f42995313adb4b05f4ae559e5d006c00341e4dbec3bb749302ecf8bb8a36bc33 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f42995313adb4b05f4ae559e5d006c00341e4dbec3bb749302ecf8bb8a36bc33
Size

220KB
MD5

6e82956e6b9ea99dcdfcebe798471b7c
SHA1

ad5c62679975243a5a11fd07799b0d8b68c07c19
SHA256

f42995313adb4b05f4ae559e5d006c00341e4dbec3bb749302ecf8bb8a36bc33
SHA512

a31b94e9f350a4b74e0e02be1e387a1661e2f4c432a3e707860299551f447727be43023f5688989c85426646b7686e7702d61a62b228d99df1039f774217aaf8
SSDEEP

6144:aN+tCblKkA2EFGmc1fkNJz9s1l2S+LpDDOJ7O5:e+skEc179s3jopDaJk

Score

N/A

Malware Config

Signatures

Files

f42995313adb4b05f4ae559e5d006c00341e4dbec3bb749302ecf8bb8a36bc33
.exe windows x86

118393b69ba372668d7f5b60b2896b14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalAlloc
CreateFileA
GetModuleHandleA
WriteFile
CloseHandle
LoadLibraryA
GetProcAddress
FreeLibrary
lstrlenA
OutputDebugStringA
Sleep
GetModuleFileNameA
lstrcatA
GetStartupInfoA

user32

wsprintfA

advapi32

OpenSCManagerA
CreateServiceA
OpenServiceA
CloseServiceHandle
StartServiceA
RegOpenKeyExA
RegSetValueExA
RegCloseKey
RegCreateKeyA

msvcrt

??3@YAXPAX@Z
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

SE
Size: 143KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE