beyondexecv2[.]exe (1)[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

beyondexecv2.exe (1).zip
Size

46KB
MD5

bb86e376d2a943c6d652c14728249d48
SHA1

1e46cceb73e4e2501127b8f22464f4d8924cf009
SHA256

f4ebc3fc468a07073d068719dc01f1f474176e142739e860e82548522d4912a6
SHA512

f86eab6fd52e03187a9ad1a967274357377e6db30e3b1f7ff17f22ba4f24048d71f052a055b4f81eab54466bd7d2dd1fcf95965484b9a52146ae832152f101a3
SSDEEP

768:Sq85CjgYpmPPoxqOWTHHImPiL4/AMPDiN3K2+qv8D0zHd13e5VoRq7:Sq85Cjg9PAx8HomPiGA0uNOqEgHLe8RY

Score

1^/10

Malware Config

Signatures

Files

beyondexecv2.exe (1).zip
.zip
beyondexecv2.exe
.exe windows x86

50b8eda7bf3a0b6b460ede47a5f18582

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
FlushFileBuffers
GetOverlappedResult
WaitForSingleObject
CreateEventA
LoadResource
GetExitCodeThread
GetStdHandle
ExitThread
LocalAlloc
FormatMessageA
LockResource
SizeofResource
GetSystemDirectoryA
lstrcatA
Sleep
WriteFile
CopyFileA
CreateDirectoryA
LocalFree
lstrcmpiA
lstrcpynA
CreateFileA
GetLastError
GetFileSize
ReadFile
CreateThread
WaitForMultipleObjects
DeleteFileA
CloseHandle
LCMapStringW
RtlUnwind
LCMapStringA
VirtualQuery
GetSystemInfo
VirtualProtect
HeapAlloc
ExitProcess
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapFree
GetCommandLineA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
SetFilePointer
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetACP
GetOEMCP
GetCPInfo
HeapSize
LoadLibraryA
SetStdHandle
GetLocaleInfoA

advapi32

IsValidSid
FreeSid
GetLengthSid
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
IsValidSecurityDescriptor
ControlService
DeleteService
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA
QueryServiceStatus
CloseServiceHandle
SetFileSecurityA
AllocateAndInitializeSid

mpr

WNetAddConnection2A

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
checksums.txt

Sharing

General

Malware Config

Signatures

Files

50b8eda7bf3a0b6b460ede47a5f18582

Headers

File Characteristics

Imports

kernel32

advapi32

mpr

version

Sections

.text Size: 32KB - Virtual size: 28KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 8KB

.rsrc Size: 64KB - Virtual size: 60KB

.text
Size: 32KB - Virtual size: 28KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 64KB - Virtual size: 60KB