756447e1d2ec52a5a5fca04922f4862efea1358229698012aa9de796ebc8ed13

Sharing

Copy URL Twitter E-mail

General

Target

756447e1d2ec52a5a5fca04922f4862efea1358229698012aa9de796ebc8ed13
Size

81KB
MD5

dc962b0447f222eca299299e54bedf89
SHA1

aa0ff97f6a22cfe9be30dcfeec32f144b594972c
SHA256

756447e1d2ec52a5a5fca04922f4862efea1358229698012aa9de796ebc8ed13
SHA512

b27fbc820b47abe7d6a34d649a2c6b60749ccf7cb3f1c4d79004a3fb4dab69ccac2675440907538738ac38747c89a842eadad639e12a5af864e8bef93bd3082b
SSDEEP

1536:zODYgKQxmDdXYBVGkZv0N9oILHtFealyHr:yDYgnxm5XgdN0boILHtFRlyHr

Score

N/A

Malware Config

Signatures

Files

756447e1d2ec52a5a5fca04922f4862efea1358229698012aa9de796ebc8ed13
.exe windows x86

90ec2371b056c25ca1ae9a6360858ced

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetVolumeInformationA
GetDriveTypeA
GetLogicalDrives
DeleteFileA
SetFileAttributesA
MoveFileA
GetFileAttributesA
lstrcatA
lstrcpyA
Sleep
CopyFileA
CreateDirectoryA
WinExec
GetLocalTime
lstrcmpA
FreeLibrary
ResumeThread
WaitForSingleObject
ExitProcess
WriteFile
CreateFileA
GetModuleHandleA
Process32Next
Process32First
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
GetCurrentThreadId
lstrlenA
GetSystemDirectoryA
GlobalMemoryStatusEx
GetComputerNameA
GetLocaleInfoW
DeviceIoControl
CreateProcessA
ExitThread
GetTickCount
InterlockedExchange
LocalAlloc
SetEnvironmentVariableA
CompareStringW
CompareStringA
LCMapStringW
LCMapStringA
ReadFile
SetEndOfFile
GetOEMCP
GetACP
GetTimeZoneInformation
GetSystemTime
RtlUnwind
RaiseException
GetCurrentProcess
GetStartupInfoA
GetCommandLineA
GetVersion
HeapFree
GetLastError
CloseHandle
HeapAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetFilePointer
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetStdHandle
FlushFileBuffers
IsBadReadPtr
IsBadCodePtr
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo

shell32

ShellExecuteA

ws2_32

select
__WSAFDIsSet
recv
setsockopt
WSAIoctl
htons
send
connect
closesocket
gethostname
gethostbyname
WSACleanup
WSAStartup
socket
inet_addr
sendto
WSASocketA
htonl

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90ec2371b056c25ca1ae9a6360858ced

Headers

File Characteristics

Imports

kernel32

shell32

ws2_32

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 16KB - Virtual size: 23KB

.rsrc Size: 1024B - Virtual size: 944B

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 16KB - Virtual size: 23KB

.rsrc
Size: 1024B - Virtual size: 944B