baa8cba81fb153141492b54e410fad0f527412eb1719a3e0ab7ebc6b5c4a6d19

General

Target

baa8cba81fb153141492b54e410fad0f527412eb1719a3e0ab7ebc6b5c4a6d19
Size

79KB
MD5

7bb90460366331896cace817d615f5bc
SHA1

61758d54feb3a6218c64118cbb56231ed6e5f42f
SHA256

baa8cba81fb153141492b54e410fad0f527412eb1719a3e0ab7ebc6b5c4a6d19
SHA512

8b91072a4c83ddf61fb5a23076db3f675c7f3d1b6fa53e901c06628b8109a7fe53ca2e169d97077b4730b12498607ba9888665707bb8bcb5c873e72d101d45bb
SSDEEP

1536:CtJo4F2KyPGaG/URaIrEcpTPxNHPs81/PPRjqWn1hgq:AJo4FU51rxVB+e

Score

N/A

Malware Config

Signatures

Files

baa8cba81fb153141492b54e410fad0f527412eb1719a3e0ab7ebc6b5c4a6d19
.exe windows x86

8eb5e8d5dd6153daeb0fcdcfd5eb8eec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetCurrentThreadId
GetFileSize
GetFileAttributesA
GetStartupInfoA
CloseHandle
FindNextFileA
GetCommandLineA
InitializeCriticalSection
GetVersion
CreateFileA
CreateThread
GetFileType
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
EnterCriticalSection
LeaveCriticalSection
ExitProcess
GlobalMemoryStatus
GetEnvironmentStrings
GetStdHandle
FindFirstFileA
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetCurrentDirectoryA
SetFilePointer
SetHandleCount
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WriteFile
GetProcAddress

wsock32

send
recv
listen
htons
gethostname
gethostbyname
connect
closesocket
bind
accept
socket
WSAStartup

user32

MessageBoxA
EnumThreadWindows

Exports

Exports

@__lockDebuggerData$qv
@__unlockDebuggerData$qv
__DebuggerHookData
__GetExceptDLLinfo

Sections

CODE
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8eb5e8d5dd6153daeb0fcdcfd5eb8eec

Headers

File Characteristics

Imports

kernel32

wsock32

user32

Exports

Exports

Sections

CODE Size: 23KB - Virtual size: 24KB

DATA Size: 6KB - Virtual size: 8KB

.idata Size: 1KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.debug Size: 45KB - Virtual size: 48KB

CODE
Size: 23KB - Virtual size: 24KB

DATA
Size: 6KB - Virtual size: 8KB

.idata
Size: 1KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB

.debug
Size: 45KB - Virtual size: 48KB