98aeef189e6e4058863b450dba9a370ad5dd67905004d507073e873db63063ac | Triage

Sharing

Copy URL Twitter E-mail

General

Target

98aeef189e6e4058863b450dba9a370ad5dd67905004d507073e873db63063ac
Size

2KB
MD5

d1a5fcc079f73a4578a18f47c850a8ed
SHA1

a96eec41befd450617dd5a25e60987b1c2631ed0
SHA256

98aeef189e6e4058863b450dba9a370ad5dd67905004d507073e873db63063ac
SHA512

8c08749f09dc6732312be68e8e6b1d452f4f0b7e9a47ad3d64a7bcec2d78a10760bc84d402f6fbae349dfebc009c90370792476c81e27aca2dc835515fed3134

Score

N/A

Malware Config

Signatures

Files

98aeef189e6e4058863b450dba9a370ad5dd67905004d507073e873db63063ac
.exe windows x86

9053c0c31cab7b0bf44922754ed568ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA

ws2_32

send
recv
gethostbyname
connect
closesocket
WSAStartup
WSACleanup
socket

kernel32

GetModuleFileNameA
WinExec
Sleep
MoveFileExA
LoadLibraryA
GetProcAddress
ExitProcess

Sections

.text
Size: 1024B - Virtual size: 634B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 478B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE