b1969ac36979fa85f405f57278ffa7c209cdb98d3f9ac2f15cea84706a8a05d0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b1969ac36979fa85f405f57278ffa7c209cdb98d3f9ac2f15cea84706a8a05d0
Size

16KB
MD5

a87b7a8ed6a2ee656f6d93b47dad8aa6
SHA1

ae253c450c56148323e382b1cc022bcdff46e5ca
SHA256

b1969ac36979fa85f405f57278ffa7c209cdb98d3f9ac2f15cea84706a8a05d0
SHA512

563d0ff24948e8c921fc9bc6b5eb0d865717503c9935fb93798df4ec50f935937415d7dd2051b7f20ffca02aff976dcbc8d451f9ad0c92593332efad29023f11
SSDEEP

24:etGSWuFpfj6IjSjks5Dr1vAKbFtfLMxcBa7SvStBqpxMNWWdbIr0BJHD5bDCOCt:6WujjqAcVPCSvStBXRdbcA5w

Score

N/A

Malware Config

Signatures

Files

b1969ac36979fa85f405f57278ffa7c209cdb98d3f9ac2f15cea84706a8a05d0
.exe windows x86

249b5af71f509e1bfa5c5274b500da0c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
CreateThread
ExitProcess

user32

wsprintfA

ws2_32

gethostbyname
closesocket
connect
htons
inet_addr
socket
send
recv
WSAStartup

Sections

.text
Size: 4KB - Virtual size: 655B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE