48d234d3d3a1ae0a0c63e586887fd46137bfd24ac4af714eda614ce1490379ee

General

Target

48d234d3d3a1ae0a0c63e586887fd46137bfd24ac4af714eda614ce1490379ee
Size

56KB
MD5

b25eaf41ee2a35935c4b268ab7de2b6e
SHA1

d5004fac45febdb627ccac36125b525ee5648e81
SHA256

48d234d3d3a1ae0a0c63e586887fd46137bfd24ac4af714eda614ce1490379ee
SHA512

ea1928d9e0d9c1bb7ef945142f4fa75882b5fb383fee012b930ab76cbbd1551b12efea0d722fd3490d4eaf239c11c253e8b6d095810b90c3d102c9cc8401d3d1
SSDEEP

768:h8WrwAv+y6yoYbYst0YhSXtGj1GOnhYIUrl9tF2GM+:h8ozv+0vRytGB71Uft4v

Score

N/A

Malware Config

Signatures

Files

48d234d3d3a1ae0a0c63e586887fd46137bfd24ac4af714eda614ce1490379ee
.exe windows x86

0015c080a1bf2304175fc40c0d7d93f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
SetUnhandledExceptionFilter
GetLocalTime
FindResourceA
LoadResource
CreateFileA
SystemTimeToFileTime
LocalFileTimeToFileTime
FreeResource
MoveFileA
SetFileAttributesA
MultiByteToWideChar
WideCharToMultiByte
ExitProcess
GetProcessHeap
HeapAlloc
GetModuleHandleA
HeapFree
GetProcAddress
LoadLibraryA
ReleaseMutex
RtlUnwind
HeapReAlloc
RaiseException
GetStartupInfoA
GetCommandLineA
GetVersion
VirtualFree
VirtualAlloc
IsBadWritePtr
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
WriteFile
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

advapi32

OpenSCManagerA
StartServiceA
CreateServiceA
RegCreateKeyExA
RegSetValueExA
LookupAccountNameA
GetFileSecurityA
InitializeSecurityDescriptor
GetSecurityDescriptorDacl
GetAclInformation
InitializeAcl
AddAce
GetAce
EqualSid
AddAccessAllowedAce
GetSecurityDescriptorControl
SetFileSecurityA

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0015c080a1bf2304175fc40c0d7d93f5

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 16B

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 16B