65f3da67744b81baa74edd1691472c94d6b4925effb367cd551af85a844048eb

General

Target

65f3da67744b81baa74edd1691472c94d6b4925effb367cd551af85a844048eb
Size

108KB
MD5

44f6110e548b8018f01d838a55fdaba0
SHA1

0f9ccd7c4d0c13a8ae47bc7eeddeae5c807f3fec
SHA256

65f3da67744b81baa74edd1691472c94d6b4925effb367cd551af85a844048eb
SHA512

adc2ab7898eda86d1aabc68e2231bc892091597ec9e92b06d1a3b4f00adb195bc39474f5698082dfae6e939d891dac03dd349267c8ffd30748765070db6c8a69
SSDEEP

1536:leRnCjzR8tr+5Mu5XjPYAtj48UJC5OZi04i5V1oJwmAMmoD4R:leRn+4r+5Mu5XbY+j4eOMwmAM

Score

N/A

Malware Config

Signatures

Files

65f3da67744b81baa74edd1691472c94d6b4925effb367cd551af85a844048eb
.exe windows x86

fb3261eb34cbd961100e0c616b979293

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetInputState
wsprintfA

advapi32

StartServiceA
GetUserNameA
CreateServiceA
RegSetValueExA
AddAce
GetAce
AddAccessAllowedAce
GetSecurityDescriptorControl
SetSecurityDescriptorDacl
EqualSid
InitializeAcl
GetLengthSid
GetAclInformation
InitializeSecurityDescriptor
GetFileSecurityA
OpenServiceA
OpenSCManagerA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
_acmdln
exit
_XcptFilter
_exit
??1type_info@@UAE@XZ
_except_handler3
_CxxThrowException
__CxxFrameHandler
??2@YAPAXI@Z
time
sprintf
malloc
free
??3@YAXPAX@Z
__getmainargs

netapi32

NetUserGetLocalGroups
NetApiBufferFree

kernel32

GetStartupInfoA
MultiByteToWideChar
lstrcmpiA
SetUnhandledExceptionFilter
SizeofResource
MoveFileA
GetTempPathA
SystemTimeToFileTime
LocalFileTimeToFileTime
GetDiskFreeSpaceExA
ExitProcess
GetFileAttributesA
GetLastError
GetCommandLineA
WideCharToMultiByte
CreateMutexA
ReleaseMutex
DeleteFileA
Sleep
HeapFree
HeapAlloc
lstrcpyA
FindResourceA
SetFileTime
GetModuleHandleA
GetModuleFileNameA
CreateFileA
FreeResource
SetFileAttributesA
FreeLibrary
GetProcAddress
LoadLibraryA
CloseHandle

Sections

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fb3261eb34cbd961100e0c616b979293

Headers

File Characteristics

Imports

user32

advapi32

msvcrt

netapi32

kernel32

Sections

.text Size: 92KB - Virtual size: 92KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 92KB - Virtual size: 92KB

.rsrc
Size: 12KB - Virtual size: 12KB