bc64488289995a54fc110f71583ed9862c0b2164a818c53f79e3f1e6b2e9662f

Sharing

Copy URL

Twitter E-mail

General

Target

bc64488289995a54fc110f71583ed9862c0b2164a818c53f79e3f1e6b2e9662f
Size

84KB
MD5

8723fe469f9f126b6395727a3beb007f
SHA1

bf032e9c0961aa040567d220954d1113c2b895f2
SHA256

bc64488289995a54fc110f71583ed9862c0b2164a818c53f79e3f1e6b2e9662f
SHA512

2aa154fff468eee9af2c1c4277b09a424d25d5857ceccee72ee15a0502383b6d8bee6ffc3836b0576451675b6368b85da489932e509f1d43677ab4b2d58966fa
SSDEEP

1536:yhy0R0rrpZnlHli88iY/1YMHLBh78VK7HFHxETY0cNcwYzUh4CY7Yb+4UK:yhmrlh9zANTrD8VK7HFREsmwYzUh4CYs

Score

N/A

Malware Config

Signatures

Files

bc64488289995a54fc110f71583ed9862c0b2164a818c53f79e3f1e6b2e9662f
.exe windows x86

c9c56334d193c2397da8414f0b5e90ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesW
FindClose
GetConsoleMode
VirtualAlloc
SearchPathA
WritePrivateProfileStructA
ExitProcess
IsDebuggerPresent
GlobalUnlock
HeapSize
CreateFileA
GetSystemDirectoryW
LoadLibraryA
GetModuleHandleW
FileTimeToLocalFileTime
HeapFree
GetProcAddress
RemoveDirectoryA

advapi32

ChangeServiceConfigA
RegQueryInfoKeyA
RegEnumValueA
RegQueryValueW
GetSecurityDescriptorControl
RegQueryValueExW
EnumServicesStatusExA
QueryServiceConfig2A
RegOpenKeyW
AdjustTokenPrivileges
RegDeleteValueA
RegEnumKeyExW
RegQueryValueExA
SetSecurityDescriptorDacl
CloseServiceHandle
RegCreateKeyExW
FreeSid
InitializeSecurityDescriptor
StartServiceW

version

VerQueryValueA
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoA
GetFileVersionInfoSizeA

gdi32

GetObjectA
CreateFontIndirectA
GetTextColor
GdiFlush
GetCharWidthA
SetMapMode
GetPaletteEntries
Polyline
SetColorAdjustment

msvcrt

_read
_ltow
atol
_amsg_exit
_wcsdup
_tzset
memset
wcstol
_exit
div
_acmdln
exit
_wcsnicmp
bsearch
_itow
localtime
_mbsnbcpy
__p__fmode

Sections

.text
Size: 46KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c9c56334d193c2397da8414f0b5e90ea

Headers

File Characteristics

Imports

kernel32

advapi32

version

gdi32

msvcrt

Sections

.text Size: 46KB - Virtual size: 47KB

.data Size: 2KB - Virtual size: 2KB

.rdata Size: 10KB - Virtual size: 80KB

.adata Size: 8KB - Virtual size: 37KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 46KB - Virtual size: 47KB

.data
Size: 2KB - Virtual size: 2KB

.rdata
Size: 10KB - Virtual size: 80KB

.adata
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 17KB - Virtual size: 17KB