2955920493b759102fd066a845430baee7c6ec9eb3759588c90b69217cc18fff

Sharing

Copy URL Twitter E-mail

General

Target

2955920493b759102fd066a845430baee7c6ec9eb3759588c90b69217cc18fff
Size

429KB
MD5

493b6402898aae5d58b0eaa7d7541530
SHA1

bd5fe76c96cdb0099128bdc659adb8501cd80d66
SHA256

2955920493b759102fd066a845430baee7c6ec9eb3759588c90b69217cc18fff
SHA512

325cac67393016a68a007457e34fe0db5f1f9f59d836f6bfb226686a471493fc2963b30f293668a557b109b396852d6368b8cd5ecd9f93c8aee52b49e1438a89
SSDEEP

12288:x/dx2t2o63vQzgeP95V5vA37dCdx5uQa/c:0Uo6fQceP95V5o37dW1cc

Score

N/A

Malware Config

Signatures

Files

2955920493b759102fd066a845430baee7c6ec9eb3759588c90b69217cc18fff
.exe windows x86

e6bb6e33dd3ba32f87b93020dd8d42cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

listen
bind
htonl
gethostname
inet_ntoa
shutdown
recv
accept
WSAGetLastError
__WSAFDIsSet
select
inet_addr
gethostbyname
connect
WSAStartup
socket
WSACleanup
ioctlsocket
closesocket
htons
send

kernel32

IsBadReadPtr
SetUnhandledExceptionFilter
GetCurrentProcessId
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
InitializeCriticalSection
FlushFileBuffers
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
GetLastError
Sleep
CloseHandle
GetExitCodeThread
WaitForSingleObjectEx
GetTickCount
QueryPerformanceCounter
ReleaseMutex
WaitForSingleObject
CreateMutexA
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
ExpandEnvironmentStringsA
GetSystemDirectoryA
OpenProcess
TerminateProcess
ReleaseSemaphore
CreateSemaphoreA
CreateFileA
IsBadCodePtr
WriteFile
SetLastError
GetWindowsDirectoryA
GetTempPathA
CreateProcessA
GetCurrentProcess
GetExitCodeProcess
DeleteFileA
FindClose
FindFirstFileA
TerminateThread
GetModuleHandleA
GetSystemInfo
WideCharToMultiByte
MultiByteToWideChar
InterlockedDecrement
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
LCMapStringA
InterlockedExchange
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
VirtualQuery
VirtualProtect
IsBadWritePtr
VirtualAlloc
DeleteCriticalSection
VirtualFree
HeapCreate
HeapDestroy
RaiseException
HeapSize
SetEndOfFile
CompareStringA
LeaveCriticalSection
EnterCriticalSection
CompareStringW
SetEnvironmentVariableA
lstrlenA
LocalFree
CreateDirectoryA
ReadFile
UnhandledExceptionFilter
ExitProcess
TlsGetValue
TlsSetValue
TlsFree
TlsAlloc
GetCommandLineA
GetStartupInfoA
GetTimeZoneInformation
RtlUnwind
ExitThread
GetCurrentThreadId
CreateThread
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
HeapReAlloc

user32

GetWindowThreadProcessId
EnumWindows
IsWindow
PostMessageA
CreateDialogParamA
GetMessageA
DispatchMessageA
TranslateMessage
GetDlgItem
IsDlgButtonChecked
SendMessageA
DestroyWindow
ShowWindow
SetWindowTextA
PostQuitMessage
GetWindowPlacement
GetSystemMetrics
SetWindowPlacement
MessageBoxA

gdi32

DeleteObject
CreateSolidBrush
SetBkColor

advapi32

RegDeleteValueA
RegSetValueExA
GetUserNameA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey

ole32

CoInitializeEx
CoSetProxyBlanket
CoCreateInstance
CoUninitialize
CoInitializeSecurity

oleaut32

VariantClear
VariantInit
SysFreeString
SysAllocString

Sections

.text
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6bb6e33dd3ba32f87b93020dd8d42cd

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Sections

.text Size: 104KB - Virtual size: 100KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 32KB - Virtual size: 30KB

.text
Size: 104KB - Virtual size: 100KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 32KB - Virtual size: 30KB