b6a1d74c657d270a87796e40096b4b849d20e0413f6861e2302da447cd06b3f5

General

Target

b6a1d74c657d270a87796e40096b4b849d20e0413f6861e2302da447cd06b3f5
Size

13KB
MD5

14138ccc07c63493ba9a0394fd53aa9e
SHA1

74596c5cd53923838a1f21a2170799ae71804973
SHA256

b6a1d74c657d270a87796e40096b4b849d20e0413f6861e2302da447cd06b3f5
SHA512

e99808233958e3abd780927e10caffa0cbcf11b54d6bb80dee98abc669856428e3a77f619ac00384331e3ff5560cd3e33031f60b8600de2a7df0538068106e36
SSDEEP

384:ZxgChbMD03Zlk+u9HDyK3qDNhYErBuHF8:rguA4Z+3289HC

Score

N/A

Malware Config

Signatures

Files

b6a1d74c657d270a87796e40096b4b849d20e0413f6861e2302da447cd06b3f5
.exe windows x86

625854f6272458c482b82d32d5e86cf1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord823
ord825
ord540
ord800

msvcrt

_mbsstr
_snprintf
strncpy
sprintf
sscanf
printf
strchr
atoi
strncat
rename
__CxxFrameHandler
_stricmp

kernel32

GetWindowsDirectoryA
Process32Next
Process32First
CreateToolhelp32Snapshot
GetShortPathNameA
lstrcpyA
ExitProcess
DeleteFileA
CreateMutexA
GetFileSize
FreeLibrary
WriteFile
GetTickCount
CloseHandle
TerminateProcess
ReadFile
WaitForSingleObject
CreateProcessA
CreatePipe
WinExec
GetProcAddress
GetTempPathA
LoadLibraryA
CreateThread
FindClose
FindNextFileA
GetLastError
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileA
GetCurrentProcess
Sleep
GetSystemDirectoryA
GetStartupInfoA
SetFilePointer
CreateFileA
GetModuleFileNameA
ResumeThread
SetThreadPriority
GetCurrentThread
SetPriorityClass
lstrcatA
GetEnvironmentVariableA
CopyFileA
GetDriveTypeA

user32

wsprintfA
ExitWindowsEx

advapi32

LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges

shell32

SHGetFileInfoA

ws2_32

recv
send
closesocket
shutdown
setsockopt
socket
connect
WSACleanup
WSAStartup
htons
getsockname
gethostbyname
inet_addr

msvcp60

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

625854f6272458c482b82d32d5e86cf1

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

advapi32

shell32

ws2_32

msvcp60

Sections

.text Size: 12KB - Virtual size: 11KB

.text
Size: 12KB - Virtual size: 11KB