6be3aee886341a93face2592a2d472c92f56b953a780fff116f1d5c67680e89c

General

Target

6be3aee886341a93face2592a2d472c92f56b953a780fff116f1d5c67680e89c
Size

92KB
MD5

04daefd297d49d808bd9197d66c9fa90
SHA1

f69d6027c30a7d53c66aa8e1d1bc037017564478
SHA256

6be3aee886341a93face2592a2d472c92f56b953a780fff116f1d5c67680e89c
SHA512

1a26141d67b3cc0578e270ef7f382992ed8dc1086a0cc8a29261630cfc2fb860638432b599e39ff0f2c2ea04f5d991e0c247cfa32dc90ecfee40262e8b33475b
SSDEEP

1536:o4LZ2ssFjQSVxWKKccOx9AD8GXN+I7fJ+aCl1fej:oHWUxWKpc1zoI7h+aS1Gj

Score

N/A

Malware Config

Signatures

Files

6be3aee886341a93face2592a2d472c92f56b953a780fff116f1d5c67680e89c
.exe windows x86

4848e0e24800fffbda17065d5239497e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
CreateSemaphoreA
CreateThread
ResumeThread
SuspendThread
ReleaseSemaphore
OpenSemaphoreA
GetLastError
lstrcpyA
lstrcatA
lstrlenA
GetModuleFileNameA
lstrcmpiA
LoadLibraryA
GetProcAddress
SetEvent
CreateEventA
CloseHandle
GetCommandLineA
GetVersion
RtlUnwind
WriteFile
ReadFile
SetFilePointer
SetHandleCount
GetStdHandle
Sleep
FreeLibrary
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
FlushFileBuffers
HeapAlloc
HeapReAlloc
HeapSize
SetStdHandle
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
LCMapStringA
LCMapStringW
GetFileType
ExitProcess
GetStartupInfoA

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
SetServiceStatus

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4848e0e24800fffbda17065d5239497e

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 20KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 20KB

.rsrc
Size: 40KB - Virtual size: 39KB