6a4c846e794aefd67c843a9b513b570397834e1f42fa7276386dfd05e8dba6cd

General

Target

6a4c846e794aefd67c843a9b513b570397834e1f42fa7276386dfd05e8dba6cd
Size

48KB
MD5

8fd1cb9f54a8605197a9d8d160360bc8
SHA1

7c2e3dbf2f7095ea43ebf560c5f3fd6aca5093b0
SHA256

6a4c846e794aefd67c843a9b513b570397834e1f42fa7276386dfd05e8dba6cd
SHA512

2f270540361ac361a11fc59936e667f72d74895a0b280573f39ecbd2d5a0be7a2e417938158e227171d597e133f6183b0946510d99be56a3941fbbd1413f5b2f
SSDEEP

768:vLJeyv9TGZ1/HfyuEyv4sgCPgqkERJnYperdQDvGegl:vL7v9TGZ1vLzv7oqkEzoerdQqfl

Score

N/A

Malware Config

Signatures

Files

6a4c846e794aefd67c843a9b513b570397834e1f42fa7276386dfd05e8dba6cd
.exe windows x86

b6bdadddfdf2339497981a90c3884563

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
GetProcessHeap
Sleep
ReadFile
ConnectNamedPipe
HeapCreate
GetModuleFileNameA
FreeLibrary
ReadProcessMemory
OpenProcess
GetCurrentProcess
ExitProcess
FormatMessageA
CreateThread
WaitNamedPipeA
CreateFileA
LoadLibraryA
GetProcAddress
GetLastError
WriteFile
FlushFileBuffers
DisconnectNamedPipe
CloseHandle
CreateNamedPipeA
ExitThread
SetStdHandle
GetOEMCP
HeapFree
HeapReAlloc
RtlUnwind
GetModuleHandleA
GetCommandLineA
GetVersionExA
HeapDestroy
VirtualFree
VirtualAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
InterlockedExchange
VirtualQuery
TerminateProcess
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
GetLocaleInfoA
GetCPInfo
VirtualProtect
GetSystemInfo
GetStringTypeA
GetStringTypeW
GetACP
HeapSize

advapi32

CreateServiceA
StartServiceA
ControlService
QueryServiceStatus
DeleteService
CloseServiceHandle
OpenSCManagerA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
RegOpenKeyExA
RegQueryValueExA
SetServiceStatus
OpenServiceA

psapi

GetModuleInformation

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b6bdadddfdf2339497981a90c3884563

Headers

File Characteristics

Imports

kernel32

advapi32

psapi

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 8KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 8KB