c6c938bf3f48e9e0c7f0eb5e319afcae2d8e196162d860ce28b0df9e6117ee71 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6c938bf3f48e9e0c7f0eb5e319afcae2d8e196162d860ce28b0df9e6117ee71
Size

28KB
MD5

9b73e5eb8bee4ade34107f6384c02d67
SHA1

7fec3f2fcba93f51ac3bfdd7c3a0aa4b7a2c9187
SHA256

c6c938bf3f48e9e0c7f0eb5e319afcae2d8e196162d860ce28b0df9e6117ee71
SHA512

3eaa8cdd77f4ae82e819a6af6d08bf5b1f3c61d50613933744d0d58cbab691cfde7dfd325fbc10c41a613a686d76306dd94dbf6ada75c8706de441f396891d50
SSDEEP

768:1FGHzLFnukFiqqIR9cwyqRNoGbCkUHn0ka:1FSFmXUeqfokEUj

Score

N/A

Malware Config

Signatures

Files

c6c938bf3f48e9e0c7f0eb5e319afcae2d8e196162d860ce28b0df9e6117ee71
.exe windows x86

831de3bf6168386febb8b4ab541bc95e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

WSAAsyncGetProtoByNumber
__WSAFDIsSet
s_perror
listen
TransmitFile
AcceptEx
shutdown
recvfrom
GetTypeByNameA

user32

CheckDlgButton
CreateDialogParamA
AnyPopup

shell32

DllRegisterServer
InternalExtractIconListA
DAD_DragMove
CheckEscapesA
IsLFNDrive
OpenRegStream
Options_RunDLLW

Sections

.text
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE