c68e0b47558a459bc199a0720e143e8ce86f1aa80645171e7260664b6240db8c

General

Target

c68e0b47558a459bc199a0720e143e8ce86f1aa80645171e7260664b6240db8c
Size

56KB
MD5

64c6c60013b35a3650378f77ff4583f0
SHA1

6b6d9ac9c57fa37732410139dc6b03898a092714
SHA256

c68e0b47558a459bc199a0720e143e8ce86f1aa80645171e7260664b6240db8c
SHA512

dd30859e5fb49448c5cd26c8ed476c150e9925feacdb11eec653e33796359870b605e4f2e5cbdfc5509a9d5e9458176459d9f71b7f4ad06d15b2d64f43c4177d
SSDEEP

192:sltc7Dh7Ib43AI88sNRzruVW6c7KRdZMFu2tx+8dE3UzSYUrGuunKRdZMFu2tx+Q:n5R3yRHuVm1xq3UZU9w1xq3UZU9SE9Y

Score

N/A

Malware Config

Signatures

Files

c68e0b47558a459bc199a0720e143e8ce86f1aa80645171e7260664b6240db8c
.exe windows x86

af3ee3853d9d6059eb2bea719bf40f86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
IsDebuggerPresent
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EncodePointer
GetStartupInfoW
HeapSetInformation
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer

ws2_32

inet_addr
htons
socket
WSAStartup
connect

msvcr100

__setusermatherr
_commode
_fmode
_configthreadlocale
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_invoke_watson
_controlfp_s
_initterm_e
_initterm
_wcmdln
_XcptFilter
_exit
_cexit
__wgetmainargs
_amsg_exit
exit
printf
memcpy
__set_app_type
memset

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af3ee3853d9d6059eb2bea719bf40f86

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ws2_32

msvcr100

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 48KB - Virtual size: 48KB

.reloc Size: 1024B - Virtual size: 558B

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 48KB - Virtual size: 48KB

.reloc
Size: 1024B - Virtual size: 558B