be230f76e19c9e8e92c9f535c994757baea17ff86c071d4b916c3040a6d44280

General

Target

be230f76e19c9e8e92c9f535c994757baea17ff86c071d4b916c3040a6d44280
Size

72KB
MD5

56a7c1149e299a7ae4fe00dde1b96fda
SHA1

bbf3887a37f8435d86fb18d8c4f0421b7caf78e4
SHA256

be230f76e19c9e8e92c9f535c994757baea17ff86c071d4b916c3040a6d44280
SHA512

25fdc7d8e0a6b819ab6a54c8b44e9e1810903d15f4e8558c85af248c4e261fd8f7bbfa910d0fcaaa9bbb23fc428ead5cf509827ab058ae7f4de3e48b0347feb8
SSDEEP

768:Sl7vngoxLpIanoOQtDdhlNKiPyBeCJKoelVKR16E+AOT5OSiB9xc5l1mRCr6oF5U:Sl7vgoDIaohqBeCk+k/rmRXoF

Score

N/A

Malware Config

Signatures

Files

be230f76e19c9e8e92c9f535c994757baea17ff86c071d4b916c3040a6d44280
.exe windows x86

1619278b9b01cf79b4bf357db89873a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
WaitForSingleObjectEx
Sleep
CloseHandle
WaitForMultipleObjectsEx
CreateThread
GetLastError
CreateMutexA
WideCharToMultiByte
CompareStringW
CompareStringA
SetEnvironmentVariableA
ReadFile
SetStdHandle
FlushFileBuffers
LCMapStringA
LoadLibraryA
LCMapStringW
GetACP
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapFree
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
ReleaseMutex
VirtualFree
VirtualAlloc
HeapReAlloc
GetCPInfo
GetOEMCP
GetProcAddress
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
WriteFile
SetFilePointer

ws2_32

select
WSAStartup
socket
__WSAFDIsSet
inet_ntoa
connect
htons
inet_addr
recv
closesocket
send

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1619278b9b01cf79b4bf357db89873a9

Headers

File Characteristics

Imports

kernel32

ws2_32

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 16KB - Virtual size: 30KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 16KB - Virtual size: 30KB