9383423354db16218e735fd35590984eedb339773a58280f15de5d2e9ab53d2f

General

Target

9383423354db16218e735fd35590984eedb339773a58280f15de5d2e9ab53d2f
Size

29KB
MD5

0d6e26ee9776383e8a64e017032f7e10
SHA1

67758e6a3dd93170dc0e44d23d41c590f8cc841b
SHA256

9383423354db16218e735fd35590984eedb339773a58280f15de5d2e9ab53d2f
SHA512

c8a4e8d6135a3ff8727cd2b78b95cee5ff85aa3a0b18295527fa0a916488b678f0078b0da6331e37dabdebd3e0b0a4b1bf23591446df791e1471f26a5a7616f9
SSDEEP

768:RTleHyTo03wiU2wtW+bLN3cksuhltAmDj:1leScywRJbxnztL

Score

N/A

Malware Config

Signatures

Files

9383423354db16218e735fd35590984eedb339773a58280f15de5d2e9ab53d2f
.exe windows x86

12a799c2a2e01f02ff74ef77a01391c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

connect
gethostbyname
ioctlsocket
inet_addr
gethostname
WSAStartup
inet_ntoa
WSACleanup
closesocket
recv
select
send
htons
socket

shell32

ShellExecuteA

advapi32

RegCreateKeyA
RegSetValueExA
RegCloseKey
RegCreateKeyExA

kernel32

GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
LoadLibraryA
SetFilePointer
WriteFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
SetStdHandle
FlushFileBuffers
LCMapStringA
MultiByteToWideChar
WinExec
ExitProcess
Sleep
GetLastError
GetModuleHandleA
GetCurrentProcess
GetProcAddress
GetTempPathA
GetTickCount
ExitThread
GetDriveTypeA
GetLogicalDriveStringsA
WritePrivateProfileStringA
GetPrivateProfileStringA
CopyFileA
GetModuleFileNameA
CreateThread
FindClose
FindNextFileA
SetFileAttributesA
FindFirstFileA
CreateMutexA
CloseHandle
CreateProcessA
ExpandEnvironmentStringsA
GlobalFree
LCMapStringW
lstrcatA
lstrlenA
GlobalAlloc
CreateFileA
GetSystemDirectoryA
GetVersionExA
GetLocaleInfoA
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
HeapAlloc
GetStartupInfoA
GetCommandLineA
GetVersion
HeapDestroy
HeapCreate
VirtualFree
HeapFree
VirtualAlloc
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA

user32

wsprintfA

urlmon

URLDownloadToFileA

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

12a799c2a2e01f02ff74ef77a01391c3

Headers

File Characteristics

Imports

ws2_32

shell32

advapi32

kernel32

user32

urlmon

Sections

.text Size: 21KB - Virtual size: 20KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 3KB - Virtual size: 11KB

.text
Size: 21KB - Virtual size: 20KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 3KB - Virtual size: 11KB