5e91521293e46d1ceabfb4882142130ea06f7e14aace40420cada761a2cd993f

Sharing

Copy URL

Twitter E-mail

General

Target

5e91521293e46d1ceabfb4882142130ea06f7e14aace40420cada761a2cd993f
Size

249KB
MD5

64fc89d25d1dd6d0fc3cc91de464d6a4
SHA1

404c7aec26a7ea74e3fce4bdb1a901f02fedf132
SHA256

5e91521293e46d1ceabfb4882142130ea06f7e14aace40420cada761a2cd993f
SHA512

0889f3917a90b5432f74f236015a5a4ce60e20773e3414a510a1a6e7d817d28c7f4fc43f8a7d180d071f5a22e0df91e7d4eb017ba0af110dee7647f3cd1eaa85
SSDEEP

6144:WHHFJVyEsMB3wevJ2yvegLyuH8qM5i+xBUgQXLZqW5:2ly0lxl3H8qCiiILF

Score

N/A

Malware Config

Signatures

Files

5e91521293e46d1ceabfb4882142130ea06f7e14aace40420cada761a2cd993f
.exe windows x86

3f936d2db662758de9f4d035b1dc7710

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fscanf
??_V@YAXPAX@Z
_mbsnicoll
_longjmpex
_utime
__set_app_type
_adj_fdiv_m16i
_fputwchar
vwprintf
wcsncpy
_getpid
__p__commode
_strnset
ungetwc
_cscanf
_chkesp
__unguarded_readlc_active
exit
_wstati64
_wexecvpe
__p__pctype
__getmainargs
_onexit
_CItanh
_mktime64

kernel32

GetExitCodeThread
GetEnvironmentVariableW
CreateJobObjectW
GetConsoleCP
DuplicateHandle
Process32Next
GetStringTypeExW
GetConsoleInputExeNameW
LoadLibraryW
InitializeCriticalSection
GetLastError
BuildCommDCBA
GetCurrentConsoleFont
lstrcmpiA
RemoveVectoredExceptionHandler
GetUserDefaultLCID
GetSystemTimeAsFileTime
CloseConsoleHandle
ExpandEnvironmentStringsW
GetCompressedFileSizeA
UpdateResourceA

rasman

RasPortListen
RasEnableIpSec
RasRpcConnectServer
RasSecurityDialogSend
RasCompressionSetInfo
RasGetDevConfig
RasPortEnumProtocols
RasBundleGetStatistics
RasReferenceRasman
RasGetDevConfigEx
RasPortSetFramingEx

resutils

ResUtilGetPropertiesToParameterBlock
ResUtilVerifyResourceService
ResUtilEnumProperties
ResUtilSetDwordValue
ResUtilGetMultiSzProperty
ResUtilResourcesEqual
ResUtilSetPropertyParameterBlock
ResUtilVerifyPropertyTable
ResUtilDupString
ResUtilSetResourceServiceEnvironment

catsrvut

RegDBRestore
??0CComPlusInterface@@QAE@ABV0@@Z
DllRegisterServer
ManagedRequestW
??4CComPlusObject@@QAEAAV0@ABV0@@Z
SysprepComplus2
SysprepComplus
??4CComPlusTypelib@@QAEAAV0@ABV0@@Z
?GetITypeLib@CComPlusTypelib@@QAEPAUITypeLib@@XZ
??0CComPlusMethod@@QAE@ABV0@@Z
??_7CComPlusObject@@6B@
??1CComPlusComponent@@UAE@XZ
??_7CComPlusMethod@@6B@
QueryUserDllW
COMPlusUninstallActionW
WinlogonHandlePendingInfOperations
??4CComPlusInterface@@QAEAAV0@ABV0@@Z

rtm

MgmGetNextMfeStats
RtmGetLessSpecificDestination
RtmGetExactMatchDestination
MgmDeRegisterMProtocol
RtmDeleteRouteList
RtmGetRegisteredEntities
RtmReleaseNextHopInfo
RtmGetChangedDests
RtmGetEnumRoutes
RtmDequeueRouteChangeMessage
RtmMarkDestForChangeNotification
MgmGroupEnumerationEnd
DeleteFromTable
RtmRegisterForChangeNotification
RtmReleaseChangedDests
RtmCreateEnumerationHandle
MgmGroupEnumerationStart
RtmGetDestInfo
RtmGetNextRoute
RtmGetChangeStatus
MgmGroupEnumerationGetNext
RtmInvokeMethod
RtmDeleteNextHop
RtmDeleteRoute
RtmBlockMethods
RtmGetEntityMethods
MgmGetFirstMfeStats
RtmGetOpaqueInformationPointer

wshrm

WSHAddressToString
WSHGetWSAProtocolInfo
WSHSetSocketInformation
WSHEnumProtocols
WSHGetSocketInformation
WSHIoctl
WSHGetBroadcastSockaddr
WSHGetWildcardSockaddr
WSHGetProviderGuid
WSHNotify
WSHOpenSocket
WSHJoinLeaf
WSHStringToAddress
WSHOpenSocket2
WSHGetSockaddrType
WSHGetWinsockMapping

user32

EndDialog

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f936d2db662758de9f4d035b1dc7710

Headers

File Characteristics

Imports

msvcrt

kernel32

rasman

resutils

catsrvut

rtm

wshrm

user32

Sections

.text Size: 58KB - Virtual size: 58KB

.rdata Size: 131KB - Virtual size: 131KB

.data Size: 51KB - Virtual size: 50KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 58KB - Virtual size: 58KB

.rdata
Size: 131KB - Virtual size: 131KB

.data
Size: 51KB - Virtual size: 50KB

.rsrc
Size: 6KB - Virtual size: 6KB