aa765d9588e19ce0b649541353db02b168152aa2435ca3a4f6f2c441dcf7c012

Sharing

Copy URL Twitter E-mail

General

Target

aa765d9588e19ce0b649541353db02b168152aa2435ca3a4f6f2c441dcf7c012
Size

84KB
MD5

76fd2d11e78e7b67691e49dbc2266331
SHA1

5a5179f466331a7b411a814cc9987c4dd2d80e40
SHA256

aa765d9588e19ce0b649541353db02b168152aa2435ca3a4f6f2c441dcf7c012
SHA512

e7fb3b201fe33a13c44bac9458f4c89db3ed8db2712bc11470776161acc7833155cd9e0bee164a61706387db59e727a0f651b205c4a4cd74fd086b8b0ae79c0e
SSDEEP

768:QKcn7vr+xbUpwG7MBz8MUpweo7RyBZB7dTE7SUE22SmKL+gL0dYMDDyelY:QK+T+OOG7MzU3dTEWUE22OinYgplY

Score

N/A

Malware Config

Signatures

Files

aa765d9588e19ce0b649541353db02b168152aa2435ca3a4f6f2c441dcf7c012
.exe windows x86

2978fada441ab3511e3485a06a5b1bab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFileTimeToFileTime
SystemTimeToFileTime
WriteFile
CreateFileA
CreateThread
Sleep
GetVersionExA
CloseHandle
WaitForSingleObject
CreateEventA
OpenEventA
SetFileTime
GetModuleFileNameA
CreateDirectoryA
ExitProcess
lstrlenA
GetProcAddress
LoadLibraryA
GetModuleHandleA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetEnvironmentVariableA
CompareStringW
CompareStringA
CopyFileExA
GetStartupInfoA
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
SetStdHandle
SetFilePointer
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
IsBadCodePtr
IsBadReadPtr
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
RtlUnwind
RaiseException
TerminateProcess
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapFree
HeapAlloc
GetCommandLineA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
SetUnhandledExceptionFilter
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
FlushFileBuffers
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter

user32

GetTopWindow
MessageBeep

advapi32

RegCloseKey

netapi32

Netbios

ws2_32

bind
getsockname
setsockopt
closesocket
ntohs
WSAStartup
socket
WSAGetLastError
getpeername
inet_addr
htons
gethostname
gethostbyname
inet_ntoa
connect
send
recv
select
sendto
recvfrom
__WSAFDIsSet
WSACleanup

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2978fada441ab3511e3485a06a5b1bab

Headers

File Characteristics

Imports

kernel32

user32

advapi32

netapi32

ws2_32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 16KB - Virtual size: 18KB

.rsrc Size: 4KB - Virtual size: 152B

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 16KB - Virtual size: 18KB

.rsrc
Size: 4KB - Virtual size: 152B