8dc110356b81d9ee439165795cc624edb077864a2bd043a6960247b76a101415 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8dc110356b81d9ee439165795cc624edb077864a2bd043a6960247b76a101415
Size

96KB
MD5

05bd32fa688d9f9b2ca649e7c3451495
SHA1

08fa21404acdd32a1295adf89852a7378559a45c
SHA256

8dc110356b81d9ee439165795cc624edb077864a2bd043a6960247b76a101415
SHA512

a66a933e08c2f830892a2a3a8b62e6b96c918ce6b423954b4a5efe0526f9aa56ab9309f5b64b660907cbedfd63fad1e694108e4cdb5fc02c3a2f245377fccd18
SSDEEP

1536:3CtsbjHF1FZcnZcGVBkvb6tUL8TTn7T4PW9cY9efi2sakp+:3RCZjwvb6tnT4PW9b9Yi2sJ

Score

N/A

Malware Config

Signatures

Files

8dc110356b81d9ee439165795cc624edb077864a2bd043a6960247b76a101415
.exe windows x86

a955a4b7e02c1c86a5d6102154d11a1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
calloc
free
_exit
_XcptFilter
exit
_acmdln
__getmainargs
memcmp
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
??2@YAPAXI@Z
memset
__CxxFrameHandler
_ftol
memmove
_initterm
??3@YAXPAX@Z

kernel32

GetModuleHandleA
lstrcmpiA
Sleep
LoadLibraryA
GetProcAddress
GetStartupInfoA

ws2_32

select
gethostname
recv

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE