06f80f329e3faebcef52294abce6f018be1f6f9da233dcc85746e25193a08530

Sharing

Copy URL

Twitter E-mail

General

Target

06f80f329e3faebcef52294abce6f018be1f6f9da233dcc85746e25193a08530
Size

210KB
MD5

53f85cc71f8dabdd4f497b03e49d5bef
SHA1

62230789ef36a16b31dcc1bab8347cc0bc0c5305
SHA256

06f80f329e3faebcef52294abce6f018be1f6f9da233dcc85746e25193a08530
SHA512

3a6781548326118a01483dd096f61579bf3b9287878245ffdd1915d3298737f08dc9e875469f3b89975d37e5584f7582fe0d65e829295c167f1bccadd2cdba00
SSDEEP

3072:DbfhPGLlVwzXWWuVLhJPk/n3nNpH1bHAMdU/xq1JFkxfkFPqf1gAmxdhcvL0//4S:BRWWELurFddzFkNg6DmxdSuz

Score

N/A

Malware Config

Signatures

Files

06f80f329e3faebcef52294abce6f018be1f6f9da233dcc85746e25193a08530
.zip .exe windows x86
Data/FLASH.EXE
.exe windows x86

782f727ef087fb44c32f380095cf6f66

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
GetCPInfo
GetACP
CloseHandle
GetCurrentProcessId
FlushFileBuffers
LoadLibraryA
SetStdHandle
ExitProcess
GetCommandLineA
GetVersion
RtlUnwind
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
Sleep
HeapCreate
GetOEMCP
SetHandleCount
GetFileType
GetStdHandle
GetStartupInfoA
HeapFree
WriteFile
HeapAlloc
GetLastError
SetFilePointer
GetProcAddress

wsock32

WSAStartup
sendto
WSACleanup
socket
gethostbyname
htons
ioctlsocket

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 105B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Data/Fb.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Data/MCB.EXE
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Exports

Exports

__GetExceptDLLinfo

Sections

CODE
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

TLSCBA
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TLSCBA
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Data/SUMO.EXE
.exe windows x86

86dbf85c98a5b4225edd608fb7647497

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
HeapAlloc
MultiByteToWideChar
CloseHandle
LoadLibraryA
ReadFile
GetStringTypeW
GetStringTypeA
GetProcAddress
SetStdHandle
SetFilePointer
HeapFree
HeapCreate
GetLastError
SetConsoleCtrlHandler
ExitProcess
GetCommandLineA
GetVersion
UnhandledExceptionFilter
FlushFileBuffers
WriteFile
SetHandleCount
GetFileType
GetStdHandle
Sleep
GetOEMCP
LCMapStringA
WideCharToMultiByte
LCMapStringW
RtlUnwind
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetACP

wsock32

select
WSAStartup
recv
recvfrom
__WSAFDIsSet
gethostbyname
send
socket
WSAGetLastError
htons
connect

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 105B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
file_id.diz
iRCkiLL.exe
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Sections

CODE
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 61KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

782f727ef087fb44c32f380095cf6f66

Headers

File Characteristics

Imports

kernel32

wsock32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 512B - Virtual size: 105B

.data Size: 4KB - Virtual size: 8KB

.idata Size: 1024B - Virtual size: 936B

.reloc Size: 1KB - Virtual size: 1KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 25KB - Virtual size: 28KB

DATA Size: 7KB - Virtual size: 12KB

.idata Size: 1024B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 4KB

Headers

File Characteristics

Exports

Exports

Sections

CODE Size: 25KB - Virtual size: 28KB

TLSCBA Size: - Virtual size: 12KB

TLSCBA Size: 8KB - Virtual size: 12KB

.idata Size: 1KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

86dbf85c98a5b4225edd608fb7647497

Headers

File Characteristics

Imports

kernel32

wsock32

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 512B - Virtual size: 105B

.data Size: 6KB - Virtual size: 17KB

.idata Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

Headers

File Characteristics

Sections

CODE Size: 162KB - Virtual size: 164KB

DATA Size: 3KB - Virtual size: 4KB

.idata Size: 5KB - Virtual size: 8KB

.reloc Size: 11KB - Virtual size: 12KB

.rsrc Size: 61KB - Virtual size: 64KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 512B - Virtual size: 105B

.data
Size: 4KB - Virtual size: 8KB

.idata
Size: 1024B - Virtual size: 936B

.reloc
Size: 1KB - Virtual size: 1KB

CODE
Size: 25KB - Virtual size: 28KB

DATA
Size: 7KB - Virtual size: 12KB

.idata
Size: 1024B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB

CODE
Size: 25KB - Virtual size: 28KB

TLSCBA
Size: - Virtual size: 12KB

TLSCBA
Size: 8KB - Virtual size: 12KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 512B - Virtual size: 105B

.data
Size: 6KB - Virtual size: 17KB

.idata
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB

CODE
Size: 162KB - Virtual size: 164KB

DATA
Size: 3KB - Virtual size: 4KB

.idata
Size: 5KB - Virtual size: 8KB

.reloc
Size: 11KB - Virtual size: 12KB

.rsrc
Size: 61KB - Virtual size: 64KB