3398fca379d49142145dc246b8caeec96ae551a5fa30e2624f06fa7ab55ddb86

General

Target

3398fca379d49142145dc246b8caeec96ae551a5fa30e2624f06fa7ab55ddb86
Size

128KB
MD5

92527ef5ed9ec38b99822d3640e4cdd0
SHA1

0a60f710d6060985f88ba3103c0b6a8dd46b5f1c
SHA256

3398fca379d49142145dc246b8caeec96ae551a5fa30e2624f06fa7ab55ddb86
SHA512

3c6d47f721323ae547b2c1402a7fddc2a04f29ebeadc6b5610eea9514500f09d38703a1d087f282bbdeb97d18f0181775f2dd30f18b41ad69904035b06ce8853
SSDEEP

1536:R/VMGLSjXpBfinnBQAa3M9chgM2zC+iVkGFgumjOuah9CypIPnK9AK7Zd6WSODg:QSSj5BmBlSoVSqSvhoyaPMUnBb

Score

N/A

Malware Config

Signatures

Files

3398fca379d49142145dc246b8caeec96ae551a5fa30e2624f06fa7ab55ddb86
.exe windows x86

85f077f885b3a38c47a3f719ed184aff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleCreate
CoInitialize
StgCreateDocfile
CoSuspendClassObjects
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc

ws2_32

connect
accept
closesocket
bind
socket
WSAWaitForMultipleEvents
WSAEnumNetworkEvents

userenv

DestroyEnvironmentBlock
CreateEnvironmentBlock
UnloadUserProfile

uxtheme

CloseThemeData
DrawThemeBackground
OpenThemeData
GetThemeTextExtent
GetThemeBackgroundRegion

setupapi

SetupFindFirstLineW
SetupGetLineTextW
SetupFindNextLine
SetupCloseInfFile

kernel32

GetModuleHandleA
ReadFile
SetEndOfFile
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
VirtualQuery
InterlockedExchange
RtlUnwind
LoadLibraryA
HeapSize
CreateFileA
SetFilePointer
FlushFileBuffers
SetStdHandle
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
MultiByteToWideChar
FreeEnvironmentStringsA
GetModuleFileNameW
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
HeapValidate
HeapReAlloc
GetLocalTime
CreateFileW
HeapFree
HeapAlloc
WriteConsoleW
CloseHandle
CreateSemaphoreW
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
GetStartupInfoW
GetVersionExA
GetLastError
WriteFile
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr

Sections

.text
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 766KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

85f077f885b3a38c47a3f719ed184aff

Headers

File Characteristics

Imports

ole32

ws2_32

userenv

uxtheme

setupapi

kernel32

Sections

.text Size: 28KB - Virtual size: 24KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 64KB - Virtual size: 766KB

.text
Size: 28KB - Virtual size: 24KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 64KB - Virtual size: 766KB