x86_64-pc-windows-msvc-simple-http-server[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

x86_64-pc-windows-msvc-simple-http-server.exe
Size

2.0MB
MD5

de9a54cf3b358ebca9e37bbdeaf93e94
SHA1

08d1afe187970ccf94bb480bb4e048c9ba55782c
SHA256

f50dbfc99334cfe5441a61309e4d0acc22860e0743b3f2d1c6d1516a94ca0d69
SHA512

612db22a91416b96f58ac3377e85a8498c0e2138569bd6a2efb45c9e8d3520a8997f788562c8beafbe951092e4422ba7bc4159405e2dd43a69662513f0383954
SSDEEP

24576:dct39bVPHWXIg/6Y7YZWRbgJ3XHNEF8afu2NTdTilrv0l0h3emruHzqUd1+Cezbb:ytECY7jsJ3XN56TdUL07mrEznd16mJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
x86_64-pc-windows-msvc-simple-http-server.exe

Files

x86_64-pc-windows-msvc-simple-http-server.exe
.exe windows:6 windows x64 arch:x64

0652bd7ffbc496faff5bc047fbb9dbc0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

HeapSize
SetFileAttributesW
SetFileInformationByHandle
SetLastError
GetFinalPathNameByHandleW
GetLastError
GetConsoleOutputCP
QueryPerformanceCounter
GetStdHandle
GetConsoleMode
GetFileInformationByHandleEx
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
GetTimeZoneInformation
TzSpecificLocalTimeToSystemTime
GetSystemInfo
GetSystemTimeAsFileTime
QueryPerformanceFrequency
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
SetConsoleMode
LCMapStringW
InitializeCriticalSection
CompareStringW
LeaveCriticalSection
FreeEnvironmentStringsW
ReleaseMutex
FindClose
ReleaseSRWLockShared
AddVectoredExceptionHandler
SetThreadStackGuarantee
SwitchToThread
GetCurrentProcess
GetCurrentThread
RtlCaptureContext
GetProcAddress
RtlLookupFunctionEntry
GetCurrentDirectoryW
GetEnvironmentStringsW
GetEnvironmentVariableW
SetEnvironmentVariableW
ReleaseSRWLockExclusive
GetTempPathW
GetCommandLineW
SetFilePointerEx
WriteFile
FlushFileBuffers
ReadFile
EnterCriticalSection
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
AcquireSRWLockExclusive
GetStringTypeW
GetFileType
GetCurrentProcessId
SetStdHandle
WideCharToMultiByte
SetHandleInformation
WaitForSingleObject
TerminateProcess
TryEnterCriticalSection
HeapAlloc
GetProcessHeap
HeapFree
TlsAlloc
HeapReAlloc
AcquireSRWLockShared
WaitForSingleObjectEx
LoadLibraryA
CreateMutexA
FindNextFileW
CreateFileW
GetFileInformationByHandle
DeviceIoControl
CreateDirectoryW
FindFirstFileW
DeleteCriticalSection
MultiByteToWideChar
GetCPInfo
GetOEMCP
GetModuleHandleW
FormatMessageW
GetModuleFileNameW
ExitProcess
GetFullPathNameW
CreateThread
TlsGetValue
TlsSetValue
GetModuleHandleA
WriteConsoleW
ReadConsoleW
GetACP
IsValidCodePage
FindFirstFileExW
GetCommandLineA
GetModuleHandleExW
LoadLibraryExW
CloseHandle
FreeLibrary
GetCurrentThreadId
InitializeSListHead
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
RtlUnwindEx
RtlPcToFileHeader
RaiseException
EncodePointer
InitializeCriticalSectionAndSpinCount
TlsFree

ws2_32

bind
getsockname
getaddrinfo
WSASocketW
WSADuplicateSocketW
getpeername
listen
send
recv
setsockopt
WSAGetLastError
shutdown
freeaddrinfo
WSACleanup
WSAStartup
closesocket
accept

shell32

ShellExecuteW

bcrypt

BCryptGenRandom

advapi32

SystemFunction036

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 711KB - Virtual size: 711KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0652bd7ffbc496faff5bc047fbb9dbc0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ws2_32

shell32

bcrypt

advapi32

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 711KB - Virtual size: 711KB

.data Size: 3KB - Virtual size: 8KB

.pdata Size: 56KB - Virtual size: 56KB

_RDATA Size: 512B - Virtual size: 348B

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 711KB - Virtual size: 711KB

.data
Size: 3KB - Virtual size: 8KB

.pdata
Size: 56KB - Virtual size: 56KB

_RDATA
Size: 512B - Virtual size: 348B

.reloc
Size: 19KB - Virtual size: 18KB