e8b0a74149ad61fcccc716452a65fa5b24f4316e678555356e600d6b1987d5be | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e8b0a74149ad61fcccc716452a65fa5b24f4316e678555356e600d6b1987d5be
Size

30KB
MD5

08057a47ecd670df99779dac02a63561
SHA1

34dbadb1f1af4768c759eda38aa0bfc9ebdab4fb
SHA256

e8b0a74149ad61fcccc716452a65fa5b24f4316e678555356e600d6b1987d5be
SHA512

00869b590afc4b48ddd6a30bb9ac50566c13d9d276950e56bfd10118849d850720ad52385a9a9f00a9692d26232eab39fd06b26a06e544937440c98bea59f996
SSDEEP

768:QC/WtV2mTzZzde73UV/hpJST9nfXYTt3lZn26FQpqj88Ub:QCeCmTFowhPm9nARGMyqw

Score

N/A

Malware Config

Signatures

Files

e8b0a74149ad61fcccc716452a65fa5b24f4316e678555356e600d6b1987d5be
.exe windows x86

2a78d5e6c576cf117cc352d06437f3c9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteEx
StrNCmpW
FindExeDlgProc
ShellExecuteW
SheGetPathOffsetW

wsock32

WSASetBlockingHook
gethostname
htonl
recvfrom
setsockopt

Sections

.text
Size: 17KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE