8fe91ba367c975e89531cd99fdb3331c4f1460205e8d6e20ac01e185b38cb882 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

8fe91ba367c975e89531cd99fdb3331c4f1460205e8d6e20ac01e185b38cb882
Size

7KB
MD5

cd2d74b8c7b4cbc1300223eca6692b88
SHA1

523b855ef2e29450e0a1242cc8f474e43d795eaa
SHA256

8fe91ba367c975e89531cd99fdb3331c4f1460205e8d6e20ac01e185b38cb882
SHA512

baef53a0852085752d866523705b0bd404a1bc0bebb6f0f27d77eba7fd48f219eacdec08421bdfbca7bc95af2d37062040f4ca41ba48b39b9c0fd687b5b2d610
SSDEEP

192:ISig0FoObud+GOZ/1EzgJovFq+SQOlqkbS24haIq9Q1oy:8FoObud+fN5/nTICQ1

Score

N/A

Malware Config

Signatures

Files

8fe91ba367c975e89531cd99fdb3331c4f1460205e8d6e20ac01e185b38cb882
.exe windows x86

18c9a9ede003ad0202bad3b4e7281c35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
CloseHandle
LoadLibraryA
GetModuleHandleA
GetProcAddress
Sleep
GetCurrentProcessId
GetSystemInfo
GetTickCount
GetStartupInfoA

advapi32

RegOpenKeyA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA

ws2_32

gethostbyname
recv
__WSAFDIsSet
WSAIoctl
socket
connect
send
WSAStartup
WSASocketA
WSAGetLastError
setsockopt
htons
htonl
sendto
closesocket
WSACleanup
inet_addr
select

msvcrt

??3@YAXPAX@Z
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_iob
sprintf
rand
printf
fprintf
_except_handler3
_local_unwind2
strstr
strrchr
??2@YAPAXI@Z

Sections

.data
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE