eafddbb8c054bc427840a59b209e8e805346cacf3ddbd19ab3e4047951389bb1

General

Target

eafddbb8c054bc427840a59b209e8e805346cacf3ddbd19ab3e4047951389bb1
Size

164KB
MD5

50e13c1a787ed06eb6f2a6ab325a265f
SHA1

3fa30ec2554574a10a040ba93f31b905be176f3a
SHA256

eafddbb8c054bc427840a59b209e8e805346cacf3ddbd19ab3e4047951389bb1
SHA512

73917aa832db5cefc688d8e043bd792dd0c2b7d0bef0d3ebca02ae56a86dd7eeb4e5ba9792e2d478e78e120b7706bea5bdbaed16ad6a94f7ee960d8053a594c1
SSDEEP

3072:VQ5eeM568wyz7qwKNMX7NrO+HnwCQ6+Zx2aSyDfZIvwo+:Vzws5KNacMDQ6Wgmfiy

Score

N/A

Malware Config

Signatures

Files

eafddbb8c054bc427840a59b209e8e805346cacf3ddbd19ab3e4047951389bb1
.exe windows x86

e504e885f2dd25b14ef57f618ee9a004

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExpandEnvironmentStringsA
GetModuleHandleA
FreeLibrary
GetVersionExA
GetProcAddress
LoadLibraryA
GetFileAttributesA
lstrcmpA
Sleep
GetLocaleInfoW
SetEndOfFile
GetOEMCP
GetACP
SetStdHandle
IsBadCodePtr
IsBadReadPtr
CreateFileA
WideCharToMultiByte
MultiByteToWideChar
HeapAlloc
RtlUnwind
RaiseException
HeapFree
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapReAlloc
TerminateProcess
GetCurrentProcess
LCMapStringA
LCMapStringW
GetCPInfo
CompareStringA
CompareStringW
GetLastError
ReadFile
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
WriteFile
SetFilePointer
FlushFileBuffers
CloseHandle
SetUnhandledExceptionFilter
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
SetEnvironmentVariableA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey
GetUserNameA

ws2_32

WSAStartup
htons
inet_addr
socket
connect
send
closesocket
WSACleanup

Sections

.text
Size: 128KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e504e885f2dd25b14ef57f618ee9a004

Headers

File Characteristics

Imports

kernel32

advapi32

ws2_32

Sections

.text Size: 128KB - Virtual size: 126KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 12KB - Virtual size: 33KB

.text
Size: 128KB - Virtual size: 126KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 12KB - Virtual size: 33KB