e6cb7bb4ad1c3bb87886afa19b6c891c40367ddd94c880b0d4d4c10a42729b28

General

Target

e6cb7bb4ad1c3bb87886afa19b6c891c40367ddd94c880b0d4d4c10a42729b28
Size

19KB
MD5

2160254cd9ad035bc9271ff97ad59211
SHA1

35d4b22ed771bcf8d7c23ab21c959f572289d2c8
SHA256

e6cb7bb4ad1c3bb87886afa19b6c891c40367ddd94c880b0d4d4c10a42729b28
SHA512

b1e256867ce69244af5bd9e1c72c25e10efabd9002bdcd80d6f0f50c1ef93316c999ce3b17e354337b9414e7453e50db94effc1647e31285785e082d1ca9821d
SSDEEP

384:mnYoavq4F34sVNyNZTw8e7FGU+h2D8CgKJjQkFROCHpCXcoO9OOuK+uO:mnkF346yNZTw8e7Ff+h2DxgojQMROCHt

Score

N/A

Malware Config

Signatures

Files

e6cb7bb4ad1c3bb87886afa19b6c891c40367ddd94c880b0d4d4c10a42729b28
.exe windows x86

e46f45d54597748da801b8522282dab5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileA
DeleteFileA
GetModuleFileNameA
WaitForSingleObject
GetModuleHandleA
GetStartupInfoA
CloseHandle
GetSystemInfo
GlobalMemoryStatusEx
GetSystemDefaultUILanguage
CreateThread
GetCurrentProcess
SetProcessWorkingSetSize
Sleep
OutputDebugStringA
ExitThread
GetTickCount
LoadLibraryA
GetProcAddress
CopyFileA

user32

wsprintfA

advapi32

RegQueryValueExA
RegCloseKey

ws2_32

__WSAFDIsSet
shutdown
recv
send
WSAStartup
WSASocketA
select
htonl
socket
htons
connect
closesocket
inet_addr
gethostbyname
setsockopt
sendto

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
??1type_info@@UAE@XZ
_onexit
__dllonexit
??3@YAXPAX@Z
atoi
_except_handler3
strcpy
strcat
memset
strlen
rand
srand
memcpy
strstr
free
malloc
sprintf
??2@YAPAXI@Z
exit
__CxxFrameHandler
_CxxThrowException
localtime
time

iphlpapi

GetIfTable

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e46f45d54597748da801b8522282dab5

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

msvcrt

iphlpapi

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 928B

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 928B