946e2b0e477f1a97d90f7ac0aec903a3936ec93520a1352fa5cd6efbc54f1239

General

Target

946e2b0e477f1a97d90f7ac0aec903a3936ec93520a1352fa5cd6efbc54f1239
Size

72KB
MD5

0ce65fb6c2c4cd5675c366184e0b80d8
SHA1

7d09c6bc7c97f6852465a2b07d3f408922f31581
SHA256

946e2b0e477f1a97d90f7ac0aec903a3936ec93520a1352fa5cd6efbc54f1239
SHA512

97eb6b028ee770a1ac603f4aa0eb0d869eddac9845a7db174aff717b9e6e34ed93ea83deff9f83918a892d5ba78f94fb87be34fcde8b57e0d301093630b0c253
SSDEEP

768:HgUoFN8iGW4gd0LUCbDfNS9aRvSRWI2kdhBUzpbP9th+V7LwA72yOoTWED6:H+eiGWfd46GvSEIyV5thMoABO

Score

N/A

Malware Config

Signatures

Files

946e2b0e477f1a97d90f7ac0aec903a3936ec93520a1352fa5cd6efbc54f1239
.exe windows x86

a2d246885e5aa56b5d475de695829d67

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
FindClose
WriteFile
FindFirstFileA
VirtualAlloc
GetFileSize
CreateFileA
GetLastError
ExitProcess
LoadLibraryA
ReadFile
GetProcAddress
LCMapStringW
LCMapStringA
CloseHandle
SetStdHandle
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
FlushFileBuffers
HeapReAlloc
SetFilePointer
HeapFree
VirtualFree
HeapCreate
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
SetHandleCount
GetStdHandle
GetFileType
HeapAlloc
TerminateProcess
GetCurrentProcess
WideCharToMultiByte
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy

advapi32

RegOpenKeyExA
RegOpenKeyA

ws2_32

gethostbyname
select
__WSAFDIsSet
recv
socket
connect
send
gethostname
inet_ntoa
WSAStartup
setsockopt
htons
htonl
sendto
closesocket
inet_addr

iphlpapi

GetIfTable

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2d246885e5aa56b5d475de695829d67

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

iphlpapi

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 17KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 17KB

.rsrc
Size: 20KB - Virtual size: 16KB