dee4183df393a11d19e17508bed9531aa402cae402bc7350db59b4322ba3ccdf

General

Target

dee4183df393a11d19e17508bed9531aa402cae402bc7350db59b4322ba3ccdf
Size

57KB
MD5

9210765c0dd942110fec5a15c29f5173
SHA1

ce2ca8a386d6ebd26b6a1ebde15d454cf1c7f346
SHA256

dee4183df393a11d19e17508bed9531aa402cae402bc7350db59b4322ba3ccdf
SHA512

18e66ce2aab50f601317e5173e8f3fdadb45dea5f98b3738f0b8bb6546df55aa2fd200bde20fc2afd73e9fe4ccf7cc10079b45837107ab05f18a2156978c0f5b
SSDEEP

768:oUI0vr5hyF+uL1EJnPonKR9VIoIqxwBTVh2aBE6rNNALVEi5rDg9:T7v1Cf1EJnAnasSxiphdNGZJ1Dg

Score

N/A

Malware Config

Signatures

Files

dee4183df393a11d19e17508bed9531aa402cae402bc7350db59b4322ba3ccdf
.exe windows x86

a85d0afe8708608d1e0a3b999a4e5d76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
lstrlenA
CreateThread
CopyFileA
GetSystemDirectoryA
GetModuleFileNameA
GetTickCount
CreateMutexA
OpenMutexA
LoadLibraryA
GetProcAddress
GetSystemWindowsDirectoryA
FreeLibrary
CloseHandle
FlushFileBuffers
HeapSize
SetStdHandle
LCMapStringW
LCMapStringA
GetCurrentProcessId
QueryPerformanceCounter
GetSystemInfo
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
TlsAlloc
SetLastError
GetCurrentThreadId
GetLastError
TlsFree
TlsSetValue
TlsGetValue
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
InitializeCriticalSection
RtlUnwind
InterlockedExchange
VirtualQuery
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetCPInfo
GetLocaleInfoA
GetACP
GetOEMCP
SetFilePointer
VirtualProtect

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA

ws2_32

WSAStartup
socket
sendto
getservbyport
ntohs
gethostbyaddr
htons
getservbyname
htonl
inet_ntoa
gethostbyname
WSAGetLastError
inet_addr

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a85d0afe8708608d1e0a3b999a4e5d76

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 9KB - Virtual size: 37KB

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 9KB - Virtual size: 37KB