929b57f8058f4ac70658dd54d89b7e8338d488adc60546b5cba6337cd23034b6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

929b57f8058f4ac70658dd54d89b7e8338d488adc60546b5cba6337cd23034b6
Size

28KB
MD5

1c25f3c1927309f08832202d356dc20d
SHA1

b8eb1910d9a5de7721695fb6dd616765454d6034
SHA256

929b57f8058f4ac70658dd54d89b7e8338d488adc60546b5cba6337cd23034b6
SHA512

d0c662345219659912e60aff64d6f04a3cb992b91450e9695db834a4994c6e168a8ebff1b9a37f0066f349ac863240122ca9cbe444e3cef6b2d922bd8396b081
SSDEEP

384:cLTVd6gmlAmpoASVe/ISQQ5yymTW/trDoOzM7z:cL6MXMnZyLctrDoO

Score

N/A

Malware Config

Signatures

Files

929b57f8058f4ac70658dd54d89b7e8338d488adc60546b5cba6337cd23034b6
.exe windows x86

c94efb0c6afcb65b4613769ff3d713f6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetTickCount
lstrlenA
GlobalFree
CloseHandle
GetStartupInfoA
ExitProcess
GetLastError
CreateMutexA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
WriteFile
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
HeapAlloc
GetModuleHandleA
GetCommandLineA
GetVersion
HeapFree
HeapReAlloc
TerminateProcess
GetCurrentProcess
HeapSize
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetStringTypeW

ws2_32

WSACleanup
recv
send
socket
inet_addr
gethostbyname
htons
connect
setsockopt
closesocket
shutdown
WSAStartup

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE