a16068cbf86ed67c8571b864e6461a7b74fca8857f4d7f9860b63882252d8ef6

General

Target

a16068cbf86ed67c8571b864e6461a7b74fca8857f4d7f9860b63882252d8ef6
Size

84KB
MD5

09e84cb3cdf1320e3cd5cfccb3375bac
SHA1

56db1bfd474c7ea516aff01e207b90390e36c3b6
SHA256

a16068cbf86ed67c8571b864e6461a7b74fca8857f4d7f9860b63882252d8ef6
SHA512

a040fabb15a5eb86c15a8a9b01b704be69db4edb18c497c065aa8ec646a4de721271619a5683abfa5bb83a9ad0cf41263dcc07828a70823dbf91762bb91710ef
SSDEEP

768:fIqrLFR2d1yQLOsK0duRUc0j+aPsyIlHKI6rVXvJRSLaVWGEtUy:pT2d1is20j+aPUKxrpJ0TGEJ

Score

N/A

Malware Config

Signatures

Files

a16068cbf86ed67c8571b864e6461a7b74fca8857f4d7f9860b63882252d8ef6
.dll windows x86

61c6f82ede90c5d070c9e92a060dacfc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord2915
ord540
ord2818
ord5683
ord4129
ord858
ord535
ord924
ord825
ord800
ord823

msvcrt

_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
_beginthread
sprintf
longjmp
_setjmp3
strncmp
strchr
fopen
fprintf
fclose
__CxxFrameHandler
_stricmp

kernel32

InitializeCriticalSection
GetModuleHandleA
GetCurrentProcessId
CreateToolhelp32Snapshot
Module32First
Module32Next
CloseHandle
GetVersionExA
DeleteCriticalSection
WaitForSingleObject
GetProcAddress
VirtualQuery
VirtualProtect
GetCurrentProcess
OpenEventA
ReadProcessMemory
SetEvent
GetLastError
GetTickCount
GetModuleFileNameA
LoadLibraryA
lstrcmpiA
OpenProcess
VirtualProtectEx
WriteProcessMemory
GetSystemInfo

imagehlp

ImageDirectoryEntryToData

wsock32

htons
send
WSACleanup
recvfrom
closesocket
bind
ioctlsocket
WSAGetLastError
socket
WSAStartup
connect
recv

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61c6f82ede90c5d070c9e92a060dacfc

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

imagehlp

wsock32

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 32KB - Virtual size: 28KB

.data Size: 12KB - Virtual size: 15KB

.reloc Size: 12KB - Virtual size: 8KB

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 32KB - Virtual size: 28KB

.data
Size: 12KB - Virtual size: 15KB

.reloc
Size: 12KB - Virtual size: 8KB