dbc0192852d3eb3e8e8e956898770dad0558388e962b3aee77adbae61d075865 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dbc0192852d3eb3e8e8e956898770dad0558388e962b3aee77adbae61d075865
Size

3KB
MD5

dd7cba5a93f09d7ffa3ef8589ebc9a23
SHA1

7a632b08856ab4ed93002d05df6c919fad49c274
SHA256

dbc0192852d3eb3e8e8e956898770dad0558388e962b3aee77adbae61d075865
SHA512

94d24e27f5fd5ad7ce718ce4de3fbd4dba14cad1e066a9479d40d9fb490333e500d5255b5ff7ecedb38a38d9cf3a663f9d02603a511f6b1b5d9d08a1b5ee0843

Score

N/A

Malware Config

Signatures

Files

dbc0192852d3eb3e8e8e956898770dad0558388e962b3aee77adbae61d075865
.exe windows x86

47779073eed9ba6af7265220641b4b07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetEnvironmentVariableA
GetFileSize
GetProcAddress
LoadLibraryA
ExitProcess
ReadFile
WriteFile
WriteProcessMemory
lstrlenA
CreateRemoteThread
OpenFile
CreateProcessA

wsock32

gethostbyname
connect
closesocket
socket
send
recv

advapi32

RegOpenKeyExA
RegSetValueExA

user32

wsprintfA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE