75531a10d773ac5ebfeea6d574ad2c96ccfaaed8be953fc32704877b92a71518

General

Target

75531a10d773ac5ebfeea6d574ad2c96ccfaaed8be953fc32704877b92a71518
Size

42KB
MD5

7b8273ac07e48f898773f558663bb71a
SHA1

ca3f1764853780c4162d58daf1327e1531d84d6b
SHA256

75531a10d773ac5ebfeea6d574ad2c96ccfaaed8be953fc32704877b92a71518
SHA512

0cae00b11acb5b312555d3d688559e78c6de4e931ae0369b38d20f6ee2f0e58a4e61cde3d81168bea3f1d36c19fc07b05ef61621b37a5f12e140b6a0a24b78dc
SSDEEP

768:M2P0008KCTzXaYCgmPMrAQ/USEtaZR9k/Ii2:zP9KC3nCgOMrAQcSiaKIi

Score

N/A

Malware Config

Signatures

Files

75531a10d773ac5ebfeea6d574ad2c96ccfaaed8be953fc32704877b92a71518
.dll windows x86

ed25f9c3164f8a83fdf5a455c5d848bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
wsprintfA
DefWindowProcA
PostQuitMessage
DispatchMessageA
RegisterClassExA
CreateWindowExA
MoveWindow
SendMessageA
RegisterDeviceNotificationA
GetMessageA
TranslateMessage

advapi32

OpenProcessToken
QueryServiceStatus
ControlService
DeleteService
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
AdjustTokenPrivileges
LookupPrivilegeValueA
RegCloseKey
RegQueryValueExA

ws2_32

htonl
gethostbyname
gethostname
inet_ntoa

mpr

WNetCloseEnum
WNetOpenEnumA
WNetCancelConnection2A
WNetAddConnection2A
WNetEnumResourceA

msvcrt

free
time
srand
tolower
_strlwr
_stricmp
strcpy
rand
fputs
strstr
_initterm
fgets
fclose
memset
memcmp
strlen
strcat
sprintf
memcpy
_except_handler3
strcmp
strncpy
malloc
_adjust_fdiv
fopen

WideCharToMultiByte
GetModuleFileNameA

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1016B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ed25f9c3164f8a83fdf5a455c5d848bd

Headers

File Characteristics

Imports

user32

advapi32

ws2_32

mpr

msvcrt

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 1016B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 1016B

.reloc
Size: 2KB - Virtual size: 2KB