d834690450fe3f95c3b50845ee6ae5d969796697e452a74fe750f9cb0a913663

General

Target

d834690450fe3f95c3b50845ee6ae5d969796697e452a74fe750f9cb0a913663
Size

164KB
MD5

3f0487ab3f592a1c471b7f09785ebfb4
SHA1

3e05d2528c1458c79460d89a35f86b27a4cb036c
SHA256

d834690450fe3f95c3b50845ee6ae5d969796697e452a74fe750f9cb0a913663
SHA512

8c781a45d41672a9b49acda9f78ec8ee84ff761cea5ab73743ea55ad44a7419d2bad6b35e5ed81a716d96d465041c2577acf9259132d37f5a528f761615e92ce
SSDEEP

3072:tVAGcUOdFWq5HGdyySqjrgHtJtj1xxIAQiyC32gV+FAbji0n5EXH5nyo/:tVAGao0y/EDl1nQ0DbVn5Q

Score

N/A

Malware Config

Signatures

Files

d834690450fe3f95c3b50845ee6ae5d969796697e452a74fe750f9cb0a913663
.exe windows x86

e504e885f2dd25b14ef57f618ee9a004

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExpandEnvironmentStringsA
GetModuleHandleA
FreeLibrary
GetVersionExA
GetProcAddress
LoadLibraryA
GetFileAttributesA
lstrcmpA
Sleep
GetLocaleInfoW
SetEndOfFile
GetOEMCP
GetACP
SetStdHandle
IsBadCodePtr
IsBadReadPtr
CreateFileA
WideCharToMultiByte
MultiByteToWideChar
HeapAlloc
RtlUnwind
RaiseException
HeapFree
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapReAlloc
TerminateProcess
GetCurrentProcess
LCMapStringA
LCMapStringW
GetCPInfo
CompareStringA
CompareStringW
GetLastError
ReadFile
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
WriteFile
SetFilePointer
FlushFileBuffers
CloseHandle
SetUnhandledExceptionFilter
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
SetEnvironmentVariableA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey
GetUserNameA

ws2_32

WSAStartup
htons
inet_addr
socket
connect
send
closesocket
WSACleanup

Sections

.text
Size: 128KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e504e885f2dd25b14ef57f618ee9a004

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

Sections

.text Size: 128KB - Virtual size: 126KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 12KB - Virtual size: 33KB

.text
Size: 128KB - Virtual size: 126KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 12KB - Virtual size: 33KB