c6239d3a7f1d88328062dede53bec4ccc2fa63c74b32f2119bfbd37a35eba52b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c6239d3a7f1d88328062dede53bec4ccc2fa63c74b32f2119bfbd37a35eba52b
Size

36KB
MD5

02a8f7dfdabdd4a096f2a5215dace7c4
SHA1

53aea3405b6035bf94362d92edf0c0c1d0009bdf
SHA256

c6239d3a7f1d88328062dede53bec4ccc2fa63c74b32f2119bfbd37a35eba52b
SHA512

499fecac1b5a0177f70cb16f44656eb7ba547e1960e9799d1957e229f6b55616b6813b5b812d04a2bb6268ae6b7ebe280e40f698ec530b988a94b1369d65af8b
SSDEEP

768:o+MXbnmEbVVbN05pWnrmJ9OnA8z49kYEdT+HSJ1+tLG:Ub9FNepzJ9OD82z1WLG

Score

N/A

Malware Config

Signatures

Files

c6239d3a7f1d88328062dede53bec4ccc2fa63c74b32f2119bfbd37a35eba52b
.exe windows x86

f43d3e486a2bceb96bc1ed40631eb01f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

urlmon

Extract
CreateAsyncBindCtx
ZonesReInit
DllCanUnloadNow
IsAsyncMoniker
IsValidURL
URLDownloadW

wsock32

accept
htonl
SetServiceA
gethostbyaddr
listen
accept
bind
htons
sethostname

Sections

.text
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 568B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE