14671f32672afdf5d78a1c7d67aef21f2a73c77a08561882a66aef166302b5d1

General

Target

14671f32672afdf5d78a1c7d67aef21f2a73c77a08561882a66aef166302b5d1
Size

10KB
MD5

11d31f5f56e24183b89c93b021e4a7a1
SHA1

297039dde03982e0b7cf8a9c6bae45923a6c29ef
SHA256

14671f32672afdf5d78a1c7d67aef21f2a73c77a08561882a66aef166302b5d1
SHA512

8f3082db687faca7f07f233e5d838676231eb1ba4b4cfcbfb2794d3a97d0b67f968fce293d5f1ddd745af0b46c54c3afd01c460ca18dec3f10c30dbc999a985a
SSDEEP

192:Z0HCGRXLPBOQ7IAG9N/D7QDkkVx1tMqPzAfnvSE7o:6neACN/wx1tT7AfnvSE7o

Score

N/A

Malware Config

Signatures

Files

14671f32672afdf5d78a1c7d67aef21f2a73c77a08561882a66aef166302b5d1
.exe windows x86

c4546d95fb39c466bfe64def3552e998

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
CreateEventA
CloseHandle
HeapFree
HeapAlloc
GetProcessHeap
GetModuleFileNameA
ReadFile
WideCharToMultiByte
LoadLibraryA
GetProcAddress
FreeLibrary
FormatMessageA
LocalFree
SetEvent
GetOverlappedResult
WaitForSingleObject
ResetEvent
WriteFile
GetLastError
Sleep
GetSystemInfo
WaitForSingleObjectEx
WriteFileEx
SetLastError

crtdll

__GetMainArgs
_amsg_exit
exit
fflush
??3@YAXPAX@Z
strtok
fputs
_iob
printf
fprintf
??2@YAPAXI@Z
puts
strtoul
wcstoul

wsock32

htons
getservbyname
ioctlsocket
gethostbyname
socket
connect
WSAGetLastError
closesocket
WSAStartup
WSASetLastError

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

user32

CharToOemA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 686B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4546d95fb39c466bfe64def3552e998

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

crtdll

wsock32

version

user32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 32KB

.rsrc Size: 1024B - Virtual size: 728B

.reloc Size: 1024B - Virtual size: 686B

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 32KB

.rsrc
Size: 1024B - Virtual size: 728B

.reloc
Size: 1024B - Virtual size: 686B