945fcd0aae41b3701e5d882a5a90e3c4e3ca5cfb8969a00adbf5495671f019df

General

Target

945fcd0aae41b3701e5d882a5a90e3c4e3ca5cfb8969a00adbf5495671f019df
Size

92KB
MD5

393960c2c598a83ef832de5714a17040
SHA1

9feede770e26e04c9a855594be119478d80770c3
SHA256

945fcd0aae41b3701e5d882a5a90e3c4e3ca5cfb8969a00adbf5495671f019df
SHA512

4d9f050308d3bd11ecfc48f9c213ac5b17d24511a641b9e9e37fed2397ed21ddce11955a77092fbd3c5cfdf3c55987bdd86a4361398c134a24640d0b36e99999
SSDEEP

1536:mFNpf0zlG05TKliZ3lEzLN10CoW5Igq8dClT5gkICL0UPlv:CSJ5uUcRulWNElgkIhUPlv

Score

N/A

Malware Config

Signatures

Files

945fcd0aae41b3701e5d882a5a90e3c4e3ca5cfb8969a00adbf5495671f019df
.exe windows x86

f62c1807583208882291eb569fc2c7c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
lstrlenA
ExitProcess
Sleep
lstrcatA
GetTempPathA
lstrcmpiA
CloseHandle
WriteFile
ReadFile
SetFilePointer
CreateFileA
LoadLibraryA
GetLastError
GetProcAddress
GetModuleHandleA
GetVolumeInformationA
GetSystemDirectoryA
GetModuleFileNameA
GetCurrentProcess
GetTickCount
SetPriorityClass
CreateThread
CreateMutexA
OpenMutexA
DeleteFileA
HeapCreate
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapAlloc
HeapFree
DeleteCriticalSection
GetFileSize
GetFileAttributesA
SetFileTime
GetFileTime
CopyFileA
SetFileAttributesA
GetVersionExA
FlushFileBuffers
SetEnvironmentVariableA
CompareStringW
CompareStringA
HeapSize
GetCurrentProcessId
GetCurrentThreadId
GetTimeZoneInformation
QueryPerformanceCounter
SetStdHandle
InterlockedExchange
RtlUnwind
GetLocaleInfoA
GetCPInfo
GetOEMCP
GetSystemTimeAsFileTime
GetStartupInfoA
GetCommandLineA
TerminateProcess
HeapDestroy
VirtualFree
VirtualAlloc
HeapReAlloc
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
VirtualProtect
GetSystemInfo
VirtualQuery
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
GetStringTypeA
GetStringTypeW
GetACP

user32

wsprintfA

ws2_32

WSAAccept
shutdown
getpeername
WSASocketA
WSAGetLastError
htonl
ntohs
getsockname
select
ntohl
htons
gethostbyname

Sections

.text
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f62c1807583208882291eb569fc2c7c0

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Sections

.text Size: 68KB - Virtual size: 64KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 13KB

.text
Size: 68KB - Virtual size: 64KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 13KB