25deb15f550ea81f06705f3e043971bd6c2445cf39c0f99f60e17aa8cde0e069

General

Target

25deb15f550ea81f06705f3e043971bd6c2445cf39c0f99f60e17aa8cde0e069
Size

83KB
MD5

3756b3abc1e311d7bcd8b13defdc381f
SHA1

22dfcfa1d6334bc7a0f93838d1a037064c25f57d
SHA256

25deb15f550ea81f06705f3e043971bd6c2445cf39c0f99f60e17aa8cde0e069
SHA512

8c59e225a2746e794e7cdcebb5cd74c43f039270dbb3e9664875d9291a31111f67795c3d96765877fe1bbf3e15750e5967a1bb94c84e55a2583c1ef62e0d095a
SSDEEP

1536:z7v1Cf1EJnAnasSxiphdPGZJ1DgOChQ3EK8lhLJcHlXQYf5ulxg1d:zM6zOGZJ1DHChJDhLuRQYBurg1d

Score

N/A

Malware Config

Signatures

Files

25deb15f550ea81f06705f3e043971bd6c2445cf39c0f99f60e17aa8cde0e069
.exe windows x86

a85d0afe8708608d1e0a3b999a4e5d76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
lstrlenA
CreateThread
CopyFileA
GetSystemDirectoryA
GetModuleFileNameA
GetTickCount
CreateMutexA
OpenMutexA
LoadLibraryA
GetProcAddress
GetSystemWindowsDirectoryA
FreeLibrary
CloseHandle
FlushFileBuffers
HeapSize
SetStdHandle
LCMapStringW
LCMapStringA
GetCurrentProcessId
QueryPerformanceCounter
GetSystemInfo
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
TlsAlloc
SetLastError
GetCurrentThreadId
GetLastError
TlsFree
TlsSetValue
TlsGetValue
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
InitializeCriticalSection
RtlUnwind
InterlockedExchange
VirtualQuery
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetCPInfo
GetLocaleInfoA
GetACP
GetOEMCP
SetFilePointer
VirtualProtect

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA

ws2_32

WSAStartup
socket
sendto
getservbyport
ntohs
gethostbyaddr
htons
getservbyname
htonl
inet_ntoa
gethostbyname
WSAGetLastError
inet_addr

Sections

.text
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a85d0afe8708608d1e0a3b999a4e5d76

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

Sections

.text Size: 36KB - Virtual size: 34KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 35KB - Virtual size: 37KB

.text
Size: 36KB - Virtual size: 34KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 35KB - Virtual size: 37KB