8f8d87ea8e2433b4218868ae2bc3104df7f20f89420e4a06d701dfd040994f72

General

Target

8f8d87ea8e2433b4218868ae2bc3104df7f20f89420e4a06d701dfd040994f72
Size

97KB
MD5

49c5a7dbadcad4d0d24ceda823c96f2f
SHA1

08fd4d0d7d553dbf33e3a0dcbb30bdb9bd097648
SHA256

8f8d87ea8e2433b4218868ae2bc3104df7f20f89420e4a06d701dfd040994f72
SHA512

5bd4f23417f79e94c42d3134e055eccae831b4b511f5acb0d05c51161b026f2162ea8d837eeb1a6f875f18c0b758d459d680db0a100252d1d22284d7223d1bff
SSDEEP

3072:rEtWgHCkyL7UraoLe7mJmyOT/1CekGiVw:S6L17mJkNgGiVw

Score

N/A

Malware Config

Signatures

Files

8f8d87ea8e2433b4218868ae2bc3104df7f20f89420e4a06d701dfd040994f72
.exe windows x86

c57868cc9a7fdbaa620057a4b23fd574

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateNamedPipeW
lstrcmp
GetModuleHandleW
GetVersionExW
lstrcpyA
VirtualAlloc
LoadLibraryW
GetDateFormatA
GetProcessHeaps
lstrcat
FatalAppExitA
CreateDirectoryW
GetLogicalDrives
GetModuleFileNameW
FatalAppExitW
GetCurrentDirectoryA
MoveFileA
GetEnvironmentVariableW
GetEnvironmentVariableA
GetVolumeInformationA
GetTempPathW
GetShortPathNameA
MoveFileW
GetProcessHeap
DosDateTimeToFileTime
OpenSemaphoreW
GetCurrentThreadId

user32

InsertMenuW
MessageBoxW
GetWindowRect
LoadCursorA
GetClientRect
GetClassInfoExW
DefWindowProcW
GetWindowLongA
LoadMenuW
RegisterClassExA
TrackPopupMenu
GetSystemMetrics
DestroyIcon

gdi32

CreatePen
CreatePatternBrush
CreateDIBitmap
FillRgn

advapi32

RegReplaceKeyW

comdlg32

ChooseFontA
PageSetupDlgA
GetSaveFileNameW
GetFileTitleW
GetFileTitleA
GetOpenFileNameW

shell32

ShellExecuteW

ole32

CoGetClassObject
CoGetCurrentProcess
CoDeactivateObject

version

VerLanguageNameW
VerLanguageNameA
VerFindFileW
VerQueryValueA

ws2_32

getsockname
recv
connect
gethostname
shutdown

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c57868cc9a7fdbaa620057a4b23fd574

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comdlg32

shell32

ole32

version

ws2_32

Sections

.text Size: 31KB - Virtual size: 30KB

.data Size: 57KB - Virtual size: 56KB

.idata Size: 2KB - Virtual size: 1KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 31KB - Virtual size: 30KB

.data
Size: 57KB - Virtual size: 56KB

.idata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 6KB - Virtual size: 5KB