17bff5540fecbe15f421034dea22c0f36ddc7c0552fbf57251e7b525c1f5e44e

General

Target

17bff5540fecbe15f421034dea22c0f36ddc7c0552fbf57251e7b525c1f5e44e
Size

12KB
MD5

d19548c4ada60e2ea6959a5851c58050
SHA1

8a4d643d6dd5431cdeb60b266833316e1b7c77a9
SHA256

17bff5540fecbe15f421034dea22c0f36ddc7c0552fbf57251e7b525c1f5e44e
SHA512

e84d9cd14a76c176469dc35fc17b1d0a30cf887e9a82d268cd6b5c8e20aed759c6c852d97f7e7351f7e10da625b2c13c51a6e445057e953adaedbee1f91c177c
SSDEEP

384:/afsMWYacAOhgD+aKTU9qubowkIUI9TUs:/afsyac9MJKTjubBgIlUs

Score

N/A

Malware Config

Signatures

Files

17bff5540fecbe15f421034dea22c0f36ddc7c0552fbf57251e7b525c1f5e44e
.rar
bug.exe
.exe windows x86

0a1ac8fb862e5a5afcf460cba4608ec5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetModuleHandleA
GetStartupInfoA
CloseHandle
CreateThread
GetSystemDefaultUILanguage
GetSystemInfo
GlobalMemoryStatusEx
lstrlenA
TerminateProcess
CreateProcessA
lstrcpyA
GetCurrentProcess
SetProcessWorkingSetSize
ExitThread
OutputDebugStringA
Sleep
GetTickCount
LoadLibraryA
GetProcAddress
lstrcatA

user32

wsprintfA

advapi32

DeleteService
OpenSCManagerA
OpenServiceA
RegEnumValueA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

ws2_32

__WSAFDIsSet
recv
WSAIoctl
send
WSAStartup
WSASocketA
setsockopt
select
sendto
socket
htons
connect
closesocket
inet_addr
gethostbyname
htonl

msvcrt

??2@YAPAXI@Z
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
??1type_info@@UAE@XZ
_onexit
__dllonexit
??3@YAXPAX@Z
_CxxThrowException
_except_handler3
strcpy
strchr
strncat
strcat
memset
strlen
rand
srand
memcpy
_strnicmp
free
malloc
strstr
exit
__CxxFrameHandler

iphlpapi

GetIfTable

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a1ac8fb862e5a5afcf460cba4608ec5

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

msvcrt

iphlpapi

Sections

.text Size: 12KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 12KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 20KB - Virtual size: 19KB