8062ec8889a15c49db332bc5cdbc2ed2

Sharing

Copy URL Twitter E-mail

General

Target

8062ec8889a15c49db332bc5cdbc2ed2
Size

18KB
MD5

8062ec8889a15c49db332bc5cdbc2ed2
SHA1

aa1c2db4c6b3acc9c51f691d96b5fd70d6e21e72
SHA256

e89b62e47c95565fb456b6445356254dac596877ad73cf45a3646e1dedbd4d50
SHA512

32b3e797fa5fb3b09e9148f7c653c31d621342017ac828ce1070e00a36a43812688a287e95b00761c338874dfd729737235d6d9026141254f95cbe32ab69ce04
SSDEEP

384:mgZnq0ScnLRg8OpS6JpJgLa0Mpa2WRYK2A1ESWyBWW:mJxK1whgLa1w2eYmW+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8062ec8889a15c49db332bc5cdbc2ed2

Files

8062ec8889a15c49db332bc5cdbc2ed2
.dll windows:4 windows x86 arch:x86

112f11fb1795766308138f03922fa99b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord823
ord825

msvcrt

??1type_info@@UAE@XZ
free
_initterm
malloc
_adjust_fdiv
__CxxFrameHandler
memset
strncpy
_onexit
strcpy
strstr
_strupr
_beginthread
sprintf
wcslen
strcmp
memcpy
strcat
__dllonexit
_CxxThrowException
??0exception@@QAE@ABQBD@Z
??1exception@@UAE@XZ
strlen
??0exception@@QAE@ABV0@@Z

kernel32

OutputDebugStringA
DisableThreadLibraryCalls
GetLastError
WideCharToMultiByte
LocalFree
InterlockedDecrement
Sleep

shell32

StrStrIA

ole32

CoInitialize
CoCreateInstance

oleaut32

SysAllocString
VariantClear
SysStringLen
SysAllocStringLen
SysFreeString

msvcp60

??0Init@ios_base@std@@QAE@XZ
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??1Init@ios_base@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A

ws2_32

htons
inet_addr
gethostbyname
send
closesocket
gethostname
WSAStartup
connect
socket

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

112f11fb1795766308138f03922fa99b

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

shell32

ole32

oleaut32

msvcp60

ws2_32

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 864B

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 864B