b1796761d30fdf3752006fd3d7a9d8084db5c95a8c2f0aa5f072be8a1d31c29c

Sharing

Copy URL

Twitter E-mail

General

Target

b1796761d30fdf3752006fd3d7a9d8084db5c95a8c2f0aa5f072be8a1d31c29c
Size

44KB
MD5

d8faeceb29fce25bb9d202ec8a4f2683
SHA1

39d1a1eb4add29dd755bd84996578ea3b4a437ba
SHA256

b1796761d30fdf3752006fd3d7a9d8084db5c95a8c2f0aa5f072be8a1d31c29c
SHA512

82c33e0620ef07399a5cf2bd7c6512ad1b2c42a81eecec404c982e78c64aa5601576c0a200198fa7ac3014b5322f39bdc6219ff4833f5fb741738620c9520dfe
SSDEEP

768:Xrd9EC5rkFBeR3lscNAhI/MK+Bg54d/yBKO7LdBONzOuaBBQARQkJZWSLtE7:OeR3lseAhI/MK+S54d/ot7/ONzIBBQAY

Score

N/A

Malware Config

Signatures

Files

b1796761d30fdf3752006fd3d7a9d8084db5c95a8c2f0aa5f072be8a1d31c29c
.exe windows x86

4cfe0cbe7819abc2dd025300228dafbe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
GetCurrentProcess
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetSystemTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
LoadResource
LocalAlloc
LocalFree
LockResource
ReadFile
ExitProcess
RtlMoveMemory
RtlZeroMemory
SetEvent
SetFilePointer
SetProcessWorkingSetSize
SizeofResource
Sleep
WaitForSingleObject
WinExec
WriteFile
lstrcatA
lstrcmpiA
lstrcpyA
lstrlenA
EnterCriticalSection
HeapFree
HeapAlloc
GetProcessHeap
GetFileSize
DeleteFileA
DeleteCriticalSection
CreateThread
CreateMutexA
CreateFileA
CreateEventA
CloseHandle
CreateDirectoryA
ResetEvent

user32

InvalidateRect
KillTimer
LoadAcceleratorsA
LoadCursorA
LoadIconA
MessageBoxA
PostQuitMessage
RegisterClassExA
SendDlgItemMessageA
SendMessageA
SetTimer
SetWindowLongA
SetWindowPos
ShowWindow
TranslateAcceleratorA
TranslateMessage
GetWindowTextA
GetMessageA
GetDlgItemTextA
GetDlgItem
GetClientRect
EndPaint
EndDialog
DispatchMessageA
DialogBoxParamA
wsprintfA
ReleaseDC
GetDC
BeginPaint
CallWindowProcA
CreateWindowExA
DefWindowProcA
UpdateWindow
GetWindowLongA
GetDlgItemInt

gdi32

SelectObject
DeleteDC
CreateCompatibleDC
CreateDIBitmap
CreateDIBSection
BitBlt

comctl32

InitCommonControlsEx
InitCommonControls

wsock32

select
send
sendto
socket
recv
htons
htonl
gethostbyname
connect
closesocket
WSAStartup
WSACleanup
WSAAsyncSelect
recvfrom

msvcrt

rand

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4cfe0cbe7819abc2dd025300228dafbe

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

wsock32

msvcrt

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 13KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 13KB

.rsrc
Size: 6KB - Virtual size: 6KB