893dffe4dbcb3a149011d17287db713b5bec29fd7ab359c75cedda94266fd8a8

General

Target

893dffe4dbcb3a149011d17287db713b5bec29fd7ab359c75cedda94266fd8a8
Size

458KB
MD5

44ba8a31e536d55f557055e3b47e8d30
SHA1

94e80519f13ec8796b0f41ec85e2ee6c84cf8bb8
SHA256

893dffe4dbcb3a149011d17287db713b5bec29fd7ab359c75cedda94266fd8a8
SHA512

834e342862f936ff4668ada4934107cf31e0405a33bafa3d81dffd0fde09700b4e84dfd24984e6c34871b9baf148b70598fbcfd03a2363684c0011084d00be5d
SSDEEP

12288:VngZqXCD9ZydgVLWhPGbYQk3dDIpl1Egc:9giKEgUhPTVNInC7

Score

N/A

Malware Config

Signatures

Files

893dffe4dbcb3a149011d17287db713b5bec29fd7ab359c75cedda94266fd8a8
.exe windows x86

befd1c008dcfae9c216b3091e67e4a30

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
recvfrom
htonl
htons
WSACleanup
recv
getservbyname
send

kernel32

SetFilePointer
SetEndOfFile
GetLocaleInfoW
LoadLibraryA
GetOEMCP
GetLogicalDriveStringsA
VirtualProtectEx
PrepareTape
FindNextChangeNotification
FindFirstChangeNotificationA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
GetCPInfo
ExitProcess
RtlUnwind
HeapFree
RaiseException
HeapAlloc
LCMapStringA
MultiByteToWideChar
GetLastError
LCMapStringW
SetHandleCount
GetStdHandle
GetFileType
ReadFile
TlsAlloc
SetLastError
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
CloseHandle
TerminateProcess
GetCurrentProcess
WriteFile
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
VirtualQuery
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
FlushFileBuffers
HeapSize
IsBadReadPtr
IsBadCodePtr
VirtualProtect
GetSystemInfo
CreateFileA
SetStdHandle
GetACP

Sections

.text
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

befd1c008dcfae9c216b3091e67e4a30

Headers

File Characteristics

Imports

ws2_32

kernel32

Sections

.text Size: 75KB - Virtual size: 75KB

.rdata Size: 139KB - Virtual size: 138KB

.data Size: 152KB - Virtual size: 174KB

.rsrc Size: 90KB - Virtual size: 89KB

.text
Size: 75KB - Virtual size: 75KB

.rdata
Size: 139KB - Virtual size: 138KB

.data
Size: 152KB - Virtual size: 174KB

.rsrc
Size: 90KB - Virtual size: 89KB