Setupasdf[.]Exe

Sharing

Copy URL

Twitter E-mail

General

Target

Setupasdf.Exe
Size

64KB
MD5

1b7af5de542aced976404383416f6722
SHA1

1f28ddc8dbfc58a6c627669e56673d914a9a6c5c
SHA256

f7fb208405fdbb321f10a161fc3b785706d2cea17b30d2d2196f03e900a79126
SHA512

04f3615149839cdd2737d6a837fc69d2ab181b94a4563b67eaf95d76b8a4009dba0f02b4bcefa1c5a5fb496dd80a15f373214e71c3612016f19265c3b28ddda5
SSDEEP

1536:Sv6jLwUkDK9VTR79jdqgr69rhswJlXOPJ6XcfU:SewUdV79jdaD+PJ6XcfU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Setupasdf.Exe

Files

Setupasdf.Exe
.exe windows:4 windows x86

9b587b8363072dbc41cf6fb8f8b0184e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTickCount
GetPrivateProfileStringA
GetModuleFileNameA
GetExitCodeProcess
CreateProcessA
FreeLibrary
LoadLibraryA
GetSystemDirectoryA
GetShortPathNameA
SetLastError
FlushFileBuffers
SetStdHandle
ReadFile
HeapSize
GetVersionExA
lstrlenA
Sleep
CreateFileA
CloseHandle
lstrcmpA
GlobalAlloc
GlobalFree
CreateMutexA
GetLastError
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess
RtlUnwind
RaiseException
GetCurrentProcessId
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsFree
GetCurrentThreadId
TlsSetValue
TlsGetValue
TlsAlloc
HeapDestroy
HeapCreate
VirtualFree
HeapFree
GetACP
GetOEMCP
GetCPInfo
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapAlloc
SetUnhandledExceptionFilter
LCMapStringA
MultiByteToWideChar
LCMapStringW
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
VirtualProtect
GetSystemInfo
VirtualQuery
SetFilePointer
IsBadReadPtr
IsBadCodePtr
GetLocaleInfoA

user32

DispatchMessageA
TranslateMessage
PeekMessageA
LoadStringA
MessageBoxA
MsgWaitForMultipleObjects

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

advapi32

OpenServiceA
ControlService
QueryServiceStatus
RegOpenKeyA
RegQueryValueExA
RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegCloseKey
OpenSCManagerA

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b587b8363072dbc41cf6fb8f8b0184e

Headers

File Characteristics

Imports

kernel32

user32

version

advapi32

Sections

.text Size: 52KB - Virtual size: 48KB

.data Size: 4KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 48KB

.data
Size: 4KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 3KB