a42a94de8d96b9d9155518379b4da04f2171bfcdf5390afba1c593a957ebc58e

General

Target

a42a94de8d96b9d9155518379b4da04f2171bfcdf5390afba1c593a957ebc58e
Size

70KB
MD5

b438e7d07e78e53ec7c7ec799eec11bf
SHA1

75433490bbbdba32da176a79e482eda2aea65d0b
SHA256

a42a94de8d96b9d9155518379b4da04f2171bfcdf5390afba1c593a957ebc58e
SHA512

926ff86badf72017ac7732a16d19f1e9fb72beab3fca92104143f69834821d3f23a9542b1a45d0e97fa2c0e3045c761d8bc5cf5e38cb12677581c4ee3710868d
SSDEEP

1536:KdL4nJcwxeE/UOobwGqo5CP2WEIsh73JmEZkWbzdI:2L4DEttbuqIsp5msa

Score

N/A

Malware Config

Signatures

Files

a42a94de8d96b9d9155518379b4da04f2171bfcdf5390afba1c593a957ebc58e
.exe windows x86

38c636985d8a35d6b2bbe2cd1fd928f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
htonl
gethostname
ntohs
htons
sendto
send
inet_ntoa
gethostbyname
getsockname
inet_addr
select
accept
listen
gethostbyaddr
getpeername
bind
setsockopt
closesocket
connect
socket
recv

dbghelp

StackWalk64

kernel32

FileTimeToLocalFileTime
CreateFileA
FindFirstFileA
GetWindowsDirectoryA
FindClose
FindNextFileA
GetFileTime
SystemTimeToTzSpecificLocalTime
OpenEventA
SetEvent
GetSystemTimeAsFileTime
GetFileSize
GetSystemDirectoryA
lstrcatA
SetFileAttributesA
CreateProcessA
InterlockedDecrement
FreeLibrary
HeapFree
HeapReAlloc
HeapAlloc
GetProcessHeap
GetProcAddress
LoadLibraryA
GetVolumeInformationA
GetComputerNameA
GetTickCount
GetVersionExA
lstrcmpiA
lstrlenA
Sleep
lstrcpynA
GetModuleHandleA
InterlockedExchange
GetCurrentThreadId
ExitProcess
GetOverlappedResult
WaitForSingleObject
GetLastError
WriteFile
ReadFile
ConnectNamedPipe
DisconnectNamedPipe
CreateNamedPipeA
CloseHandle
GetTimeZoneInformation
CreateEventA
GetEnvironmentVariableA
DeleteFileA
lstrcpyA
lstrcmpA
VirtualAlloc
VirtualProtect
VirtualFree
IsBadReadPtr
GetCurrentProcess
SystemTimeToFileTime
GetSystemTime
DeviceIoControl
CreateFileW
ExitThread
VirtualFreeEx
VirtualAllocEx
WaitForMultipleObjects
CreateThread
SetUnhandledExceptionFilter
InterlockedIncrement
GetLocalTime
FileTimeToSystemTime

user32

wsprintfA

advapi32

RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegCloseKey

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

38c636985d8a35d6b2bbe2cd1fd928f9

Headers

File Characteristics

Imports

ws2_32

dbghelp

kernel32

user32

advapi32

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 512B - Virtual size: 4KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 512B - Virtual size: 4KB