5fed7de7415f0371f2164cc5728b3c463965847418f393b94d8d448f1d29d1b7

General

Target

5fed7de7415f0371f2164cc5728b3c463965847418f393b94d8d448f1d29d1b7
Size

1.7MB
MD5

4fae8234233ef2b7f7586c68a0e7e6b2
SHA1

80ef316e906e42b288af8446ef7a772e994d86b1
SHA256

5fed7de7415f0371f2164cc5728b3c463965847418f393b94d8d448f1d29d1b7
SHA512

2ef0708238b10ed1a527b75664c22aa82b82b285e3ad08650000ed5c8e38f96148cfdf270af77ba899c73b84b4170f4e15dbf70b3f9ea89a60c0b58f7d17cc4e
SSDEEP

49152:AvznENrtWFu20VAzK+U7RYXqYbf1ohmMc:A7nENJW8dVAzKTRY6Ybf1o0Mc

Score

N/A

5fed7de7415f0371f2164cc5728b3c463965847418f393b94d8d448f1d29d1b7
.zip

Password: infected
sts.exe
.exe windows x86

8e3a4205799efbf1655a5284748544ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

shell32

ShellExecuteA

ws2_32

setsockopt

wldap32

ord26

user32

MessageBoxA

advapi32

ReportEventA

Sections

.MPRESS1
Size: 1.7MB - Virtual size: 5.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.MPRESS2
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE