60ad0a978bb56a975a48ef1389ec9a8877536629d9762fa77856096754a7f5c7

General

Target

60ad0a978bb56a975a48ef1389ec9a8877536629d9762fa77856096754a7f5c7
Size

23KB
MD5

2a0f064dd91c77bc1d721275e77af9d0
SHA1

de62d5aefa6be5c0712d705b72e387380628cb6b
SHA256

60ad0a978bb56a975a48ef1389ec9a8877536629d9762fa77856096754a7f5c7
SHA512

8b690324b45b7f002c47bd717295f133af75b19fa1971212f960c0440cab6babdf71528909797f354a7c165dc40adf9d997d46b860b60b5d55cc84e7242ffb1e
SSDEEP

384:NQ/xZf6qUZhYzcShCqQKFFIgawabGO9N3GkPwjHbT+6tqoVDQSRTyH+NoOOuK+:qbyKssFFIR9NZwPT+ToVQYTyH+

Score

N/A

Malware Config

Signatures

Files

60ad0a978bb56a975a48ef1389ec9a8877536629d9762fa77856096754a7f5c7
.exe windows x86

7a002c9ab906b878b5607c6c003e1508

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WinExec
GetProcAddress
LoadLibraryA
GetTempPathA
ResumeThread
SetThreadPriority
GetCurrentThread
SetPriorityClass
GetCurrentProcess
GetEnvironmentVariableA
OpenMutexA
WaitForSingleObject
ExitProcess
CreateMutexA
lstrlenA
CopyFileA
GlobalMemoryStatusEx
GetComputerNameA
GetLocaleInfoW
GetModuleHandleA
ReleaseMutex
CloseHandle
GetLastError
GetModuleFileNameA
SetFileAttributesA
CreateThread
CreateProcessA
TerminateProcess
Sleep
ExitThread
GetSystemDirectoryA
lstrcatA
lstrcpyA
GetTickCount
GetShortPathNameA
GetStartupInfoA

user32

GetDesktopWindow
wsprintfA

advapi32

StartServiceA
RegOpenKeyA
RegSetValueExA
CloseServiceHandle
RegCloseKey
RegOpenKeyExA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
OpenSCManagerA
OpenServiceA
DeleteService
RegQueryValueExA
CreateServiceA

shell32

ShellExecuteA

ws2_32

recv
WSASocketA
WSAStartup
send
setsockopt
htonl
inet_addr
gethostbyname
socket
htons
connect
closesocket
WSAIoctl
__WSAFDIsSet
select
sendto

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
_except_handler3
strncmp
exit
strstr
strcspn
strncpy
rand
sprintf
malloc
atoi

Sections

.text
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7a002c9ab906b878b5607c6c003e1508

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ws2_32

msvcrt

Sections

.text Size: 15KB - Virtual size: 15KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 3KB - Virtual size: 3KB

.text
Size: 15KB - Virtual size: 15KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 3KB - Virtual size: 3KB