cb21e825cbf5194aaf3948fab95eada975678c1b1cba2a4448c5551a1c13b1a2

General

Target

cb21e825cbf5194aaf3948fab95eada975678c1b1cba2a4448c5551a1c13b1a2
Size

73KB
MD5

57c9de4a8b6ed278a3c2ed4efacc561b
SHA1

ac8affa02a54b6189ad7e9c314539a8785bd9eec
SHA256

cb21e825cbf5194aaf3948fab95eada975678c1b1cba2a4448c5551a1c13b1a2
SHA512

de591a7134ffbd41dde1ac64be6f3d98f2efded3863a9cef63974edd0cfbd1dd40989095ebf09e8a10d0e917f3eaebd9eec6ea30be409199d2846c0cb263776b
SSDEEP

768:Q6RAArLNBc+982cxmnXvneMdiwytjzOvA7I05gd0Z/WrWQGgmgTwtA:dAArMQ81mXWMkt/OlTdc+mXtA

Score

N/A

Malware Config

Signatures

Files

cb21e825cbf5194aaf3948fab95eada975678c1b1cba2a4448c5551a1c13b1a2
.exe windows x86

c0f4299cc8b6e3654ec98acecd2c2fab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
GetFileSize
UnmapViewOfFile
ResumeThread
SetFileAttributesA
SetPriorityClass
GetLastError
CreateProcessA
GetShortPathNameA
GetEnvironmentVariableA
GetModuleFileNameA
WinExec
GetTempFileNameA
GetTempPathA
Sleep
MapViewOfFile
GetPrivateProfileStringA
_lclose
_lwrite
_lcreat
Process32Next
Process32First
CreateToolhelp32Snapshot
WritePrivateProfileStringA
FreeLibrary
DeviceIoControl
OutputDebugStringA
SetSystemTime
GetSystemTime
MoveFileExA
DeleteFileA
LoadLibraryA
GetProcAddress
GetFileAttributesA
CloseHandle
FindResourceA
LoadResource
LockResource
SizeofResource
CreateFileA
WriteFile
GetCurrentProcess
GetSystemDirectoryA
LCMapStringW
LCMapStringA
SetStdHandle
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
SetFilePointer
HeapAlloc
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
FlushFileBuffers

advapi32

OpenServiceA
QueryServiceStatus
StartServiceA
CreateServiceA
OpenSCManagerA
CloseServiceHandle
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

shlwapi

SHDeleteKeyA
PathAppendA

Sections

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0f4299cc8b6e3654ec98acecd2c2fab

Headers

File Characteristics

Imports

kernel32

advapi32

shlwapi

Sections

.rdata Size: 28KB - Virtual size: 28KB

.data Size: 11KB - Virtual size: 16KB

.rsrc Size: 13KB - Virtual size: 16KB

.rdata
Size: 28KB - Virtual size: 28KB

.data
Size: 11KB - Virtual size: 16KB

.rsrc
Size: 13KB - Virtual size: 16KB