93f5cc1382d4cd18011ada4d206e2b1eaec4b79cefc01f8010fe43b14dd3ed11

Sharing

Copy URL Twitter E-mail

General

Target

93f5cc1382d4cd18011ada4d206e2b1eaec4b79cefc01f8010fe43b14dd3ed11
Size

192KB
MD5

8586a74a6f1835164643bc5606b40f6e
SHA1

41989e89ae35b63fe6cff7c2ef74522a6702703a
SHA256

93f5cc1382d4cd18011ada4d206e2b1eaec4b79cefc01f8010fe43b14dd3ed11
SHA512

a0e975103a81ff06bb75b9e6d9d49be3ec127c421f33e5d245327a1db563baccd7fed585427b121b8e7ccdb134e41cf88188dca10b13d9f41f17cc1a053cbd13
SSDEEP

3072:jGnBjc3laBqzFJ9lzX7+/b7lfcSlBkAQ1j3ETovlSejUBeg2Aq:jGjc3laMJ3r+j7JcmkA83EIMewEg2Aq

Score

N/A

Malware Config

Signatures

Files

93f5cc1382d4cd18011ada4d206e2b1eaec4b79cefc01f8010fe43b14dd3ed11
.exe windows x86

6428a3fc7a7dea54734ffdbc8476a9ab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAStartup
inet_addr
gethostbyaddr

kernel32

OutputDebugStringA
SetStdHandle
GetLocaleInfoA
GetSystemInfo
MultiByteToWideChar
VirtualAllocEx
GetModuleFileNameW
GetProcAddress
GetModuleHandleW
ExitProcess
GetLastError
CreateMutexW
LockResource
LoadResource
SizeofResource
FindResourceW
RtlUnwind
DebugBreak
RaiseException
GetVersionExA
LoadLibraryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
IsBadWritePtr
IsBadReadPtr
HeapValidate
HeapFree
HeapAlloc
GetProcessHeap
GetModuleFileNameA
CloseHandle
GetCurrentProcess
FreeLibrary
GetStdHandle
WriteFile
InterlockedDecrement
FlushFileBuffers
InterlockedIncrement
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
VirtualAlloc
IsBadCodePtr
VirtualQuery
InterlockedExchange
SetConsoleCtrlHandler
GetCPInfo
GetACP
GetOEMCP
GetStringTypeA
GetStringTypeW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
LCMapStringW
SetFilePointer
VirtualProtect
CreateProcessW

Sections

.textbss
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6428a3fc7a7dea54734ffdbc8476a9ab

Headers

File Characteristics

Imports

ws2_32

kernel32

Sections

.textbss Size: - Virtual size: 64KB

.text Size: 112KB - Virtual size: 109KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 8KB - Virtual size: 13KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 48KB - Virtual size: 46KB

.textbss
Size: - Virtual size: 64KB

.text
Size: 112KB - Virtual size: 109KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 8KB - Virtual size: 13KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 48KB - Virtual size: 46KB