de7913768ab44db23b7b67126cedaecec9ad4c9503413188ca4b48b5f1318ce2

General

Target

de7913768ab44db23b7b67126cedaecec9ad4c9503413188ca4b48b5f1318ce2
Size

32KB
MD5

482916298b4dfb980c6cca00d8e0a730
SHA1

df2ee8ead1b13a327e94f53a43452e0fde772b88
SHA256

de7913768ab44db23b7b67126cedaecec9ad4c9503413188ca4b48b5f1318ce2
SHA512

de80e45619eca06b43d23ab8057b0b41f83deaa8af6821ece0e8511163baa92ae59b4baa53378dab8d3ff4af4c4e9929dcc2b5e8a64def6707db005a69db8605
SSDEEP

768:4DrPPyK1/jDX8VDxYzR86ERG2aBui2vSiQ9h6lT:4D+K1/kUCaBuikDQa1

Score

N/A

Malware Config

Signatures

Files

de7913768ab44db23b7b67126cedaecec9ad4c9503413188ca4b48b5f1318ce2
.exe windows x86

37571f6c0cb0931665ffeab0a317bf5d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
CreateProcessA
FindClose
FindNextFileA
FileTimeToSystemTime
FindFirstFileA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetDriveTypeA
GetLogicalDrives
Process32First
GetSystemTime
GetEnvironmentVariableA
GetFileSize
DeleteFileA
CreatePipe
VirtualProtect
WaitForSingleObject
CreateThread
CreateMutexA
GetProcAddress
FreeLibrary
LoadLibraryA
Process32Next
GetModuleFileNameA
CreateFileA
CloseHandle
Sleep
WriteFile
GetExitCodeProcess
ReadFile
PeekNamedPipe
SetFilePointer
GetStartupInfoA
GetModuleHandleA

advapi32

RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA
GetUserNameA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
OpenProcessToken
CreateProcessAsUserA

ws2_32

gethostname
setsockopt
closesocket
connect
recv
inet_addr
gethostbyname
WSAStartup
__WSAFDIsSet
send
WSACleanup
select

msvcrt

_XcptFilter
_memicmp
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
??3@YAXPAX@Z
??2@YAPAXI@Z
clock
strrchr
atoi
sprintf
calloc
_exit
_strnicmp
exit
_acmdln
__getmainargs
_initterm
__setusermatherr

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

37571f6c0cb0931665ffeab0a317bf5d

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

msvcrt

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 55KB

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 55KB