afe473a3ba8f28ba8447e1fe6e4d6cf01819bab97a1b17343374fc12b9e14bdf

Sharing

Copy URL Twitter E-mail

General

Target

afe473a3ba8f28ba8447e1fe6e4d6cf01819bab97a1b17343374fc12b9e14bdf
Size

196KB
MD5

89cb9d15dec7971ee8cdc05ca6caebb1
SHA1

2c1f238351b4f9cbe2c33841059914d8e9606509
SHA256

afe473a3ba8f28ba8447e1fe6e4d6cf01819bab97a1b17343374fc12b9e14bdf
SHA512

430b61cc0390fec1b4534ac5ea9b186877dc4d30743a6d222820c4d22a457bbd0fbc71f72acadfbba49f9cf8403cd6219868db9d588408d40509b087843a9269
SSDEEP

6144:Z9eycWoBodf9BRfdiBxo3I1DXrqGTQpL:6umQ3kHw

Score

N/A

Malware Config

Signatures

Files

afe473a3ba8f28ba8447e1fe6e4d6cf01819bab97a1b17343374fc12b9e14bdf
.exe windows x86

668ae18ccf4f8ab3d3d73db73576dfd7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetDlgItemTextA
PostMessageA
EndDialog
EnableWindow
DefWindowProcA
ReleaseDC
SendMessageA
SetFocus
KillTimer
DispatchMessageA
GetFocus
MessageBoxA
GetWindowRect
PostQuitMessage
LoadCursorA
DestroyWindow
DialogBoxParamA
ShowWindow

advapi32

ControlService
FreeSid
AdjustTokenPrivileges
RegQueryInfoKeyA
RegEnumValueA
RegDeleteValueA
RegOpenKeyA
RegCreateKeyExA
OpenProcessToken
CloseServiceHandle
LookupPrivilegeValueA
RegFlushKey
QueryServiceStatus
RegOpenKeyExA
StartServiceCtrlDispatcherA
RegDeleteKeyA
GetUserNameA
CreateServiceA
OpenServiceA
ChangeServiceConfigA

kernel32

HeapCreate
VirtualFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
HeapReAlloc
IsBadWritePtr
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLastError
SetThreadPriority
GetCurrentProcessId
FormatMessageA
GetModuleHandleA
HeapFree
CreateProcessA
GetPrivateProfileStringA
GetTimeZoneInformation
GetFileAttributesA
GetProcAddress
FindNextFileA
CreateToolhelp32Snapshot
GetConsoleMode
DeleteFileA
CloseHandle
MapViewOfFile
HeapSize
ExpandEnvironmentStringsA
GlobalAlloc
GlobalUnlock
IsValidCodePage
SetUnhandledExceptionFilter
FlushFileBuffers
InterlockedDecrement
FindClose
SetFilePointer
SuspendThread
GetHandleInformation
VirtualAlloc
ExitProcess
GetStartupInfoA
GetCommandLineA
GetVersion
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

668ae18ccf4f8ab3d3d73db73576dfd7

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 48KB - Virtual size: 46KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 140KB - Virtual size: 139KB

.text
Size: 48KB - Virtual size: 46KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 140KB - Virtual size: 139KB