c5f25f993b5c38bc40c8eff98d0e2d10fdc47f8c3f6bc7c5d44de3e2f394a2e0

General

Target

c5f25f993b5c38bc40c8eff98d0e2d10fdc47f8c3f6bc7c5d44de3e2f394a2e0
Size

48KB
MD5

e7afcd43fa29ed65ecc6e78de56e5ef3
SHA1

60a3c731bb6cda90412892012a1467004cd9f877
SHA256

c5f25f993b5c38bc40c8eff98d0e2d10fdc47f8c3f6bc7c5d44de3e2f394a2e0
SHA512

1d9b623e35fa1b1b8fb997f7525a505c1dae53155376bc080cf1a8dc57c422de49f04ec769f6e86bffed580de5ebfa6bee9469e29be707ebb776cce7a27c786c
SSDEEP

768:x71lumfN5MDz98mYAc1UA9XbeqqiIE5xU+N3I6qdABto:x7VfNOFYAWUA9reqq9E5xT+dAto

Score

N/A

Malware Config

Signatures

Files

c5f25f993b5c38bc40c8eff98d0e2d10fdc47f8c3f6bc7c5d44de3e2f394a2e0
.exe windows x86

b7abb1592aebdaffe59a6440e8309656

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetStringTypeA
SetLastError
LCMapStringA
MultiByteToWideChar
ReadFile
SetEndOfFile
GetModuleHandleA
GetModuleFileNameA
CopyFileA
Sleep
MoveFileExA
GetSystemDefaultLCID
OpenProcess
CloseHandle
GetWindowsDirectoryA
GetFileAttributesA
SetFileAttributesA
LCMapStringW
GetVersionExA
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
GetCommandLineA
GetVersion
ExitProcess
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
HeapAlloc
VirtualAlloc
HeapReAlloc
SetStdHandle
FlushFileBuffers
CreateFileA
GetStringTypeW

user32

SendInput

advapi32

SetServiceStatus
StartServiceCtrlDispatcherA
RegOpenKeyExA
CreateServiceA
OpenSCManagerA
OpenServiceA
DeleteService
CloseServiceHandle
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegisterServiceCtrlHandlerA

shell32

ShellExecuteA

psapi

EnumProcesses
EnumProcessModules
GetModuleBaseNameA

Sections

.text
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b7abb1592aebdaffe59a6440e8309656

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

psapi

Sections

.text Size: 28KB - Virtual size: 25KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 16KB

.text
Size: 28KB - Virtual size: 25KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 16KB