61f78da32486c21e38a597299c2008da633b307a52a2fc082c795c9d6a4d762e

Sharing

Copy URL Twitter E-mail

General

Target

61f78da32486c21e38a597299c2008da633b307a52a2fc082c795c9d6a4d762e
Size

264KB
MD5

1815b1c5e2b41a63058c16a53e477e50
SHA1

395fad0603ff97ebc6fb13011dee15110c72c140
SHA256

61f78da32486c21e38a597299c2008da633b307a52a2fc082c795c9d6a4d762e
SHA512

884ad3e7d16b103281c95710913abc9538c1ffcb942c2d9e83af94e507f47b84a5150b263062bfca85383766d506b1dae6eb4000cd22a656fff78080f4a23037
SSDEEP

6144:lvIkWnKMqXobUIBdwa1v2+nthV3ZhFHdssL4Oc+idohmTgqXQ4fPX5:lQk0qXogIB5BtntjZhFHdssLG+iddn3P

Score

N/A

Malware Config

Signatures

Files

61f78da32486c21e38a597299c2008da633b307a52a2fc082c795c9d6a4d762e
.exe windows x86

75d1a0a75817338f261160402f06353f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
WriteConsoleA
LoadLibraryA
FreeLibrary
GetDateFormatA
GetTimeFormatA
GetCPInfo
VirtualAlloc
TerminateProcess
HeapSize
LCMapStringA
GetTimeZoneInformation
IsValidCodePage
RaiseException
RtlUnwind
GetCurrentProcessId
SetUnhandledExceptionFilter
GetACP
UnhandledExceptionFilter
EnumResourceTypesA
GetConsoleOutputCP
InitializeCriticalSection
LCMapStringW
CompareStringW
SetEnvironmentVariableA
GetStringTypeW
GetLocaleInfoA
SetFilePointer
HeapDestroy
CompareStringA
SetStdHandle
CreateMailslotW
GetTickCount
IsDebuggerPresent
HeapReAlloc
VirtualFree
SetEndOfFile
ReadFile
QueryPerformanceCounter
WriteFile
GetOEMCP
HeapCreate
GetSystemTimeAsFileTime
GetStringTypeA

iphlpapi

GetIpAddrTable

advapi32

QueryServiceConfigW
DeleteService
FreeInheritedFromArray
RegSetValueExW
OpenProcessToken
IsValidSecurityDescriptor
RegRestoreKeyW
GetAce
RegOpenKeyExW
QueryServiceLockStatusW
GetSecurityInfo
EnumDependentServicesW
RegGetKeySecurity
SetSecurityDescriptorDacl
FreeSid
OpenServiceW
SetNamedSecurityInfoW
CloseServiceHandle
SetSecurityInfo
LookupPrivilegeNameA
ControlService
AdjustTokenPrivileges
GetTokenInformation
GetNamedSecurityInfoW
RegCreateKeyExW
SetEntriesInAclW
EqualSid
AllocateAndInitializeSid
LockServiceDatabase
QueryServiceStatus
RegSaveKeyW
InitializeSecurityDescriptor
GetSecurityDescriptorControl
LookupPrivilegeValueA
AddAce
SetEntriesInAclA
InitializeAcl
LookupAccountSidW
LookupPrivilegeDisplayNameA
ChangeServiceConfigW
UnlockServiceDatabase
RegEnumKeyExW
GetAclInformation
IsValidAcl
RegDeleteKeyW
RegCloseKey
RegDeleteValueW
ChangeServiceConfig2W
GetInheritanceSourceW
RegQueryValueExW
StartServiceA
CreateServiceW
OpenSCManagerW
RegEnumValueW

oleacc

LresultFromObject
AccessibleObjectFromPoint

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 202KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75d1a0a75817338f261160402f06353f

Headers

File Characteristics

Imports

kernel32

iphlpapi

advapi32

oleacc

Sections

.text Size: 57KB - Virtual size: 57KB

.rdata Size: 3KB - Virtual size: 146KB

.data Size: 202KB - Virtual size: 202KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 57KB - Virtual size: 57KB

.rdata
Size: 3KB - Virtual size: 146KB

.data
Size: 202KB - Virtual size: 202KB

.rsrc
Size: 512B - Virtual size: 4KB