afb5306264e81860aa35ef0ccd703abe8fea991cb249a777d57fe7498f21f9ae

General

Target

afb5306264e81860aa35ef0ccd703abe8fea991cb249a777d57fe7498f21f9ae
Size

76KB
MD5

6fb283f0ee10640a0cf29335615b730f
SHA1

6a4a6f0f4a96ab1eb837095149a486c6a268e1d1
SHA256

afb5306264e81860aa35ef0ccd703abe8fea991cb249a777d57fe7498f21f9ae
SHA512

265d594c2eda919b968bfeaa238dc0a734fde790d2259e39547fb0734900b4ea592ab12d70ca40c992eb327ca961b87da755c6516dd38f71c1a63d39b6d24e9e
SSDEEP

1536:otMqYQbT2y5XJDWnKkIbU7Lo5F3lGoaTZ/ld26Bt0BOU4pk+N:QeypJDo7LYllRaT/d26BtaeR

Score

N/A

Malware Config

Signatures

Files

afb5306264e81860aa35ef0ccd703abe8fea991cb249a777d57fe7498f21f9ae
.exe windows x86

dfd24e17014feb7ec270d90669f0caac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

send

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
memcpy
_acmdln
exit
_XcptFilter
_exit
_except_handler3
rand
strlen
atoi
strcpy
strtok
strcmp
getenv
strcat
??2@YAPAXI@Z
??3@YAXPAX@Z
memset

kernel32

GetStartupInfoA
WriteConsoleA
VerLanguageNameA
lstrcmpiA
GetCurrentProcess
GetModuleHandleA
ReadProcessMemory
Sleep
GetModuleFileNameW
lstrlenW
WriteProcessMemory
GetCommandLineA
OutputDebugStringA
GetModuleFileNameA
lstrcpyA
CreateMutexA
GetLastError
lstrcmpA
lstrcatA
CreateThread
WaitForSingleObject
GetProcAddress
ExitProcess
lstrlenA
LoadLibraryA

user32

CreateWindowExA
CallWindowProcA
RegisterClassExA
GetParent
TranslateMessage
TrackPopupMenu
SetFocus
IsWindow
UpdateWindow
PostQuitMessage
DialogBoxParamA
GetWindowRect
LoadMenuA
DestroyIcon
MessageBoxA
MessageBoxW

gdi32

DeleteObject
SelectPalette
CreateCompatibleDC
SetBkMode

comdlg32

GetSaveFileNameA

shell32

ShellExecuteExA

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 47KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dfd24e17014feb7ec270d90669f0caac

Headers

File Characteristics

Imports

ws2_32

msvcrt

kernel32

user32

gdi32

comdlg32

shell32

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 47KB - Virtual size: 50KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 47KB - Virtual size: 50KB

.rsrc
Size: 8KB - Virtual size: 8KB