2bb203fa596a23847bebd7f4c2b59f6ae37fcc22599e86007eb5045721d50b42

Sharing

Copy URL Twitter E-mail

General

Target

2bb203fa596a23847bebd7f4c2b59f6ae37fcc22599e86007eb5045721d50b42
Size

198KB
MD5

69efb1d2c577a28158c7e1d180483695
SHA1

61aeb595579b064e3fc706a2db429afde90f51dc
SHA256

2bb203fa596a23847bebd7f4c2b59f6ae37fcc22599e86007eb5045721d50b42
SHA512

14674c12d88dbc76d9b832d01a870b800a35a885c19db340553bc73b6c3be3c4dac56a5e1f8f3dab9acdae3b2a9dacea784d13a73bbc56dd5190c2c24ccde1e0
SSDEEP

3072:8aarDqfqttsNVmCmfbubxkQ3GjVPHybJZ959enurBUgeBfLCJP:8ZqfLNVmCzxkys/yD9DBU1e

Score

N/A

Malware Config

Signatures

Files

2bb203fa596a23847bebd7f4c2b59f6ae37fcc22599e86007eb5045721d50b42
.exe windows x86

1cf1de70b22f5a2c46d5a3e0b8df2241

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
VirtualProtect
HeapAlloc
GetCurrentProcess
GetLastError
ExitProcess
GetProcessHeap
CreateDirectoryA
VirtualAlloc
SizeofResource

ws2_32

WSAStartup
connect
socket
WSACleanup
send
accept
recv

ole32

RegisterDragDrop
OleIsCurrentClipboard
CoInitialize
OleSetClipboard
CoGetCancelObject
CoTaskMemAlloc
ReleaseStgMedium
DoDragDrop
CoSetProxyBlanket
CoQueryProxyBlanket

user32

GetParent
SetWindowPos
EndDialog
GetDesktopWindow
DestroyWindow
PostMessageW
CharNextA
SetWindowLongA
KillTimer
GetClientRect

Sections

.textbss
Size: - Virtual size: 388KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1cf1de70b22f5a2c46d5a3e0b8df2241

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ws2_32

ole32

user32

Sections

.textbss Size: - Virtual size: 388KB

.idata Size: 84KB - Virtual size: 83KB

.debug Size: 6KB - Virtual size: 5KB

.text Size: 512B - Virtual size: 408B

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 12KB - Virtual size: 12KB

.rdata Size: 92KB - Virtual size: 92KB

.textbss
Size: - Virtual size: 388KB

.idata
Size: 84KB - Virtual size: 83KB

.debug
Size: 6KB - Virtual size: 5KB

.text
Size: 512B - Virtual size: 408B

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 12KB - Virtual size: 12KB

.rdata
Size: 92KB - Virtual size: 92KB