0a6699553ff455c267d6d4a6f51b44eaa90c54db8440aa7986737481b290bc76

Sharing

Copy URL

Twitter E-mail

General

Target

0a6699553ff455c267d6d4a6f51b44eaa90c54db8440aa7986737481b290bc76
Size

253KB
MD5

32ffa9f79e0f51b133d3d11d8e749190
SHA1

022efca622c279b7ae608a92b0dedcbca9596445
SHA256

0a6699553ff455c267d6d4a6f51b44eaa90c54db8440aa7986737481b290bc76
SHA512

6cb1b699ce60857c82f169c07223b0a18425e11915c20b3622b19f90efe7f6c966e750bb8a91b7a4163ac16feccd81f659642172e63f668ff459b360ff01538f
SSDEEP

6144:r+stJ2Z7p4HWpKm3tjBL/jX1mFqCvIbYa1WvyrG7:istJ2npKm3tlL/pm9V+G7

Score

N/A

Malware Config

Signatures

Files

0a6699553ff455c267d6d4a6f51b44eaa90c54db8440aa7986737481b290bc76
.exe windows x86

83f04d8ddd64fa905e5e8f5359a89403

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

htons
inet_addr
gethostname
gethostbyname

iphlpapi

GetBestInterface
GetIpAddrTable

kernel32

GetProcessHeap
TlsAlloc
InitializeCriticalSection
WaitForSingleObject
lstrcpyW
lstrlenW
GetLastError
CreateEventW
CreateMutexW
GetCurrentProcessId
FreeLibrary
GlobalAlloc
LoadLibraryW
ExpandEnvironmentStringsW
SetEvent
GetModuleHandleW
GetVersionExW
GetModuleFileNameW
ExitProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetCurrentThreadId
FatalAppExitA
HeapCreate
Sleep
GetFileAttributesW
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetCurrentThread
GetModuleHandleA
GetStartupInfoA
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
LoadLibraryA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
GetLocaleInfoA
IsValidLocale
GetLocaleInfoW
BeginUpdateResourceW
GetProcAddress

advapi32

SetSecurityDescriptorDacl
InitializeSecurityDescriptor

cfgmgr32

CM_Free_Log_Conf
CM_Next_Range

user32

MonitorFromPoint
TrackPopupMenu
EndMenu
CharPrevW
GetIconInfo
GetDCEx
CreateWindowExW
IsWindow
GetDlgItemTextA
wvsprintfA
SetDlgItemTextW
GetKeyboardLayout
GetMenuInfo
GetMenuItemID
InvalidateRect
PostQuitMessage
InvalidateRgn
CopyRect
RemoveMenu
GetTopWindow
InsertMenuItemW
GetMenuStringA
IsDlgButtonChecked

gdi32

GetEnhMetaFileA
CreatePen
RemoveFontResourceExA
CreateFontIndirectExA
CreatePolygonRgn
CreateFontA
AddFontResourceW

Sections

CODE
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.NZOdX
Size: 104KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.HrK
Size: 112KB - Virtual size: 146KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83f04d8ddd64fa905e5e8f5359a89403

Headers

File Characteristics

Imports

ws2_32

iphlpapi

kernel32

advapi32

cfgmgr32

user32

gdi32

Sections

CODE Size: 8KB - Virtual size: 7KB

.icode Size: 12KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 4KB

.NZOdX Size: 104KB - Virtual size: 128KB

.data Size: 6KB - Virtual size: 121KB

.HrK Size: 112KB - Virtual size: 146KB

.rsrc Size: 7KB - Virtual size: 6KB

CODE
Size: 8KB - Virtual size: 7KB

.icode
Size: 12KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 4KB

.NZOdX
Size: 104KB - Virtual size: 128KB

.data
Size: 6KB - Virtual size: 121KB

.HrK
Size: 112KB - Virtual size: 146KB

.rsrc
Size: 7KB - Virtual size: 6KB