8e8d3597d55b73b3b97865b04116ccdbeb5948c11a91225bafa05702e218a02e

General

Target

8e8d3597d55b73b3b97865b04116ccdbeb5948c11a91225bafa05702e218a02e
Size

19KB
MD5

6fcaa53d6560fd7c0addfdf736d88be5
SHA1

f7df353023820164c44399da2b5405f6e3601486
SHA256

8e8d3597d55b73b3b97865b04116ccdbeb5948c11a91225bafa05702e218a02e
SHA512

22ed977403fcd96191cbb5c4726952187c9298e5d02aaffc12c5aee9f82608ef99477efde3da59c0341e835905067afbde47d68ae888be794198bc9fdf33a240
SSDEEP

192:P1RDrXhy6ZIjD1x7UJpubdKXgUqb3beb8R5jSzruVQG6cDqN:PT3MwIXTYPuJKXI3xR5jSHuVJD8

Score

N/A

Malware Config

Signatures

Files

8e8d3597d55b73b3b97865b04116ccdbeb5948c11a91225bafa05702e218a02e
.exe windows x86

4178a3b0a4b26fccaecdedad5aa5e797

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

recv
send
gethostbyname
htons
inet_ntoa
connect
WSAStartup
socket
WSACleanup

msvcr100

_vsnprintf
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
exit
printf
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
_unlock
__dllonexit
_lock
_onexit
_except_handler4_common
_invoke_watson
_controlfp_s
_snprintf
memset
strtok
strcmp
strncat
strlen
__initenv

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DecodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
EncodePointer
HeapSetInformation
InterlockedCompareExchange
Sleep
InterlockedExchange
GetCurrentProcess

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 790B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4178a3b0a4b26fccaecdedad5aa5e797

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

msvcr100

kernel32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 1KB

.idata Size: 2KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 790B

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 1KB

.idata
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 790B