ccc860aaa26e22ba7088dfda167d1a194e6c06399c031377dd607569fd922436

Sharing

Copy URL

Twitter E-mail

General

Target

ccc860aaa26e22ba7088dfda167d1a194e6c06399c031377dd607569fd922436
Size

31KB
MD5

60f2c7e41a80867fc7f83680f8de85b9
SHA1

a98f53fa59560f2ec0169be5764970f2c3112e8e
SHA256

ccc860aaa26e22ba7088dfda167d1a194e6c06399c031377dd607569fd922436
SHA512

0288a7e48202efc3da4ba5eaf2a33ab3ed9d5c38af4eac0fbf6827b0b583ca4ad5457c61806e37931eb046cbb4505c217ed38d2d0f370a09cd153ed0f846779c
SSDEEP

384:beHvpGm0hdyVEfFOgeyOLz9uUtnKIzp8yZpjA:6gNhney0AGdx

Score

N/A

Malware Config

Signatures

Files

ccc860aaa26e22ba7088dfda167d1a194e6c06399c031377dd607569fd922436
.dll windows x86

bf6b0a8d759ee0b12aef484e0864bb2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32Next
DeviceIoControl
GetSystemDirectoryA
Process32First
CreateToolhelp32Snapshot
GetCurrentProcess
GetWindowsDirectoryA
OutputDebugStringA
Sleep
GetLastError
FreeLibrary
GlobalFree
LoadLibraryExA
GlobalAlloc
GetProcAddress
CreateThread
GetSystemTime
FreeResource
FindResourceA
LoadResource
LockResource
CreateFileA
SizeofResource
WriteFile
CloseHandle
GetModuleHandleA

advapi32

AdjustTokenPrivileges
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA
CloseServiceHandle
OpenProcessToken
LookupPrivilegeValueA

msvcp60

?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

msvcrt

strcat
strcpy
strlen
??2@YAPAXI@Z
free
_initterm
malloc
_adjust_fdiv
_stricmp

Exports

Exports

droqp

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf6b0a8d759ee0b12aef484e0864bb2c

Headers

File Characteristics

Imports

kernel32

advapi32

msvcp60

msvcrt

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 11KB - Virtual size: 11KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 11KB - Virtual size: 11KB

.reloc
Size: 1KB - Virtual size: 1KB