879de97846c1d914d4b54adc857aaffd3064781de4b54efcd3f0cf8a33246e54

General

Target

879de97846c1d914d4b54adc857aaffd3064781de4b54efcd3f0cf8a33246e54
Size

32KB
MD5

4c6b768be0afb8f0bd5f77cfcf9b26ca
SHA1

36c4c784ed59727e5ab410710c9cd68e5d7392ac
SHA256

879de97846c1d914d4b54adc857aaffd3064781de4b54efcd3f0cf8a33246e54
SHA512

4b61b0897da7c30bbacf370bf47068176df99327e5f3922d0beb7ed934331352f776a1fc4c11ba76332a16f49afe54560cdc7b1fa1546f27c7fc23c036474ef0
SSDEEP

192:wSa0Q0UndTIYZuvwlYYlYIdT/AkqkXcSFyhdOYfuKzAF3QEiouEzcttqqvPPcfN:dQddjZuk/YquSEdOYfucKzcOqHkfN

Score

N/A

Malware Config

Signatures

Files

879de97846c1d914d4b54adc857aaffd3064781de4b54efcd3f0cf8a33246e54
.dll windows x86

5c96263d82ea146e68609432acef5ec4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
FreeLibrary
GetProcAddress
LoadLibraryA
FindNextFileA
lstrlenA
lstrcatA
FileTimeToSystemTime
FindFirstFileA
lstrcpyA
MoveFileA
DeleteFileA
SetFileAttributesA
GlobalAlloc
GlobalFree
GetModuleFileNameA
GetSystemDirectoryA
ExpandEnvironmentStringsA
WinExec
CloseHandle
ReleaseMutex
GetLastError
CreateMutexA
GetVersionExA
GetComputerNameA
WriteFile
WaitForSingleObject
ReadFile
GetCurrentThread
CreateProcessA
CreatePipe

ws2_32

gethostname
send
recv
socket
htons
ioctlsocket
connect
select
inet_addr
gethostbyname
closesocket
inet_ntoa
WSCGetProviderPath
WSCEnumProtocols
WSAStartup

msvcrt

_adjust_fdiv
malloc
_initterm
free
fputs
atoi
_strlwr
_write
_read
strstr
strtol
_lseek
_close
_endthread
fclose
strncmp
_beginthread
fgets
fopen
sprintf
_open

Exports

Exports

WSPStartup

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c96263d82ea146e68609432acef5ec4

Headers

File Characteristics

Imports

kernel32

ws2_32

msvcrt

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 5KB

Shared Size: 4KB - Virtual size: 8B

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 5KB

Shared
Size: 4KB - Virtual size: 8B

.reloc
Size: 4KB - Virtual size: 1KB