systembc | 926fcb9483faa39dd93c8442e43af9285844a1fbbe493f3e4731bbbaecffb732[.]zip

General

Target

926fcb9483faa39dd93c8442e43af9285844a1fbbe493f3e4731bbbaecffb732.zip
Size

3KB
MD5

8ced79bc1d82e93a764da1903c3cde0c
SHA1

996a9c294e584c20db5cf41b3aa9cd7d8cc426f8
SHA256

28e85f358edc05e8b745aa1e0253b3baed0d4083a2bbe92219e1b2c8ed25bc9a
SHA512

27e9348822728991b2dd98a94b0d5af151d67a6380c3241c9fd118ab5fac73318038c2d0edec691986164a6f100caa9eafe211e694be594b7e9246af23019a54

Score

10^/10

systembc

Family

systembc

C2

93.115.25.41:443

192.168.1.28:443

926fcb9483faa39dd93c8442e43af9285844a1fbbe493f3e4731bbbaecffb732.zip
.zip

Password: S1BinaryVault
C/ProgramData/Sentinel/AFUCache/926fcb9483faa39dd93c8442e43af9285844a1fbbe493f3e4731bbbaecffb732
.dll windows x86

Password: S1BinaryVault

955e18b51696d87de29a0e236ef97943

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
CreateThread
ExitThread
GetVolumeInformationA
SetEvent
Sleep
VirtualAlloc
VirtualFree
WaitForSingleObject

wsock32

WSAStartup
closesocket
connect
htons
ioctlsocket
recv
select
send
setsockopt
shutdown
socket

ws2_32

freeaddrinfo
WSAIoctl
getaddrinfo

secur32

GetUserNameExA

Exports

Exports

rundll

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 789B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 180B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 202B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
manifest.json