05defe35ca172930bfd8ecb71feaa5d2c3fa0c6d10d003a98c71ef14d504fac6

Sharing

Copy URL

Twitter E-mail

General

Target

05defe35ca172930bfd8ecb71feaa5d2c3fa0c6d10d003a98c71ef14d504fac6
Size

116KB
MD5

2fb74a511bdd6bb4c18a9c340f52785e
SHA1

cc82326f8a0f83166646da7c3c7bcff82a5c2967
SHA256

05defe35ca172930bfd8ecb71feaa5d2c3fa0c6d10d003a98c71ef14d504fac6
SHA512

c01b459d83895bc718f49dd2ef92c83a049885370f2918b8447ae730f0999e628b9426ec94272936c65a29c6fde3013d6162f5be5cb2403c5b624b99c5d0695e
SSDEEP

1536:SJZFAonpNuKYvZvujR/5/0KtNfiL+srsrW8r+8JiURntIAleWR:GFA+pNuKIZ2jR/eKe9U9r+8RntI5Q

Score

N/A

Malware Config

Signatures

Files

05defe35ca172930bfd8ecb71feaa5d2c3fa0c6d10d003a98c71ef14d504fac6
.exe windows x86

83356cd74ea0a4248b61d9a8430b8ee0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
HeapAlloc
GetProcessHeap
OpenProcess
CreateFileA
Process32First
CreateToolhelp32Snapshot
GetStdHandle
FreeConsole
GetFileSize
WriteFile
PeekNamedPipe
ReadFile
ExitThread
GetCurrentProcess
DuplicateHandle
CreatePipe
WaitForMultipleObjects
TerminateProcess
DisconnectNamedPipe
CloseHandle
CreateEventA
CreateThread
TerminateThread
Sleep
CreateProcessA
WaitForSingleObject
SetEvent
GetModuleFileNameA
Process32Next
GetLastError
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
LoadLibraryA
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetCPInfo
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetProcAddress
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetEndOfFile
SetFilePointer
SetStdHandle
CreateDirectoryA
ExitProcess
PeekConsoleInputA
GetNumberOfConsoleInputEvents
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetFileType
GetCommandLineA
GetVersion
RtlUnwind
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetHandleCount
GetStartupInfoA
WideCharToMultiByte
FlushFileBuffers

advapi32

GetTokenInformation
LookupAccountSidA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
OpenServiceA
ControlService
DeleteService
OpenSCManagerA
CreateServiceA
CloseServiceHandle
StartServiceA
RegDeleteValueA
RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegCreateKeyA
RegSetValueExA
OpenProcessToken

ws2_32

recv
__WSAFDIsSet
select
send
listen
getsockname
recvfrom
accept
WSASetLastError
socket
setsockopt
bind
htons
getservbyport
ntohs
getservbyname
inet_addr
gethostbyname
inet_ntoa
gethostbyaddr
WSAGetLastError
WSAStartup
WSACleanup
closesocket
connect

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

83356cd74ea0a4248b61d9a8430b8ee0

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 20KB - Virtual size: 48KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 20KB - Virtual size: 48KB