1f8c0b5728fdc2c6e7b7d4122df8a78814076253466191bebf74af53cce2dfac

General

Target

1f8c0b5728fdc2c6e7b7d4122df8a78814076253466191bebf74af53cce2dfac
Size

93KB
MD5

c6e3e0b44a6bc432597a48376912d1c8
SHA1

319e2a8ef3f686cd518790b8691814df1c2ef6f8
SHA256

1f8c0b5728fdc2c6e7b7d4122df8a78814076253466191bebf74af53cce2dfac
SHA512

4790e7ad237787823bba7a1dafbcee4f2b0fa4d214420bd389e820759392223eba151883591120ea4ab159f99321bdbb7a022a9f1a82632dfdf75df8a61b1a81
SSDEEP

1536:Ald0ZvvNlOyjr6SwZ8lEJfHUnwaWolXthI9eN2:PvvNUZ8lEJf0nXWol9hI22

Score

N/A

Malware Config

Signatures

Files

1f8c0b5728fdc2c6e7b7d4122df8a78814076253466191bebf74af53cce2dfac
.exe windows x86

b1e59affce8b118dc31009b2507df4e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
WriteFile
GetSystemDirectoryA
Sleep
WinExec
SetFilePointer
GetModuleHandleA
lstrlenA
lstrcatA
MoveFileA
ReadFile
GetFileSize
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetLastError
CreateFileA
GetFileTime
SetFileTime
CloseHandle
LoadLibraryA
GetModuleFileNameA
GetProcAddress
RtlUnwind
GetCommandLineA
GetVersionExA
InterlockedExchange
VirtualQuery
ExitProcess
TerminateProcess
GetCurrentProcess
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
HeapAlloc
GetACP
GetOEMCP
GetCPInfo
VirtualAlloc
HeapReAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapSize
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
GetLocaleInfoA
VirtualProtect
GetSystemInfo

advapi32

ChangeServiceConfig2A
RegOpenKeyExA
RegCreateKeyA
RegSetValueExA
RegCloseKey
ControlService
OpenSCManagerA
OpenServiceA
CloseServiceHandle
CreateServiceA

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b1e59affce8b118dc31009b2507df4e0

Headers

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 48KB - Virtual size: 52KB

.rsrc Size: 4KB - Virtual size: 16B

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 48KB - Virtual size: 52KB

.rsrc
Size: 4KB - Virtual size: 16B