45a47165672a4394cd827474067aed510c39cbb1213f5fb6f5041b07c4358f1d

General

Target

45a47165672a4394cd827474067aed510c39cbb1213f5fb6f5041b07c4358f1d
Size

32KB
MD5

1997b09148620b5d5dc0de7996953648
SHA1

5688c90624d2281e226bbe451709f7c0d6ee8c97
SHA256

45a47165672a4394cd827474067aed510c39cbb1213f5fb6f5041b07c4358f1d
SHA512

8eb4584ab84856ec9ee9b66fc374e9c5a27c37ad6caf2013b0625659229bbfd367d432e14eb6bdf52535504e0b926da2999f3c31bd71a14412f54777e318f2d8
SSDEEP

768:AoZ3Byn/SDm1UCK6R5g/EOi6m8R5seUyfirwS:x3Byn/km1dtXg/EOi6m8/Ni

Score

N/A

Malware Config

Signatures

Files

45a47165672a4394cd827474067aed510c39cbb1213f5fb6f5041b07c4358f1d
.exe windows x86

aae83a0a5261a7e25d78063ac46cf90e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResumeThread
CreateProcessA
SetThreadPriority
GetCurrentThread
SetPriorityClass
lstrcatA
lstrcpyA
GetEnvironmentVariableA
GetShortPathNameA
WriteFile
CreateFileA
LockResource
LoadResource
FindResourceA
EnumResourceNamesA
GetTempPathA
lstrlenA
UpdateResourceA
BeginUpdateResourceA
GlobalFree
ReadFile
GlobalAlloc
GetFileSize
GetFileAttributesA
CreateMutexA
CopyFileA
GetSystemDirectoryA
GetTickCount
TerminateProcess
ExitThread
WinExec
OpenMutexA
GetLastError
ReleaseMutex
GetModuleFileNameA
SetFileAttributesA
ExitProcess
WaitForSingleObject
GetCurrentProcess
CloseHandle
GetProcAddress
Sleep
GetSystemInfo
GlobalMemoryStatusEx
GetComputerNameA
GetSystemDefaultUILanguage
LoadLibraryA
EndUpdateResourceA
GetStartupInfoA
GetModuleHandleA

user32

ExitWindowsEx
wsprintfA

advapi32

SetServiceStatus
CreateServiceA
StartServiceA
RegSetValueExA
CloseServiceHandle
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
OpenSCManagerA
OpenServiceA
DeleteService
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA
RegCloseKey

ws2_32

select
__WSAFDIsSet
recv
send
WSAIoctl
closesocket
WSAStartup
htons
inet_addr
WSACleanup
sendto
htonl
inet_ntoa
gethostbyname
socket
connect
setsockopt

msvcrt

__getmainargs
strchr
rand
_controlfp
__set_app_type
__p__fmode
__p__commode
realloc
malloc
strstr
atoi
strncpy
strcspn
exit
sprintf
strncmp
_except_handler3
_exit
_XcptFilter
_acmdln
??2@YAPAXI@Z
_initterm
__setusermatherr
_adjust_fdiv

Sections

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aae83a0a5261a7e25d78063ac46cf90e

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

msvcrt

Sections

.data Size: 22KB - Virtual size: 22KB

.rsrc Size: 9KB - Virtual size: 8KB

.data
Size: 22KB - Virtual size: 22KB

.rsrc
Size: 9KB - Virtual size: 8KB