57a439f52a7a456e8d7cd5dc83dbbc173adcf9374e70f028f3ae5d5cf5f675b9

Sharing

Copy URL Twitter E-mail

General

Target

57a439f52a7a456e8d7cd5dc83dbbc173adcf9374e70f028f3ae5d5cf5f675b9
Size

188KB
MD5

91f2d03ba8f7ac3fd420429832eb1da0
SHA1

6050a076aa8c4b658cb9ff83e7dde06dcbe48185
SHA256

57a439f52a7a456e8d7cd5dc83dbbc173adcf9374e70f028f3ae5d5cf5f675b9
SHA512

99a78d86b9fe5de2a148284aa850d7d57760ee83ef3479bb6faa0a332f1dda6feb7b1bbfab134befab01b50510e768f3c826c0527902f559a4f7f0ad902e0b78
SSDEEP

3072:Q/agl+ZNuYMm0zz7SuIatf/tTVYYSWqUohDXsvU48Zpuh9RVXIzEn:al+x10zSuI8VYfWqJhD369R5Iw

Score

N/A

Malware Config

Signatures

Files

57a439f52a7a456e8d7cd5dc83dbbc173adcf9374e70f028f3ae5d5cf5f675b9
.exe windows x86

644de8068eb9a3091f1d512c5fbea869

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextA
wsprintfA

kernel32

DeleteFileA
SetFileAttributesA
GetCommandLineA
GetCurrentProcessId
Process32First
CreateToolhelp32Snapshot
SetUnhandledExceptionFilter
OpenEventA
GetSystemDirectoryA
ExpandEnvironmentStringsA
GetShortPathNameA
GetFileAttributesA
CreateEventA
WaitForSingleObject
GetModuleFileNameA
GetTickCount
CreateFileA
WriteFile
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
CloseHandle
GetStartupInfoA
MoveFileA
GetCurrentDirectoryA
GetTempPathA
GetWindowsDirectoryA
lstrlenA
SetEnvironmentVariableA
CreateDirectoryA
ExitProcess
GetLastError
GetModuleHandleA
Sleep
Process32Next

msvcrt

_controlfp
_strrev
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
??1type_info@@UAE@XZ
??3@YAXPAX@Z
_itoa
toupper
_ftol
rand
malloc
free
strstr
strncpy
__CxxFrameHandler
strcmp
memcpy
strlen
memset
strcpy
strchr
strcat
_except_handler3
_strlwr
_stricmp
srand
tolower

shlwapi

SHDeleteKeyA

advapi32

GetServiceKeyNameA
GetServiceDisplayNameA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
ChangeServiceConfig2A
CloseServiceHandle
DeleteService
CreateServiceA
OpenSCManagerA
ControlService
StartServiceA

Sections

.text
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 164KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

644de8068eb9a3091f1d512c5fbea869

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

shlwapi

advapi32

Sections

.text Size: 12KB - Virtual size: 8KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 164KB - Virtual size: 163KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 12KB - Virtual size: 8KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 164KB - Virtual size: 163KB

.rsrc
Size: 4KB - Virtual size: 3KB