35bfe54776258d2e71afb1f96d6145b2a9b829027c85de371658e089d75a370c

General

Target

35bfe54776258d2e71afb1f96d6145b2a9b829027c85de371658e089d75a370c
Size

196KB
MD5

0813684788b801e8bec658690042cd30
SHA1

ff956f7df67c9c981b03dc7481e8e442cc15f838
SHA256

35bfe54776258d2e71afb1f96d6145b2a9b829027c85de371658e089d75a370c
SHA512

8647c82a816e2a525205908725a52b690fa4de1ed70b0389f44b052d0f03e7d27ead398390b10e2c0dbedc573fc1f6526d0e631a1ec126421918f71d02e0a4a1
SSDEEP

3072:hdbjhU4wH6+Ig5nVEkXUXBMOOkhbQTrKLz/MH9SgST411U:fjuj6126kXUyx2s6LDMs3Tw

Score

N/A

Malware Config

Signatures

Files

35bfe54776258d2e71afb1f96d6145b2a9b829027c85de371658e089d75a370c
.dll windows x86

004fc6adaadb277e1f363ca7e3694288

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

ntohl
ntohs
htonl
WSAStartup
WSACleanup
send
shutdown
recv
socket
gethostbyname
htons
connect

winmm

timeGetTime

msvcr71

_strdup
_getpid
_open
_close
_errno
isprint
strncpy
_iob
fprintf
vfprintf
abort
signal
exit
_read
remove
tolower
strchr
strtod
strtol
getenv
free
_write
time
_lseeki64
_vsnprintf
strerror
malloc
strcspn
calloc
qsort
_initterm
_adjust_fdiv
__CppXcptFilter
_except_handler3
__dllonexit
_onexit
strrchr
ctime

kernel32

GetModuleFileNameA
GetProcAddress
LoadLibraryA
Sleep
GetSystemTime
SystemTimeToFileTime
FreeLibrary
GetFileAttributesA
GetLastError
FormatMessageA

Exports

Exports

_Agent_OnLoad@12
_Agent_OnUnload@4

Sections

.text
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

004fc6adaadb277e1f363ca7e3694288

Headers

File Characteristics

Imports

wsock32

winmm

msvcr71

kernel32

Exports

Exports

Sections

.text Size: 92KB - Virtual size: 88KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 928B

.reloc Size: 8KB - Virtual size: 6KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 92KB - Virtual size: 88KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 928B

.reloc
Size: 8KB - Virtual size: 6KB

.rmnet
Size: 60KB - Virtual size: 60KB