09dd7269f51e75310522f77c87c3bc95

General

Target

09dd7269f51e75310522f77c87c3bc95
Size

18KB
MD5

09dd7269f51e75310522f77c87c3bc95
SHA1

6695e889123c937b61e8ab09a5ed87199e28a823
SHA256

5aff0bba8e55320100740d80c13cffbc069eed8d63632b0d9929a838a4fae167
SHA512

7542bb68c2964d2cef7cdb2ae17f8f6989d00c90bfe80fc12f38893129b0dd7ca170d81a40142ba700ce402d4772c40e33c42d5f38d3b1bd44f090cf8c142da1
SSDEEP

384:DEn6xX/uJ6fP2/q+al3Y/XSUvsSW7bjjNy1:DE+T+a+/XSew7njq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09dd7269f51e75310522f77c87c3bc95

Files

09dd7269f51e75310522f77c87c3bc95
.exe windows:4 windows x86 arch:x86

feb9492f5c757310491e9c485cac5903

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

closesocket
connect
send
socket
WSAStartup
WSASocketA
setsockopt
htons
htonl
sendto
inet_addr
gethostbyname

kernel32

LocalFree
MapViewOfFile
CloseHandle
UnmapViewOfFile
GetCurrentProcess
GetVersionExA
ExitProcess
CreateProcessA
CopyFileA
FreeLibrary
GetModuleFileNameA
GetSystemDirectoryA
Process32Next
Process32First
CreateToolhelp32Snapshot
GetLastError
CreateMutexA
ExpandEnvironmentStringsA
WriteFile
CreateFileA
GetTempPathA
CreateThread
Sleep
SetLocalTime
SetFileAttributesA
GetCurrentProcessId
GetTickCount
HeapAlloc
GetProcessHeap
LoadLibraryA
GetProcAddress
GetModuleHandleA
DeleteFileA
GetStartupInfoA

user32

wsprintfA
GetWindow
GetForegroundWindow
PostMessageA
GetClassNameA
SetTimer
DefWindowProcA
LoadIconA
LoadCursorA
RegisterClassA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
DispatchMessageA
TranslateMessage

advapi32

SetSecurityInfo
OpenSCManagerA
CreateServiceA
OpenServiceA
CloseServiceHandle
StartServiceA
RegisterServiceCtrlHandlerA
SetServiceStatus
StartServiceCtrlDispatcherA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
SetEntriesInAclA
GetSecurityInfo

msvcp60

??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ

msvcrt

sprintf
strncmp
rand
printf
_stricmp
strstr
_onexit
_exit
exit
_XcptFilter
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__dllonexit

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

feb9492f5c757310491e9c485cac5903

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

advapi32

msvcp60

msvcrt

Sections

.text Size: 17KB - Virtual size: 17KB

.text
Size: 17KB - Virtual size: 17KB