cd21f1ee70842b66f935be5ff941f9bf95751c7102f9e8cf8aef765503868108

General

Target

cd21f1ee70842b66f935be5ff941f9bf95751c7102f9e8cf8aef765503868108
Size

44KB
MD5

08bb71845a074bcfa05472f18104d207
SHA1

053d8f0329683cfdd362fadc3355e128ba5cd192
SHA256

cd21f1ee70842b66f935be5ff941f9bf95751c7102f9e8cf8aef765503868108
SHA512

f9133baba3b7e8f6abb99cf6e7b2738088ddba12dad49f2b57c360316a6951c431504fb34d30f46d3df2458e8a2161bd03612a2132a416bd38d2b8d98aba0178
SSDEEP

768:PMOYmeqaxBLSBBRpTXC2TkVea2e+EFNoBnoqssYgIzXIf1Eoj:P4xqaxBWrS2TkVMe+EFNoeqsO85o

Score

N/A

Malware Config

Signatures

Files

cd21f1ee70842b66f935be5ff941f9bf95751c7102f9e8cf8aef765503868108
.exe windows x86

a2eb27ae84184c5c0ce7803f54a40d8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32First
CreateToolhelp32Snapshot
WaitForSingleObject
ReadFile
GetFileSize
WinExec
Process32Next
CreateFileA
GetSystemDirectoryA
GetLocalTime
SetEnvironmentVariableA
CompareStringW
SetEvent
CreateEventA
CloseHandle
GetCurrentDirectoryA
GetFileAttributesA
GetModuleHandleA
GetModuleFileNameA
Sleep
GetProcessHeap
HeapAlloc
WriteFile
HeapFree
CompareStringA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetTimeZoneInformation
GetSystemTime
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
HeapReAlloc
GetLastError
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
SetFilePointer
SetStdHandle
FlushFileBuffers
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
GetProcAddress
LoadLibraryA
SetEndOfFile
MultiByteToWideChar

user32

MessageBoxA

advapi32

RegisterServiceCtrlHandlerA
OpenSCManagerA
OpenServiceA
QueryServiceStatus
ControlService
DeleteService
CloseServiceHandle
CreateServiceA
ChangeServiceConfig2A
StartServiceCtrlDispatcherA
SetServiceStatus

ws2_32

send
select
recv
WSAStartup
socket
connect
WSAGetLastError
closesocket
inet_addr
htons

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a2eb27ae84184c5c0ce7803f54a40d8c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ws2_32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 10KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 10KB