b5594af057e08bc5a4d36ae6a2585e4f0e16c6d25388fc775ef5c7ee0a5f7772

Sharing

Copy URL Twitter E-mail

General

Target

b5594af057e08bc5a4d36ae6a2585e4f0e16c6d25388fc775ef5c7ee0a5f7772
Size

323KB
MD5

58213acd32697fb0a360fc3b97150c60
SHA1

3eb9ce96b7f8cae1c98232a7e3b3cd60d3faa64b
SHA256

b5594af057e08bc5a4d36ae6a2585e4f0e16c6d25388fc775ef5c7ee0a5f7772
SHA512

676f1f1dc99242a0bcdafe0cc8bea588bbab984e0bf381cb87fa3089f6440cc82529f108f210645b97445cd9e3148e7d4b82413ed077a9e7bacd8a446b335bb2
SSDEEP

6144:pp9oZyzpshESZlZxDE5TZtB+fPG1P850ki7jKmKlKcZuBaNX0Tn9Qv:2ZeSZlZxDE5T7B+XG1kQrBap0T9s

Score

N/A

Malware Config

Signatures

Files

b5594af057e08bc5a4d36ae6a2585e4f0e16c6d25388fc775ef5c7ee0a5f7772
.exe windows x86

1f6126334a2de011763013b7e8cabbd1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

GetUserNameA

kernel32

CloseHandle
CreateFileMappingA
CreateProcessA
CreateThread
ExitProcess
ExitThread
FreeEnvironmentStringsA
GetCurrentThread
GetCurrentThreadId
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeProcess
GetLastError
MapViewOfFile
OpenFileMappingA
OpenProcess
OpenThread
ResumeThread
SetConsoleCtrlHandler
SetEnvironmentVariableA
SetThreadAffinityMask
SuspendThread
TerminateProcess
UnmapViewOfFile
VirtualProtect
WaitForSingleObject
lstrcpyA
lstrlenA

msvcrt

_access
_close
_ecvt
_fileno
_getcwd
_getpid
_isatty
_open
_read
_setmode
_stat
_tempnam
_unlink
_write
__getmainargs
__mb_cur_max
__p__environ
_cexit
_errno
_fileno
_fmode
_fpreset
_fstati64
_iob
_isctype
_lseeki64
_pctype
_setjmp
_setmode
_sleep
_stat
atexit
atoi
atol
calloc
clearerr
ctime
difftime
exit
fclose
feof
ferror
fflush
fgetc
fopen
fprintf
fputc
fread
free
freopen
fseek
ftell
fwrite
getc
getchar
getenv
isdigit
isspace
longjmp
malloc
memcmp
memcpy
memset
perror
printf
putc
putchar
puts
rand
realloc
signal
sprintf
srand
sscanf
strcat
strchr
strcmp
strcpy
strerror
strlen
strncat
strncmp
strncpy
strstr
strtod
strtol
time
ungetc

user32

MessageBoxA
wsprintfA

wsock32

WSACleanup
WSAStartup
gethostbyname
gethostname

Sections

.text
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 6.1MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 79KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1f6126334a2de011763013b7e8cabbd1

Headers

File Characteristics

Imports

advapi32

kernel32

msvcrt

user32

wsock32

Sections

.text Size: 186KB - Virtual size: 185KB

.data Size: 56KB - Virtual size: 56KB

.bss Size: - Virtual size: 6.1MB

.idata Size: 79KB - Virtual size: 80KB

.text
Size: 186KB - Virtual size: 185KB

.data
Size: 56KB - Virtual size: 56KB

.bss
Size: - Virtual size: 6.1MB

.idata
Size: 79KB - Virtual size: 80KB