2d282790fc7ae1e1d7f329d87326200f0494a4cce5f34cdda6a0e2c997d40b1b

Sharing

Copy URL Twitter E-mail

General

Target

2d282790fc7ae1e1d7f329d87326200f0494a4cce5f34cdda6a0e2c997d40b1b
Size

44KB
MD5

e8a4bb54db278c8ee18cfa977c1c8ae7
SHA1

bb478fd0cca210cd3f7213a779e8ec7c102d19cd
SHA256

2d282790fc7ae1e1d7f329d87326200f0494a4cce5f34cdda6a0e2c997d40b1b
SHA512

744c2029eb65751ef4f649f35831072c85936a5209341074fbbaa12cde86f7e27a4d467f493434a3595f652936213495c31a93b5b854f132a791937ee0214cc9
SSDEEP

768:XkBUj2zzrbm7F/J8PRlOf3kwtJDaVsi5I/aIksFyrrnbk67phg0NL:0bHr6wrOf3LaVy/1zynbkBO

Score

N/A

Malware Config

Signatures

Files

2d282790fc7ae1e1d7f329d87326200f0494a4cce5f34cdda6a0e2c997d40b1b
.dll windows x86

d7ddf84e9fc79c012cb31258c05c5a60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStructA
EraseTape
GetLastError
GetPrivateProfileSectionNamesW
CompareFileTime
CallNamedPipeA
GetModuleHandleA
CreateJobObjectA
GetLongPathNameW
OpenMutexA
GetTempFileNameA
GetNumberFormatA
HeapFree
CreateDirectoryExW
DosPathToSessionPathW
LockFile
GetEnvironmentVariableW
TlsFree
FindNextFileW

tapi32

MMCInitialize
phoneShutdown
linePrepareAddToConferenceW
tapiRequestMakeCallA
lineConfigDialog
lineGetAgentSessionInfo
lineCreateAgentSessionW
phoneSetButtonInfo
lineGetGroupListA

msvcrt

_wfindnext
memcpy
_adj_fprem1
_sys_nerr
_endthread
_ultoa
wcstol
_wrename
_stati64
_utime64
wcsncat
_wcreat
vswprintf
_fileno
__p__fileinfo
__p__timezone

winmm

mciDriverYield
mixerSetControlDetails
midiOutGetDevCapsA
waveOutRestart
mciGetDeviceIDW
waveOutGetPitch
mixerGetLineInfoW

opengl32

glPolygonMode
glTexCoord4dv
glLightfv
glRenderMode
glVertex2dv
glGetPixelMapusv
glInitNames
glEnableClientState
glDeleteTextures
glTexCoord1dv
glColor4iv
glTexCoord1iv
glVertex4f
glTranslated
glBlendFunc
glTexCoord1sv
wglMakeCurrent
glPixelMapuiv
glVertexPointer

Exports

Exports

FzvipAlinbcHewq
UxlgfIzhvbpoPkeqnf
JgOoms
Hntl
MpbjjYqjj
IrliaEac
PiTolhttfQlxtyBbcoJam
ZhhgqhOnkrostOfibmYcr
LtXkopsagDmrtbqaUrwbhUeu
VpmcQwrrprLvskks
LsjxlrsEdvxDn
WrteazYbdauikUbaa
UvyGwcmszMxblbqDeh

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 30B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7ddf84e9fc79c012cb31258c05c5a60

Headers

File Characteristics

Imports

kernel32

tapi32

msvcrt

winmm

opengl32

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 33KB - Virtual size: 32KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 30B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 33KB - Virtual size: 32KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 30B