a6a047e68e503ba124e87c79bef1d9a157dc3a8b628f445c04e0ca90716efafc

General

Target

a6a047e68e503ba124e87c79bef1d9a157dc3a8b628f445c04e0ca90716efafc
Size

204KB
MD5

4fe7437895cae6a71e222f2da2108612
SHA1

287b3b2ebf83b7e42d4bff7724fed1056b38182b
SHA256

a6a047e68e503ba124e87c79bef1d9a157dc3a8b628f445c04e0ca90716efafc
SHA512

5011fcd10b98c1661b0f76245de823feac99c1c0f46eec5cc5f3832a8b20c7cde746cb0f458fa6f7ed66b68a7a1682135f66134484a3740af1513f32b77091df
SSDEEP

6144:GyXIxqS7s6NotFeJ3LkyYOBIfJDKpAjU1dK4:VIxkjR0IRDKpASI4

Score

N/A

Malware Config

Signatures

Files

a6a047e68e503ba124e87c79bef1d9a157dc3a8b628f445c04e0ca90716efafc
.exe windows x86

6fdb9659bd425a7c978c82b51b4ac67b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
LocalFree
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
SetThreadUILanguage
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
InterlockedCompareExchange
InterlockedExchange
HeapSetInformation
GetLastError
GetCurrentProcessId
Sleep

msvcrt

_initterm
__set_app_type
_exit
_cexit
__getmainargs
memset
_amsg_exit
strtoul
exit
?terminate@@YAXXZ
_except_handler4_common
_controlfp
__setusermatherr
__p__commode
memcpy
__p__fmode
_XcptFilter
_write
_setmode

icmp

IcmpCloseHandle
IcmpCreateFile
IcmpSendEcho2

iphlpapi

Icmp6CreateFile
Icmp6SendEcho2

user32

CharToOemBuffA

ws2_32

WSAGetLastError
socket
inet_addr
closesocket
WSACleanup
freeaddrinfo
getaddrinfo
getnameinfo
WSAIoctl
WSAStartup

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 556B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.vmp0
Size: 192KB - Virtual size: 1.3MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6fdb9659bd425a7c978c82b51b4ac67b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

icmp

iphlpapi

user32

ws2_32

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 5KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 1024B - Virtual size: 556B

.vmp0 Size: 192KB - Virtual size: 1.3MB

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 5KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 1024B - Virtual size: 556B

.vmp0
Size: 192KB - Virtual size: 1.3MB