB

.mrdata
Size: 20KB - Virtual size: 20KB