c74c0ee0badb8e660b6e32973317e6a451ef2abf0935695ac17e35990ef3d270

General

Target

c74c0ee0badb8e660b6e32973317e6a451ef2abf0935695ac17e35990ef3d270
Size

529KB
MD5

61bd410204bc5e2d801cf9b038407200
SHA1

d18e60d8612fc6b6b92c99df5b549dc23e9642d8
SHA256

c74c0ee0badb8e660b6e32973317e6a451ef2abf0935695ac17e35990ef3d270
SHA512

a606d5a09b61bf4fef0a6484659553526134a4514914cad92aff1c10dfc7bcb461bdc62df190ecdc9d8a45cda7238a5bfb9027d9fe972f0f9714ca2c536c559d
SSDEEP

12288:2DpcYBva7mAgi4plm0nA1dfXKki9MCwkNdnFfz0DM:k6YCbgPplPUdPKkUgkN1FYDM

Score

N/A

Malware Config

Signatures

Files

c74c0ee0badb8e660b6e32973317e6a451ef2abf0935695ac17e35990ef3d270
.exe windows x86

367c5cdbf8af47c143412e9e3810ddf9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

DragQueryFileW
SHSetLocalizedName
SHGetSpecialFolderPathA

kernel32

CopyFileExW
EnumResourceTypesA
GetDiskFreeSpaceW
LocalFlags
GetPrivateProfileSectionW
ConvertThreadToFiber
ConsoleMenuControl
VirtualAlloc
CreateConsoleScreenBuffer
ReadConsoleInputExW
SetCurrentDirectoryA

tapi32

lineBlindTransferA
lineOpenW
lineGetAddressCapsA
lineGetDevConfigA
lineGetCallStatus
lineMakeCall
lineGetID

advapi32

AddAccessAllowedObjectAce
GetFileSecurityA
CryptSetKeyParam
SetSecurityInfo
CryptSetHashParam
GetCurrentHwProfileW
QueryServiceStatus
InitializeSecurityDescriptor
GetKernelObjectSecurity

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 257KB - Virtual size: 367KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 167KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 50KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

367c5cdbf8af47c143412e9e3810ddf9

Headers

DLL Characteristics

File Characteristics

Imports

shell32

kernel32

tapi32

advapi32

Sections

.text Size: 15KB - Virtual size: 14KB

.data Size: 257KB - Virtual size: 367KB

.data Size: 167KB - Virtual size: 288KB

.rdata Size: 50KB - Virtual size: 92KB

.rsrc Size: 39KB - Virtual size: 38KB

.text
Size: 15KB - Virtual size: 14KB

.data
Size: 257KB - Virtual size: 367KB

.data
Size: 167KB - Virtual size: 288KB

.rdata
Size: 50KB - Virtual size: 92KB

.rsrc
Size: 39KB - Virtual size: 38KB