92ceab3b2a446eeb99a57cca7f56138d605a444547bcfa705914109a206313e5

General

Target

92ceab3b2a446eeb99a57cca7f56138d605a444547bcfa705914109a206313e5
Size

852KB
MD5

a356670f2ea68e5e5cc2a57c83185ce4
SHA1

14da4eaa44795f646e33927c66682114d36c3d45
SHA256

92ceab3b2a446eeb99a57cca7f56138d605a444547bcfa705914109a206313e5
SHA512

0319796f46739fc579b3c95f0cd971db7e7aefeb80230f7fbef6ed637ab1a94010f6a99ff910ab9482bb3fe2d2c2bcea17530dab64d63796f062554fb49c0a3f
SSDEEP

768:9KHyEDN/GSN6Y0kccFQWpeUAEKrywT6MpPpe0LS5yQo98TzD:QHTDXFleJ1ryIA0KokzD

Score

N/A

Malware Config

Signatures

Files

92ceab3b2a446eeb99a57cca7f56138d605a444547bcfa705914109a206313e5
.exe windows x86

6a5dd6bdd074d273e38162d3708b85f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetStringTypeW
VirtualAlloc
GetStringTypeA
VirtualFree
HeapCreate
WriteFile
GetFileType
GetStdHandle
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
SetHandleCount
FreeEnvironmentStringsW
FreeEnvironmentStringsA
WideCharToMultiByte
UnhandledExceptionFilter
HeapSize
GetModuleFileNameA
TerminateProcess
HeapAlloc
GetCurrentProcess
CloseHandle
FlushFileBuffers
LCMapStringW
LCMapStringA
SetStdHandle
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
GetPrivateProfileIntA
RtlUnwind
MultiByteToWideChar
SetFilePointer
GetLastError
SetUnhandledExceptionFilter
IsBadWritePtr
RaiseException
HeapReAlloc
ExitProcess
GetVersion
HeapFree

user32

GetMessageA
DispatchMessageA
CheckRadioButton
PostMessageA
EndDialog
GetWindowTextA
SetFocus
DialogBoxParamA
SetWindowTextA
GetWindowLongA
EnableWindow
PostQuitMessage
SendMessageA
DefWindowProcA
GetDlgItem
RegisterClassA
LoadIconA
LoadCursorA
UpdateWindow
CreateDialogParamA
ShowWindow
TranslateMessage

ws2_32

WSAStartup
recv
gethostname
gethostbyname
inet_ntoa
accept
setsockopt
listen
send
closesocket
WSACleanup
socket
htonl
bind
htons
inet_addr
connect
WSAGetLastError
WSAAsyncSelect

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 804KB - Virtual size: 820KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6a5dd6bdd074d273e38162d3708b85f7

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 134KB

.rsrc Size: 804KB - Virtual size: 820KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 134KB

.rsrc
Size: 804KB - Virtual size: 820KB