83160221ab5411245ea8540c2e515f99c437084a90ec9e5a03c8f364c6465bcb

General

Target

83160221ab5411245ea8540c2e515f99c437084a90ec9e5a03c8f364c6465bcb
Size

40KB
MD5

6b5d5505e801c83482e76b04b7d0094a
SHA1

89259cc83743032f786099956311bdf041df0a57
SHA256

83160221ab5411245ea8540c2e515f99c437084a90ec9e5a03c8f364c6465bcb
SHA512

4be21965736dafac7351ba2f778e889b8951320ef7fe407de1bdc3664a89b19b8a8d1cf64edf1c5e0a5980948d06db4fa5da6ebf8591840ca6161b714a73a519
SSDEEP

192:N4rNeKFBq7Ac/R/qJ/T27k5Ohr2p+aUtYHmZHnjlcB+BZBZODW1AoVQz+DwMP1oK:N45WJ/qJ61nKEGPDW1A9dS1nNl1

Score

N/A

Malware Config

Signatures

Files

83160221ab5411245ea8540c2e515f99c437084a90ec9e5a03c8f364c6465bcb
.exe windows x86

0c48e2428282857a2197eef457d7427a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
GetSystemDirectoryA
ReleaseMutex
GetLastError
CreateMutexA
GetCommandLineA
lstrlenA
GetModuleHandleA
CreateThread
GetCurrentThreadId
MoveFileExA
MoveFileA
FreeResource
WriteFile
SizeofResource
LoadResource
FindResourceA
GetTickCount
GetTempPathA
GetStartupInfoA
WinExec
LoadLibraryA
GetProcAddress
Process32First
Process32Next
lstrcmpiA
Sleep
GetModuleFileNameA
CreateFileA
SetFilePointer
ReadFile
DeleteFileA
CloseHandle

user32

GetInputState
PostThreadMessageA
GetMessageA
LoadCursorA
RegisterClassExA
CreateWindowExA
ShowWindow
UpdateWindow
TranslateMessage
DispatchMessageA
DefWindowProcA
DestroyWindow
PostQuitMessage
wsprintfA
SendMessageA
MessageBoxA
LoadIconA

advapi32

RegDeleteValueA
RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
CreateServiceA
DeleteService
OpenServiceA
RegQueryValueExA
OpenSCManagerA
StartServiceA
ChangeServiceConfigA
RegCloseKey

msvcrt

_strcmpi
_exit
fopen
fwrite
fseek
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_XcptFilter
realloc
malloc
??3@YAXPAX@Z
??2@YAPAXI@Z
_except_handler3
sprintf
strstr
strchr
fclose

Sections

.text
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 716B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c48e2428282857a2197eef457d7427a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

Sections

.text Size: 8KB - Virtual size: 5KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 716B

.rsrc Size: 20KB - Virtual size: 20KB

.text
Size: 8KB - Virtual size: 5KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 716B

.rsrc
Size: 20KB - Virtual size: 20KB