afe5e8fe86b1f9dfb4d7acd2d9233725311a040ec2c2a7e4b253cabaa384ccbf

General

Target

afe5e8fe86b1f9dfb4d7acd2d9233725311a040ec2c2a7e4b253cabaa384ccbf
Size

52KB
MD5

ab20f247a0e24d807ae0dd0bd3f0a680
SHA1

7a871b2b814094dcf4f18f955714f25f2966fc31
SHA256

afe5e8fe86b1f9dfb4d7acd2d9233725311a040ec2c2a7e4b253cabaa384ccbf
SHA512

a46ab845ba19ed00c49c8015de068e554991127d6ab350b18a60f84440fc2ae149b9871febc244d17ca54b4fe03a31b8593d68fa74527bde7218cebfc8feabd4
SSDEEP

768:ha/f+4Sd9QZ9ByEE11gAVKRMDH8alepw1krCf9Xd/6RLYaEAtcrnq:ha/24Sd9Q83XgeH8ale3O/SkFA

Score

N/A

Malware Config

Signatures

Files

afe5e8fe86b1f9dfb4d7acd2d9233725311a040ec2c2a7e4b253cabaa384ccbf
.exe windows x86

24a53f370f4c100d7cf086d337078829

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

gethostname
gethostbyname
WSACleanup
WSAStartup

kernel32

GetLocalTime
GetModuleFileNameA
DeleteFileA
SetFileAttributesA
lstrcatA
CopyFileA
lstrcpyA
CreateDirectoryA
GetProcAddress
LoadLibraryA
FreeLibrary
WinExec
Sleep
GetWindowsDirectoryA
FindClose
lstrcmpA
FindNextFileA
FindFirstFileA
ExpandEnvironmentStringsA
CloseHandle
TerminateProcess
OpenProcess
Process32Next
Process32First
CreateToolhelp32Snapshot
HeapFree
lstrcpynA
HeapAlloc
GetLastError
GetProcessHeap
lstrcmpiA
GetCurrentProcessId
CreateEventA
DuplicateHandle
GetCurrentProcess
WriteFile
CreateFileA
GetSystemDirectoryA
MoveFileA
GetFileAttributesA
CreateMutexA
GetVolumeInformationA
GetDriveTypeA
GetLogicalDrives
CreateThread
GetLogicalDriveStringsA

user32

SetTimer
GetWindowTextA
PostMessageA
FindWindowA
RegisterClassA
CreateWindowExA
ShowWindow
UpdateWindow
SendMessageA
GetMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
GetCursorPos
WindowFromPoint
GetParent

advapi32

GetTokenInformation
LookupAccountSidA
OpenProcessToken

wininet

InternetOpenA
InternetOpenUrlA
InternetCloseHandle

msvcr71

srand
rand
strcmp
strcat
strstr
strcspn
??2@YAPAXI@Z
memset
strncpy
strlen
sprintf
strcpy
fopen
fputs
fclose
time
memcpy
strncmp

Sections

.data
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

24a53f370f4c100d7cf086d337078829

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

kernel32

user32

advapi32

wininet

msvcr71

Sections

.data Size: 48KB - Virtual size: 45KB

.data
Size: 48KB - Virtual size: 45KB