c6355e8f47e78021e3de3168160db0801bdbabfadbc88a04e1d2437f57a32d36

General

Target

c6355e8f47e78021e3de3168160db0801bdbabfadbc88a04e1d2437f57a32d36
Size

108KB
MD5

ca9d1a1f6db591f77ef29fa315263682
SHA1

f3f8d492b7cb1d050cc6ac733bc916206a958cde
SHA256

c6355e8f47e78021e3de3168160db0801bdbabfadbc88a04e1d2437f57a32d36
SHA512

b5a434349fe83acf1b9aecb23ab76ded05df6e34f09e000adca18d8b962814f9d88a372740959effefbd2a4e27c2a1c2f236508169b76d80b48d7f19907f6be8
SSDEEP

1536:z009ZTDicg6/qprhAaVKJR4odImY085yH3iHN046LHHw8QheIBqwymO/Ml2EZe+n:TD06/DFJNyy2e46LnwTomtZJ9EuuQN

Score

N/A

Malware Config

Signatures

Files

c6355e8f47e78021e3de3168160db0801bdbabfadbc88a04e1d2437f57a32d36
.exe windows x86

a957dfba49dd8e1100bc67813cacb66d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2help

WahCreateHandleContextTable
WahCloseHandleHelper
WahCompleteRequest
WahCreateSocketHandle
WahCloseThread
WahCloseNotificationHandleHelper
WahWaitForNotification
WahCreateNotificationHandle
WahCloseSocketHandle

msvcrt

_c_exit
_chdir
exit
_acmdln
_access
_XcptFilter
_adjust_fdiv
_initterm
_exit
__set_app_type
_atoldbl
__getmainargs
__p__commode
_beep
__setusermatherr
_cabs
__p__fmode
_atoi64
_assert
_except_handler3

advapi32

RegOpenKeyExA
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
RegQueryValueExA

kernel32

TerminateProcess
GetTickCount
GetCurrentProcess
GetModuleHandleA
GetCurrentProcessId
GetCurrentThreadId
GetStartupInfoA
VirtualAlloc

oleaut32

SysFreeString
SysAllocStringByteLen
SafeArrayCreate
GetActiveObject
VariantClear

Sections

.textbss
Size: - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 956B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a957dfba49dd8e1100bc67813cacb66d

Headers

DLL Characteristics

File Characteristics

Imports

ws2help

msvcrt

advapi32

kernel32

oleaut32

Sections

.textbss Size: - Virtual size: 120KB

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 92KB - Virtual size: 91KB

.rsrc Size: 1024B - Virtual size: 956B

.textbss
Size: - Virtual size: 120KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 92KB - Virtual size: 91KB

.rsrc
Size: 1024B - Virtual size: 956B