ef8b9702187c5efa511618cc3de58d28d578294cbae7506a6f4db4bb24c80e20

General

Target

ef8b9702187c5efa511618cc3de58d28d578294cbae7506a6f4db4bb24c80e20
Size

13KB
MD5

d5093db53cc9503f72f67a7350d239b7
SHA1

95df6320ff9d5092102e37f416717f5cbb9a7060
SHA256

ef8b9702187c5efa511618cc3de58d28d578294cbae7506a6f4db4bb24c80e20
SHA512

afd84977b2fee3d6ed39ec10ae1946d5f02af7153ce92d1f6afc2e90f0b198db59efc7f6c1e376b12cc7ce7ec568faf56ae0ba7ed3a819be429f3b2e646f7f61
SSDEEP

192:h4OamDS7P9juGkLSmZsqJOF+IkgOUqdwWNiFpdQ3mnj2B2388ZgUF79W:hbDSeLSAfJs18wW8X2342B2s8ZgA9

Score

N/A

Malware Config

Signatures

Files

ef8b9702187c5efa511618cc3de58d28d578294cbae7506a6f4db4bb24c80e20
.exe windows x86

d43e44031b254be36428b2f039979fa7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

EnumWindows
FindWindowA
FindWindowExA
FlashWindow
GetClassNameA
GetForegroundWindow
GetWindowTextA
PostMessageA
SetWindowTextA
ShowWindow

ws2_32

WSACleanup
WSAStartup
connect
gethostbyname
htons
recv
send
socket

advapi32

RegCloseKey
RegOpenKeyExA
RegSetValueExA

kernel32

AddAtomA
CopyFileA
CreateThread
ExitProcess
FindAtomA
FreeLibrary
GetAtomNameA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetWindowsDirectoryA
LoadLibraryA
SetUnhandledExceptionFilter
Sleep

msvcrt

__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_iob
_onexit
_setmode
abort
atexit
atoi
exit
free
malloc
memset
printf
rand
signal
sprintf
srand
strcmp
strcpy
strlen
strstr
strtok
system
time

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 84B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 252B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d43e44031b254be36428b2f039979fa7

Headers

File Characteristics

Imports

user32

ws2_32

advapi32

kernel32

msvcrt

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 84B

.rdata Size: 1KB - Virtual size: 1KB

.bss Size: - Virtual size: 252B

.idata Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 84B

.rdata
Size: 1KB - Virtual size: 1KB

.bss
Size: - Virtual size: 252B

.idata
Size: 2KB - Virtual size: 1KB