aff88ee4e3b8ac1bbfc8afddd49b378626fbabb433b0ccb858870c90f87c3f0a

Sharing

Copy URL Twitter E-mail

General

Target

aff88ee4e3b8ac1bbfc8afddd49b378626fbabb433b0ccb858870c90f87c3f0a
Size

968KB
MD5

0296de1ba782b4bcbb5f026efc869ac4
SHA1

c034e61ea3586f36dd319968186ab69ff8389242
SHA256

aff88ee4e3b8ac1bbfc8afddd49b378626fbabb433b0ccb858870c90f87c3f0a
SHA512

124a07f98fb5e570ae9678e14cadddadc0086dadfdc20505b569e64f6d848cbcaa4a6ca6b8aa7d53aa1b9b07dfefe7d95a3fa83a5806e04f8565476eb600f1cb
SSDEEP

6144:hS+M0ROoZ04CUpNZ7xbKoV2cN+P31ja/VozMUqKf:hS+MgLCUpn7xbNZN+P31ja/NvK

Score

N/A

Malware Config

Signatures

Files

aff88ee4e3b8ac1bbfc8afddd49b378626fbabb433b0ccb858870c90f87c3f0a
.exe windows x86

4a5232ec5f8fc6e91a6abb42dd3ed10d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

ntohs
inet_ntoa
inet_addr
htons
connect
WSACleanup
WSAStartup
setsockopt
ioctlsocket
bind
listen
accept
recv
closesocket
socket
send
select
__WSAFDIsSet

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

GlobalLock
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
SetEndOfFile
GetUserDefaultLCID
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
IsBadCodePtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
FlushFileBuffers
SetStdHandle
SetConsoleCtrlHandler
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
ExitProcess
CloseHandle
CreateProcessA
GetModuleFileNameA
GetSystemDirectoryA
Sleep
CreateThread
DeleteFileA
OpenProcess
GetCurrentProcessId
GetLastError
CopyFileA
SetFileAttributesA
GetFileAttributesA
GetModuleHandleA
WaitForSingleObject
CreateMutexA
GetTickCount
MoveFileA
GetTempPathA
TerminateThread
LoadLibraryA
GetProcAddress
GetComputerNameA
GetLocaleInfoA
GetVersionExA
ExitThread
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
WriteFile
ReadFile
TerminateProcess
DuplicateHandle
GetCurrentProcess
CreatePipe
GetTimeFormatA
GetDateFormatA
GetFileSize
CreateFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FindNextFileA
FindFirstFileA
SetFilePointer
WaitForMultipleObjects
GenerateConsoleCtrlEvent
GetLocalTime
FormatMessageA
GlobalUnlock
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetFileTime
GetFileTime
ExpandEnvironmentStringsA
FreeLibrary
WideCharToMultiByte
MultiByteToWideChar
lstrcmpiA
GetExitCodeProcess
PeekNamedPipe
GetLogicalDrives
GlobalMemoryStatus
IsBadWritePtr
IsBadReadPtr
HeapValidate
RtlUnwind
InterlockedDecrement
InterlockedIncrement
GetStartupInfoA
GetCommandLineA
GetVersion
DebugBreak
GetStdHandle
OutputDebugStringA
InitializeCriticalSection
FatalAppExitA
HeapAlloc
HeapReAlloc
HeapFree
VirtualFree
VirtualAlloc
GetEnvironmentVariableA
HeapDestroy
HeapCreate
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
GetCPInfo
GetACP
GetOEMCP
RaiseException
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA

Sections

.text
Size: 952KB - Virtual size: 952KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4a5232ec5f8fc6e91a6abb42dd3ed10d

Headers

File Characteristics

Imports

ws2_32

version

kernel32

Sections

.text Size: 952KB - Virtual size: 952KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 952KB - Virtual size: 952KB

.rsrc
Size: 12KB - Virtual size: 12KB