5f4c080bcc3e32a06c6cc51081da3193c6045dc863d98f0183658bfd6f38d67d

Sharing

Copy URL Twitter E-mail

General

Target

5f4c080bcc3e32a06c6cc51081da3193c6045dc863d98f0183658bfd6f38d67d
Size

252KB
MD5

1a1f4880e2695da40c2382de141e3d9e
SHA1

730d741564f31947acf44b73ad9227e4ff6497a2
SHA256

5f4c080bcc3e32a06c6cc51081da3193c6045dc863d98f0183658bfd6f38d67d
SHA512

b22614061b5e9b5ac70cf7d99418ca137d6fc304b745c5ae30d08e8db8bbd3fdc2d15bb45aa1046f7cdd0fc0af8c8aa80962f11e4e1bea45e8022a198d596d0f
SSDEEP

6144:pg9SJ3GmB+gw8quOMdwD5xTse7P+BMbA5QwEgNV0gShqlHfl:0SJWmMB6OM6VxAeD+qbA5LEgNKhCHfl

Score

N/A

Malware Config

Signatures

Files

5f4c080bcc3e32a06c6cc51081da3193c6045dc863d98f0183658bfd6f38d67d
.exe windows x86

d9e532bee60319c34dd4f051b70ae406

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

htons
inet_addr
gethostname
gethostbyname

iphlpapi

GetBestInterface
GetIpAddrTable

kernel32

GetProcessHeap
TlsAlloc
InitializeCriticalSection
WaitForSingleObject
lstrcpyW
lstrlenW
GetLastError
CreateEventW
CreateMutexW
GetCurrentProcessId
FreeLibrary
GlobalAlloc
LoadLibraryW
ExpandEnvironmentStringsW
SetEvent
GetModuleHandleW
GetVersionExW
GetModuleFileNameW
ExitProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetCurrentThreadId
FatalAppExitA
HeapCreate
Sleep
GetFileAttributesW
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetCurrentThread
GetModuleHandleA
GetStartupInfoA
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
IsValidLocale
GetLocaleInfoW
GetVersion
GetProcAddress

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

netapi32

NetReplGetInfo
NetUseGetInfo

user32

CharNextA
GetMenuStringA
SetWindowTextA
WaitMessage
CreateDialogParamA
DialogBoxIndirectParamW
GetCapture
CreatePopupMenu
LoadBitmapA
CharNextW
SetFocus
SendMessageW
GetActiveWindow
CharLowerA
CreateWindowExW
InsertMenuItemA
GetKeyboardLayout
IsMenu
SetCursor
GetMenuItemInfoA
RegisterWindowMessageA
CharUpperW
LoadMenuA
SetCapture
CopyIcon
LoadMenuIndirectA
EmptyClipboard
SetDlgItemInt
CreateWindowExA
SetForegroundWindow
ShowWindow
DefWindowProcW
GetMenu
GetWindowRgn
TrackPopupMenu
PostQuitMessage
GetCursorPos

gdi32

GetStockObject
RemoveFontResourceW
CreateBitmap
DeleteObject
CreateFontW
CreateDIBPatternBrushPt
CreateScalableFontResourceW

Sections

.edata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aaIrfj
Size: 104KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.E
Size: 110KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9e532bee60319c34dd4f051b70ae406

Headers

File Characteristics

Imports

ws2_32

iphlpapi

kernel32

advapi32

netapi32

user32

gdi32

Sections

.edata Size: 6KB - Virtual size: 5KB

.rdata Size: 12KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 12KB

.aaIrfj Size: 104KB - Virtual size: 187KB

.data Size: 6KB - Virtual size: 102KB

.E Size: 110KB - Virtual size: 124KB

.rsrc Size: 9KB - Virtual size: 8KB

.edata
Size: 6KB - Virtual size: 5KB

.rdata
Size: 12KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 12KB

.aaIrfj
Size: 104KB - Virtual size: 187KB

.data
Size: 6KB - Virtual size: 102KB

.E
Size: 110KB - Virtual size: 124KB

.rsrc
Size: 9KB - Virtual size: 8KB