3bff207897f6d8cd8f8e178a565d5efdd7d65c6bc270636995d328c768b02af2[.]bin

Resubmissions

12-09-2022 18:17

220912-ww3dvadgf7 6

12-09-2022 17:32

220912-v4lwdsdgb5 6

Sharing

Copy URL

Twitter E-mail

General

Target

3bff207897f6d8cd8f8e178a565d5efdd7d65c6bc270636995d328c768b02af2.bin
Size

33KB
MD5

002325a0a67fded0381b5648d7fe9b8e
SHA1

ee4c025731e791fb358f5f03e9d95fc86ee0a723
SHA256

3bff207897f6d8cd8f8e178a565d5efdd7d65c6bc270636995d328c768b02af2
SHA512

a2870d5e392c649abfa48e24bbf73c5de3e90418b6eb7c2d35291c17b331f3751a1a01eb97b4def28efd01fdf23d59a43d18d991de9f6e8e29167d41a21b77f4
SSDEEP

768:DImJJ/BTGooI35LXpUE7lKXtmoriCmqKyJLOXlCyGT/8YJ:DxvFGrgTUlG8JLOXlCyGT/8W

Score

N/A

Malware Config

Signatures

Files

3bff207897f6d8cd8f8e178a565d5efdd7d65c6bc270636995d328c768b02af2.bin
.exe windows x86

dcf78b59aa0fb7cb098992d54b2e676b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Module32First
FindNextFileA
FindFirstFileA
GlobalFree
DeleteFileA
GetExitCodeProcess
CreateProcessA
CopyFileA
GetTempPathA
GetSystemDirectoryA
GetStartupInfoA
GetStdHandle
TerminateProcess
CreateToolhelp32Snapshot
AllocConsole
GetEnvironmentVariableA
lstrcatA
lstrcpyA
GetShortPathNameA
GetModuleFileNameA
WriteFile
FreeConsole
CreateMutexA
WinExec
CreateThread
CreatePipe
ReadFile
PeekNamedPipe
GetLocalTime
Process32First
CloseHandle
OpenProcess
Process32Next
GetLastError
Sleep

advapi32

OpenProcessToken
GetTokenInformation
LookupAccountSidA

shell32

ShellExecuteA

msvcp60

?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Xlen@std@@YAXXZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z

wininet

InternetWriteFile
HttpEndRequestA
InternetQueryOptionA
InternetSetOptionA
HttpSendRequestExA
HttpAddRequestHeadersA
HttpSendRequestA
InternetCrackUrlA
InternetCloseHandle
InternetConnectA
InternetReadFile
HttpQueryInfoA
HttpOpenRequestA
InternetOpenA

msvcrt

__set_app_type
_except_handler3
__p__fmode
__p__commode
_controlfp
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
exit
_XcptFilter
_exit
_onexit
__dllonexit
system
ftell
fread
free
malloc
strncmp
__CxxFrameHandler
sprintf
atoi
getenv
printf
freopen
_iob
rand
srand
time
strstr
_itoa
strtok
scanf
fflush
strftime
localtime
fclose
fwrite
fseek
fopen

ws2_32

gethostbyname
gethostname
WSAStartup
inet_ntoa

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

dcf78b59aa0fb7cb098992d54b2e676b

Headers

File Characteristics

Imports

kernel32

advapi32

shell32

msvcp60

wininet

msvcrt

ws2_32

Sections

.text Size: 23KB - Virtual size: 22KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 43KB

.rsrc Size: 1024B - Virtual size: 904B

.text
Size: 23KB - Virtual size: 22KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 43KB

.rsrc
Size: 1024B - Virtual size: 904B