Dropped Buffers

Name 32e00ebd5a3abf8d43e74476509828ca26861658
Size 331.0KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 3c3f51b7ec92625af79a9644c47703bd
SHA1 32e00ebd5a3abf8d43e74476509828ca26861658
SHA256 98e6f20da58682b12479178be97dc8c90182f139c6dfc1c86e4dd3b914a7f804
CRC32 44E7D229
ssdeep None
Yara
  • ThreadControl__Context - (no description)
  • Check_OutputDebugStringA_iat - (no description)
  • anti_dbg - Checks if being debugged
  • inject_thread - Code injection with CreateRemoteThread in a remote process
  • network_udp_sock - Communications over UDP network
  • network_tcp_listen - Listen for incoming communication
  • network_dyndns - Communications dyndns network
  • network_tcp_socket - Communications over RAW socket
  • network_dns - Communications use DNS
  • keylogger - Run a keylogger
VirusTotal Search for analysis
Name 248337a19d204ec3187f83e83df2896aa80b2528
Size 376.0KB
Type PE32 executable (GUI) Intel 80386, for MS Windows
MD5 3a990b33bc79df371f67223d09e1782c
SHA1 248337a19d204ec3187f83e83df2896aa80b2528
SHA256 b57cfbc80ff52d89335ee2f941f1487f61edcaeb9bfcab8a365880c9485e97df
CRC32 10EA782D
ssdeep None
Yara
  • ThreadControl__Context - (no description)
  • anti_dbg - Checks if being debugged
  • inject_thread - Code injection with CreateRemoteThread in a remote process
  • network_udp_sock - Communications over UDP network
  • network_tcp_listen - Listen for incoming communication
  • network_dyndns - Communications dyndns network
  • network_tcp_socket - Communications over RAW socket
  • network_dns - Communications use DNS
  • keylogger - Run a keylogger
  • win_mutex - Create or check mutex
VirusTotal Search for analysis
Cuckoo

We're processing your submission... This could take a few seconds.