418d1f16fc4efad44cf05778f4678811c955b931356ae382d7eb6a5c8e3a820e

Sharing

Copy URL Twitter E-mail

General

Target

418d1f16fc4efad44cf05778f4678811c955b931356ae382d7eb6a5c8e3a820e
Size

1.1MB
MD5

6006ccf12dd3bfd6af73678ac4d12a14
SHA1

1d5bd1a3296d7df392a1872758ff1592f8f76fc6
SHA256

418d1f16fc4efad44cf05778f4678811c955b931356ae382d7eb6a5c8e3a820e
SHA512

2390a1b6a8c8c2feb91c151ade3ed343bb051204592bb2c47551bcecdcdc375881b5cd8cffcd67e527fa5eb41bb29eefc4b6c62beee755461e650ca947f36b5c
SSDEEP

24576:pyFWSl5cbOapdQpZOxpImMf8xcDFFoId3T/lINkmlJZ:4F9edQvfF/oVkaZ

Score

N/A

Malware Config

Signatures

Files

418d1f16fc4efad44cf05778f4678811c955b931356ae382d7eb6a5c8e3a820e
.exe windows x86

7acb990577798a16c725ef90b815a250

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteKeyA

ws2_32

WSARecv
socket
connect
inet_addr
shutdown
select
WSASetLastError
WSASend
gethostname
gethostbyname
ioctlsocket
WSAGetLastError
WSAStartup
getsockname
closesocket
htonl
htons
setsockopt
__WSAFDIsSet

kernel32

LeaveCriticalSection
FlushViewOfFile
SetEvent
CloseHandle
ResetEvent
WaitForSingleObject
GetTickCount
CreateEventA
GetFullPathNameA
RemoveDirectoryA
FormatMessageA
GetLastError
FindNextFileA
CopyFileA
SetCurrentDirectoryA
FindClose
FindFirstFileA
GetLongPathNameA
GetModuleFileNameA
GetCurrentDirectoryA
SetFileAttributesA
GetFileAttributesA
CreateDirectoryA
GetModuleHandleA
DeleteFileA
QueryPerformanceFrequency
QueryPerformanceCounter
CreateProcessA
GetTempFileNameA
WriteFile
CreateFileA
EnterCriticalSection
SetFilePointer
UnmapViewOfFile
LockResource
LoadResource
FindResourceA
MapViewOfFile
CreateFileMappingA
ReadFile
GetFileSize
GetCurrentProcess
GetProcAddress
LoadLibraryA
GetSystemInfo
GetVersionExA
WideCharToMultiByte
ReleaseSemaphore
CreateSemaphoreA
GetCurrentThreadId
GetCurrentProcessId
GetTempPathA
RaiseException
GetSystemTime
FlushFileBuffers
SetLastError
HeapSize
SetUnhandledExceptionFilter
TlsAlloc
DeleteCriticalSection
InitializeCriticalSection
Sleep
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
VirtualProtect
VirtualQuery
SetEnvironmentVariableW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
IsBadCodePtr
GetTimeZoneInformation
SetStdHandle
TlsSetValue
SetEndOfFile
GetLocaleInfoW
GetLocaleInfoA
MultiByteToWideChar
HeapFree
RtlUnwind
ExitProcess
HeapAlloc
HeapReAlloc
IsBadReadPtr
GetDriveTypeA
FileTimeToSystemTime
FileTimeToLocalFileTime
TerminateProcess
SetEnvironmentVariableA
GetSystemTimeAsFileTime
GetCommandLineA
GetCPInfo
LCMapStringA
LCMapStringW
GetTimeFormatA
GetDateFormatA
CompareStringA
CompareStringW
GetStringTypeA
GetStringTypeW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
TlsFree
TlsGetValue

user32

MessageBoxA

advapi32

CryptAcquireContextA
CryptReleaseContext
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegSetValueExA
RegEnumValueA
RegQueryInfoKeyA
RegEnumKeyA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
CryptGenRandom

Exports

Exports

Win32MiniDumpInit

Sections

.text
Size: 792KB - Virtual size: 790KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 52KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lrdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7acb990577798a16c725ef90b815a250

Headers

File Characteristics

Imports

shlwapi

ws2_32

kernel32

user32

advapi32

Exports

Exports

Sections

.text Size: 792KB - Virtual size: 790KB

.rdata Size: 212KB - Virtual size: 209KB

.data Size: 52KB - Virtual size: 60KB

.rsrc Size: 36KB - Virtual size: 33KB

.lrdata Size: 68KB - Virtual size: 68KB

.text
Size: 792KB - Virtual size: 790KB

.rdata
Size: 212KB - Virtual size: 209KB

.data
Size: 52KB - Virtual size: 60KB

.rsrc
Size: 36KB - Virtual size: 33KB

.lrdata
Size: 68KB - Virtual size: 68KB