c399986e1abcd38c5b77cc059393a1eee8cc8dd08d8c28e535df21b4d26ab9da

Sharing

Copy URL Twitter E-mail

General

Target

c399986e1abcd38c5b77cc059393a1eee8cc8dd08d8c28e535df21b4d26ab9da
Size

393KB
MD5

48048535fe266aed933d44c206258309
SHA1

4e6a9243a1c4be407a5f7af246f611307f727390
SHA256

c399986e1abcd38c5b77cc059393a1eee8cc8dd08d8c28e535df21b4d26ab9da
SHA512

83dfef1776786141e81e0456d4de105e85aedda0e4a2e724ad80819abe2f4e45318048d65180e7350c7fae247045f6945c44cc4c5bf6eca8fb3b4289be045b92
SSDEEP

6144:DdiakGV9Lftyzm5DxsOXgzQbzouLC4nWzqdxjwbC+oqA8W:DdiaZDLMm5DxTXDvhP1v+P7W

Score

N/A

Malware Config

Signatures

Files

c399986e1abcd38c5b77cc059393a1eee8cc8dd08d8c28e535df21b4d26ab9da
.exe windows x86

f2f8e6311ae561109c53573ce3ff2135

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSACleanup
WSAStartup
closesocket
WSAGetLastError
recv
send
getsockname
ntohs
bind
htons
getsockopt
setsockopt
connect
socket
inet_addr
htonl
getservbyname
gethostbyaddr
getservbyport
WSASetLastError
gethostname
__WSAFDIsSet
select
ioctlsocket
gethostbyname
inet_ntoa

dnsapi

DnsQuery_W

kernel32

GlobalMemoryStatus
GetVersionExW
lstrcmpW
GetPrivateProfileStringA
GetFileSize
ReadFile
GetDriveTypeW
GetDiskFreeSpaceExW
GetVolumeInformationW
GetNativeSystemInfo
GetLastError
SleepEx
SetLastError
GetProcAddress
FreeLibrary
LoadLibraryA
GetSystemDirectoryA
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
Sleep
GetTickCount
CloseHandle
WriteFile
WaitForSingleObject
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
RaiseException
GetFullPathNameA
SetFilePointer
LCMapStringW
CreateFileW
GetCurrentDirectoryW
GetLocalTime
DeleteFileW
GetCurrentDirectoryA
WideCharToMultiByte
FormatMessageA
MultiByteToWideChar
GetTimeZoneInformation
ExpandEnvironmentStringsA
SetEndOfFile
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameW
HeapSize
InterlockedDecrement
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
GetStdHandle
ExitProcess
GetModuleHandleA
HeapCreate
GetFileAttributesW
FlushFileBuffers
SetFileAttributesW
HeapAlloc
HeapFree
GetVersionExA
GetProcessHeap
GetStartupInfoW
HeapReAlloc
GetSystemTimeAsFileTime
ExitThread
GetCurrentThreadId
CreateThread
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetConsoleCP
GetConsoleMode
RtlUnwind
VirtualFree
VirtualAlloc
HeapDestroy

user32

GetSystemMetrics
EndPaint
PostQuitMessage
SetDlgItemTextW
EndDialog
LoadStringW
LoadAcceleratorsW
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
LoadIconW
LoadCursorW
RegisterClassExW
CreateWindowExW
ShowWindow
UpdateWindow
SetWindowTextW
DialogBoxParamW
DestroyWindow
DefWindowProcW
BeginPaint

gdi32

SelectObject
TextOutW
SetTextAlign
CreateSolidBrush
CreateFontW
SetBkColor

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

wininet

InternetOpenA
HttpSendRequestW
HttpOpenRequestW
InternetCloseHandle
InternetConnectA

Sections

.text
Size: 220KB - Virtual size: 217KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f2f8e6311ae561109c53573ce3ff2135

Headers

File Characteristics

Imports

ws2_32

dnsapi

kernel32

user32

gdi32

advapi32

wininet

Sections

.text Size: 220KB - Virtual size: 217KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 8KB - Virtual size: 45KB

.rsrc Size: 116KB - Virtual size: 116KB

.text
Size: 220KB - Virtual size: 217KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 8KB - Virtual size: 45KB

.rsrc
Size: 116KB - Virtual size: 116KB