a3911f0e9cd72ce803b15f1df368777b921973c6a651e9e490e5988c564a7ae3 | Triage

Sharing

General

Target

a3911f0e9cd72ce803b15f1df368777b921973c6a651e9e490e5988c564a7ae3
Size

3KB
MD5

ff0368787c3e841bdb7385e94f68e2b7
SHA1

63a9c00190d315ac840dd16bf739337835e6febe
SHA256

a3911f0e9cd72ce803b15f1df368777b921973c6a651e9e490e5988c564a7ae3
SHA512

41aff7b3509c7b71242861ba108eca8dd98a9a2a6b06a842f6c0028c810632577fc4e40dc8fe06101d192431c8805551a2a27c49006be189ea8dfaa34c496da7

Score

N/A

Malware Config

Signatures

Files

a3911f0e9cd72ce803b15f1df368777b921973c6a651e9e490e5988c564a7ae3
.exe windows x86

d536cc605eb8cfd5bde07e66d8308132

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
MessageBoxA

ws2_32

send
recv
htons
gethostbyname
connect
closesocket
WSAStartup
WSACleanup
socket

kernel32

GetModuleFileNameA
GetProcAddress
lstrcpyA
lstrcatA
WinExec
Sleep
MoveFileExA
LoadLibraryA
ExitProcess

Sections

.text
Size: 1024B - Virtual size: 724B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 556B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 586B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE