7788[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7788.exe
Size

24KB
MD5

9f8e3c7e645be714ad1778e23dff406a
SHA1

538ddd402600ca53aa345252be77813aa148b054
SHA256

5858bdf1a8f918ebd32001d695876cadd892baa32651758b78d1082f19721751
SHA512

8b8f17516994ed891d6eea1d4bf35ba8dea13104260c7ae66267bcce007cf3a0d25332d068a1b052358c0ac3656f1cc1791000a85f2fd9cd7c8c962bd3a46bc4
SSDEEP

192:vhGra5OXF1Rj6zpOhnFvUSkbuINZrQX0n67+mZBdZDlZIKMIybecUKAd9mPqew8v:5OadOzoHJmlphybWWXVauJo

Score

1^/10

Malware Config

Signatures

Files

7788.exe
.exe windows x86

533d64189d09ea0939f934719c3357e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
LCMapStringA
LoadLibraryA
GetProcAddress
HeapReAlloc
GetOEMCP
GetACP
GetCPInfo
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
GetCommandLineA
GetVersion
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
LCMapStringW

ws2_32

recv
socket
gethostbyname
htons
connect
closesocket
WSAStartup
WSACleanup

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE