dd2427fa964da29748b2d02925e7002f53d4ce4fccb3c7d2eb9d2f0b2ec1c7d9

Sharing

Copy URL Twitter E-mail

General

Target

dd2427fa964da29748b2d02925e7002f53d4ce4fccb3c7d2eb9d2f0b2ec1c7d9
Size

183KB
MD5

6ca793d125d7ea68cb124bbf34c8cd70
SHA1

69a3af51fa61ec2e69df093b98f0fd764459ba4b
SHA256

dd2427fa964da29748b2d02925e7002f53d4ce4fccb3c7d2eb9d2f0b2ec1c7d9
SHA512

b1247db523053f6704af62be13a2fb9e795a27fc5e0abd5b0068b5395ad9e4e69e3a0ae994ff87afe7eb67495184867fc087359bd75103c70644ed991f292290
SSDEEP

3072:HpPmi5HHKnaceHKIQqMqqv0uL9CKVxMAf8falWZz8mQ04bUTsDn50bl1Z61iuEyx:HpRNjce7QXqc5RCKXMAoJZz604dr5083

Score

N/A

Malware Config

Signatures

Files

dd2427fa964da29748b2d02925e7002f53d4ce4fccb3c7d2eb9d2f0b2ec1c7d9
.exe windows x86

e332f10c00e0c0b15f7a1b3a9ff829ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSACloseEvent
WSAStartup
WSAConnect
setsockopt
WSACleanup
socket
getprotobynumber
WSASocketA
WSAWaitForMultipleEvents

kernel32

GetCPInfo
CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
CloseHandle
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetSystemDefaultLangID
InterlockedDecrement
InterlockedCompareExchange
GetTimeFormatA
GetFileAttributesA
GetEnvironmentVariableA
GetShortPathNameA
GetProcAddress
CopyFileA
VirtualProtectEx
PrepareTape
GetLocalTime
WaitForMultipleObjects
GetModuleFileNameA
LoadLibraryExA
GetFileTime
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WideCharToMultiByte
GetTimeZoneInformation
EnterCriticalSection
LeaveCriticalSection
Sleep
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
GetACP
GetOEMCP
MultiByteToWideChar
LCMapStringA
LCMapStringW
ExitProcess
WriteFile
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
RtlUnwind
HeapReAlloc
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
LoadLibraryA
InitializeCriticalSection
VirtualAlloc
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
HeapSize

Sections

.text
Size: 129KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e332f10c00e0c0b15f7a1b3a9ff829ea

Headers

File Characteristics

Imports

ws2_32

kernel32

Sections

.text Size: 129KB - Virtual size: 128KB

.rdata Size: 45KB - Virtual size: 45KB

.data Size: 6KB - Virtual size: 1.2MB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 129KB - Virtual size: 128KB

.rdata
Size: 45KB - Virtual size: 45KB

.data
Size: 6KB - Virtual size: 1.2MB

.rsrc
Size: 1KB - Virtual size: 1KB