94c2d3f8b76a2a16625e4f0fdef593ebd03f9c58564b86b72df8bb1e174c4eb4

General

Target

94c2d3f8b76a2a16625e4f0fdef593ebd03f9c58564b86b72df8bb1e174c4eb4
Size

44KB
MD5

9c46112b40d95ab5d76778b9fbec7af0
SHA1

10bf89502000bf1b79742ad3541529edf051ea7b
SHA256

94c2d3f8b76a2a16625e4f0fdef593ebd03f9c58564b86b72df8bb1e174c4eb4
SHA512

df40d132baad9cf473524cdce355c6f15109ea2b33a18a9b0553f0e5ad48368ad2d6204609962695fe058496d77b3c4b82bb4906c1f8e5b7c211efe3cee13143
SSDEEP

768:dKEjiaMLjePFMxPfDIPaLhCsR6F3/TwF:dKEuYCnDIPaLzEl/MF

Score

N/A

Malware Config

Signatures

Files

94c2d3f8b76a2a16625e4f0fdef593ebd03f9c58564b86b72df8bb1e174c4eb4
.exe windows x86

0a1ac8fb862e5a5afcf460cba4608ec5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetModuleHandleA
GetStartupInfoA
CloseHandle
CreateThread
GetSystemDefaultUILanguage
GetSystemInfo
GlobalMemoryStatusEx
lstrlenA
TerminateProcess
CreateProcessA
lstrcpyA
GetCurrentProcess
SetProcessWorkingSetSize
ExitThread
OutputDebugStringA
Sleep
GetTickCount
LoadLibraryA
GetProcAddress
lstrcatA

user32

wsprintfA

advapi32

DeleteService
OpenSCManagerA
OpenServiceA
RegEnumValueA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

ws2_32

__WSAFDIsSet
recv
WSAIoctl
send
WSAStartup
WSASocketA
setsockopt
select
sendto
socket
htons
connect
closesocket
inet_addr
gethostbyname
htonl

msvcrt

??2@YAPAXI@Z
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
??1type_info@@UAE@XZ
_onexit
__dllonexit
??3@YAXPAX@Z
_CxxThrowException
_except_handler3
strcpy
strchr
strncat
strcat
memset
strlen
rand
srand
memcpy
_strnicmp
free
malloc
strstr
exit
__CxxFrameHandler

iphlpapi

GetIfTable

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a1ac8fb862e5a5afcf460cba4608ec5

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

msvcrt

iphlpapi

Sections

.text Size: 12KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 12KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 20KB - Virtual size: 19KB