e9877104c3f60ccef166a761d508c2ca35947063abade7856ab4cb74d6fe1213

General

Target

e9877104c3f60ccef166a761d508c2ca35947063abade7856ab4cb74d6fe1213
Size

40KB
MD5

654eb2f3be56f82e9aefadafea204db0
SHA1

d87a802b4706574680107f04569dfdcea9353778
SHA256

e9877104c3f60ccef166a761d508c2ca35947063abade7856ab4cb74d6fe1213
SHA512

56f32eb16ad24a188c665673d400803ef1cbd8f74b20b6201038dc07e699287f84ec80a7e97cf4be9f5588f0ab0425e861fada5f0286e20015554cbc23251f16
SSDEEP

768:dYUVqFJiuLvzWsBltaR06Po0Kv7gPLQebOzvG/9l8xXu5:aU9C7WsBltaRkdjDzPS

Score

N/A

Malware Config

Signatures

Files

e9877104c3f60ccef166a761d508c2ca35947063abade7856ab4cb74d6fe1213
.exe windows x86

1ed089b25b508fbc104b7965dc397603

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleHandleA
SetUnhandledExceptionFilter
InterlockedCompareExchange
Sleep
InterlockedExchange
HeapSetInformation
SetThreadUILanguage
LocalAlloc
LocalFree
SleepEx
GetLastError
GetTickCount
GetCurrentThreadId

msvcrt

?terminate@@YAXXZ
_except_handler4_common
_controlfp
__set_app_type
__p__fmode
__p__commode
__setusermatherr
_amsg_exit
_initterm
_XcptFilter
_exit
_cexit
__getmainargs
memset
memcpy
strtoul
exit
_write
_setmode

iphlpapi

IcmpSendEcho2
IcmpParseReplies
Icmp6SendEcho2
IcmpCloseHandle
Icmp6CreateFile
IcmpCreateFile
Icmp6ParseReplies

user32

CharToOemBuffA

ws2_32

closesocket
WSACleanup
WSAIoctl
freeaddrinfo
getnameinfo
inet_addr
WSAStartup
socket
getaddrinfo

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1ed089b25b508fbc104b7965dc397603

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

iphlpapi

user32

ws2_32

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 39KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 28KB - Virtual size: 29KB

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 39KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 28KB - Virtual size: 29KB