fdsafdsafsavv4[.]exe[.]bin

Sharing

Copy URL Twitter E-mail

General

Target

fdsafdsafsavv4.exe.bin
Size

613KB
MD5

1a34cc6d635da8c215ffbcdbbe48a594
SHA1

82805feb4c844ecb913c570a9eab8558821032dd
SHA256

ad27019612c3175a6ad5127dd57b7d6e13fd409edf7683f046e26f5890903ee6
SHA512

6261dace52413e3d86c3a61bbe07c225416e914f1a949792456aad24ec9bda2112d5f713380dfb2946513e07b1fb797255ee19ace2cb5025219a072a05090b26
SSDEEP

12288:yNUmrOE0dqz3W1BS4Qz6hAi0IJUr9fcs0viJks/:q/LzG1B9i20bcW2s/

Score

1^/10

Malware Config

Signatures

Files

fdsafdsafsavv4.exe.bin
.exe windows x86

9d5902469f2331ba3a3a2d6971c65386

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
CreateEventA
HeapAlloc
GetProcessHeap
HeapFree
TlsAlloc
GetLastError
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedExchangeAdd
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
CloseHandle
WaitForMultipleObjects
TerminateThread
QueueUserAPC
WaitForSingleObject
CreateEventW
SetEvent
SleepEx
PostQueuedCompletionStatus
CreateIoCompletionPort
SetWaitableTimer
GetQueuedCompletionStatus
InterlockedCompareExchange
SetLastError
VerSetConditionMask
VerifyVersionInfoW
CreateWaitableTimerW
Sleep
TlsGetValue
TlsSetValue
TlsFree
MultiByteToWideChar
CreateSemaphoreA
FormatMessageA
LocalFree
SystemTimeToFileTime
CreateWaitableTimerA
ResumeThread
ResetEvent
OpenEventA
SetEnvironmentVariableA
CreateFileW
FlushFileBuffers
WriteConsoleW
SetStdHandle
LoadLibraryW
WaitForMultipleObjectsEx
SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetOEMCP
IsValidCodePage
GetACP
HeapReAlloc
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
ReleaseSemaphore
DuplicateHandle
GetCurrentThreadId
WideCharToMultiByte
EncodePointer
DecodePointer
GetStringTypeW
CreateThread
ExitThread
GetProcAddress
LoadLibraryExW
GetCommandLineW
RaiseException
RtlUnwind
CreateTimerQueue
WaitForSingleObjectEx
SignalObjectAndWait
GetCurrentProcess
SwitchToThread
SetThreadPriority
GetThreadPriority
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetModuleHandleW
GetNumaHighestNodeNumber
GetProcessAffinityMask
SetThreadAffinityMask
RegisterWaitForSingleObject
UnregisterWait
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
GetTickCount
CreateSemaphoreW
IsProcessorFeaturePresent
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
IsDebuggerPresent
ExitProcess
GetModuleHandleExW
HeapSize
GetCurrentThread
GetTimeZoneInformation
GetStdHandle
GetFileType
GetModuleFileNameW
WriteFile
QueryPerformanceCounter
GetCurrentProcessId
GetEnvironmentStringsW
FreeEnvironmentStringsW
OutputDebugStringW
GetThreadTimes
FreeLibrary
FreeLibraryAndExitThread
GetModuleHandleA
GetVersionExW
VirtualAlloc
VirtualFree
VirtualProtect

ws2_32

getpeername
htons
ntohs
ntohl
WSAStringToAddressW
WSASendTo
WSARecvFrom
shutdown
getsockname
getsockopt
connect
bind
accept
htonl
freeaddrinfo
getaddrinfo
WSAGetLastError
setsockopt
WSASocketW
WSASend
WSARecv
listen
select
ioctlsocket
closesocket
__WSAFDIsSet
WSACleanup
WSAStartup
WSAIoctl
WSASetLastError

Sections

.text
Size: 461KB - Virtual size: 460KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d5902469f2331ba3a3a2d6971c65386

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ws2_32

Sections

.text Size: 461KB - Virtual size: 460KB

.rdata Size: 96KB - Virtual size: 96KB

.data Size: 24KB - Virtual size: 34KB

.tls Size: 512B - Virtual size: 2B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 29KB - Virtual size: 28KB

.text
Size: 461KB - Virtual size: 460KB

.rdata
Size: 96KB - Virtual size: 96KB

.data
Size: 24KB - Virtual size: 34KB

.tls
Size: 512B - Virtual size: 2B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 29KB - Virtual size: 28KB