d2c485a92868d5f06ec1742357286ef08222bd9e6664ed985911aa3a9045ab32

General

Target

d2c485a92868d5f06ec1742357286ef08222bd9e6664ed985911aa3a9045ab32
Size

80KB
MD5

699263492ebf0170dbf132db2b243860
SHA1

dd0c2062c3aa67f0b37b7b13c2500e3c710cbb83
SHA256

d2c485a92868d5f06ec1742357286ef08222bd9e6664ed985911aa3a9045ab32
SHA512

3bc64ce861612fe5c8b2e216738bfbe367064f0c0d92c5ba8a623d124a0a89cdda7f8ba52ec7631bf55ee5d8dde47cdc88b8ec0c7e2248f58acb0be14cf22656
SSDEEP

1536:oSe7sFNY/QIYYFUMsVJBiXDuyeurhRFGd5m6+CEa5JiqSIZT2BX8f5pDNuospPYG:oSe7wwQIYYFFsVJBiXDbeurhRFGd5mAC

Score

N/A

Malware Config

Signatures

Files

d2c485a92868d5f06ec1742357286ef08222bd9e6664ed985911aa3a9045ab32
.exe windows x86

a52ffbe16ab74eb1daa77783b83e413b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetLocalTime
lstrcmpA
SetThreadPriority
GetCurrentThread
GetCurrentProcess
SetPriorityClass
GetShortPathNameA
ExitProcess
CloseHandle
ReleaseMutex
OpenMutexA
lstrlenA
lstrcpynA
RtlUnwind
TerminateProcess
Sleep
lstrcatA
GetStartupInfoA
GetModuleHandleA

user32

GetDesktopWindow

ws2_32

send
select
__WSAFDIsSet
htonl
setsockopt
socket
connect
inet_ntoa
gethostbyname
WSACleanup
WSAStartup
recv
gethostname
inet_addr
sendto
htons
WSASocketA
closesocket

shlwapi

SHDeleteKeyA

iphlpapi

GetIfTable

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
realloc
malloc
__CxxFrameHandler
_CxxThrowException
sprintf
atoi
strncpy
strcspn
strstr
exit
strncmp
??3@YAXPAX@Z
??2@YAPAXI@Z
free
??1type_info@@UAE@XZ
_exit
_XcptFilter
_acmdln

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a52ffbe16ab74eb1daa77783b83e413b

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

shlwapi

iphlpapi

msvcrt

Sections

.text Size: 64KB - Virtual size: 60KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 64KB - Virtual size: 60KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 1KB