bf8e49d036d2e2010e9d2ed1c02b1e823f6ab605cdddea6e5810d1107374ad27

General

Target

bf8e49d036d2e2010e9d2ed1c02b1e823f6ab605cdddea6e5810d1107374ad27
Size

11KB
MD5

6b698fa0569977980a212e185473ba86
SHA1

629378eacf729692fe3bfc99db17ce8ad432e9f0
SHA256

bf8e49d036d2e2010e9d2ed1c02b1e823f6ab605cdddea6e5810d1107374ad27
SHA512

ed5ba07f331e5a646f986d4a03db2be70438ba03fe4ce56cd8fe1676c3f9f523ebdff1734e276d39733bfbf322cdef90e21b1851287b6986914a9e30f620ddfb
SSDEEP

192:6KiIvJSh5BEvPiMwwbNkXm31Rc88gAPhXGk+hsfgM9H1P1oynzEltmimxxby0UCq:riIvJS2vPawGm31RcEAPZqoJ9B1dEltx

Score

N/A

Malware Config

Signatures

Files

bf8e49d036d2e2010e9d2ed1c02b1e823f6ab605cdddea6e5810d1107374ad27
.exe windows x86

e4917ed79e91e59535bca73ff31bee68

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

send
inet_addr
gethostbyname
WSAStartup
connect
socket
htons
select
recv
closesocket
WSACleanup

advapi32

RegCreateKeyExA
RegSetValueExA
RegCloseKey
GetUserNameA
RegDeleteKeyA

msvcrt

strrchr
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_strcmpi
fwrite
fclose
rand
malloc
sprintf
strcat
strcpy
srand
strstr
strtok
atoi
strchr
strncmp
memmove
strncpy
_snprintf
strcmp
memset
strlen
fopen

kernel32

CreateDirectoryA
lstrcpynA
CreateFileA
DeleteFileA
lstrlenA
GetTempPathA
ExitProcess
CreateProcessA
GetStartupInfoA
WriteFile
Sleep
WaitForSingleObject
CloseHandle
GetLocaleInfoA
GetVersionExA
SetErrorMode
OpenMutexA
GetModuleHandleA
GetModuleFileNameA
SetFileAttributesA
CopyFileA
GetLastError
ExitThread
CreateMutexA
GetTickCount
ReleaseMutex
CreateThread

user32

CharLowerA
FindWindowA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e4917ed79e91e59535bca73ff31bee68

Headers

File Characteristics

Imports

ws2_32

advapi32

msvcrt

kernel32

user32

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 5KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 5KB