c22a9814d1dfe7bd2cf75c3e15c3c8c555ed94a2db99966a39f9701301a34cb8

Sharing

Copy URL

Twitter E-mail

General

Target

c22a9814d1dfe7bd2cf75c3e15c3c8c555ed94a2db99966a39f9701301a34cb8
Size

116KB
MD5

5d5267d68e5210c35cd6fd82cba6ab22
SHA1

b27b5b222bd9dcb471ecfdde387b995de1e1fb5b
SHA256

c22a9814d1dfe7bd2cf75c3e15c3c8c555ed94a2db99966a39f9701301a34cb8
SHA512

468be95b63fb1bbe8725a63fc0380aa54dfc6f7e56c9e30b809547f61dafba7dad035eff4e1d31ee95b3500fcecfe327fc7ffe4204036604cbaf64d944cbaa34
SSDEEP

3072:2HejYMZvf/wfPv4B3JNVlLeqEDdHKgVx:psawf34BrrenDdqgVx

Score

N/A

Malware Config

Signatures

Files

c22a9814d1dfe7bd2cf75c3e15c3c8c555ed94a2db99966a39f9701301a34cb8
.exe windows x86

d22c5653ee228ce97e064fa87a057ad6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
TerminateThread
InitializeCriticalSection
GlobalMemoryStatusEx
GetVersionExA
Module32Next
Module32First
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
Process32Next
Process32First
OpenEventA
GetLastError
CreateEventA
SetEvent
ResetEvent
CopyFileA
GetCurrentProcessId
GetSystemDirectoryA
lstrlenA
WaitForSingleObject
GetFileAttributesA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
ReadFile
SetEndOfFile
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
CreateThread
SetThreadPriority
ResumeThread
GetCommandLineA
ExitProcess
InterlockedDecrement
EnterCriticalSection
InterlockedIncrement
LeaveCriticalSection
WinExec
DeleteFileA
GetCurrentDirectoryA
GetModuleFileNameA
Sleep
InterlockedExchange
ExitThread
GetCPInfo
HeapFree
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RtlUnwind
HeapReAlloc
GetModuleHandleA
GetStartupInfoA
GetVersion
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
DeleteCriticalSection
SetHandleCount
GetStdHandle
GetFileType
SetFilePointer
WriteFile
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetStdHandle
FlushFileBuffers
CreateFileA

ws2_32

htonl
htons
select
__WSAFDIsSet
getsockopt
gethostbyname
getsockname
closesocket
WSACleanup
WSAStartup
inet_addr
setsockopt
socket
connect
send
recv
ntohl
ntohs
sendto

advapi32

RegOpenKeyA
RegSetValueExA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
ControlService
OpenSCManagerA
OpenServiceA
CloseServiceHandle
QueryServiceStatus
StartServiceA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
CreateServiceA

shell32

ShellExecuteExA

iphlpapi

GetIfTable
GetAdaptersInfo

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d22c5653ee228ce97e064fa87a057ad6

Headers

File Characteristics

Imports

kernel32

ws2_32

advapi32

shell32

iphlpapi

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 52KB - Virtual size: 56KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 52KB - Virtual size: 56KB