82c12b71de1b1315e7406deaec2331bb10b41a036a00518f80c02ede717b7e2a

General

Target

82c12b71de1b1315e7406deaec2331bb10b41a036a00518f80c02ede717b7e2a
Size

493KB
MD5

5a8731bdcd0c95fc8377af04c4fee1a0
SHA1

e710ffe7d9f6e8ce0344b474fa390baa6844f36b
SHA256

82c12b71de1b1315e7406deaec2331bb10b41a036a00518f80c02ede717b7e2a
SHA512

6ace7977b230b3fc00a1c0daa1a8b7901c4ba4178a85cd0be4b2c841f8c7c4f669cc36b486713fadbcd0b1ae651cd47808713b6d590dcf298223368c34c1f021
SSDEEP

12288:HOOfQPEpWU0nvXxcGdtO76knPTYu/xiU1CQXPrgUPPndG2++:u5HvX2GdtOtn7Yu/1/n82

Score

N/A

Malware Config

Signatures

Files

82c12b71de1b1315e7406deaec2331bb10b41a036a00518f80c02ede717b7e2a
.exe windows x86

afd8999dbdc4bcd3cd44af0d0397a912

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetCurrentProcessId
GetModuleFileNameW
FreeLibrary
GetWindowsDirectoryW
LoadLibraryA
GetCPInfo
LocalFree
LocalAlloc
MultiByteToWideChar
ExpandEnvironmentStringsW
GetProcAddress
GetTickCount
WideCharToMultiByte
RemoveDirectoryW
GetLastError

msvcrt

_adjust_fdiv
_except_handler3
_stricmp
__winitenv
sprintf
__wgetmainargs
_c_exit
printf
_XcptFilter
_controlfp
_wcsicmp
__setusermatherr
_initterm
strstr
_cexit
wcscpy
__p__fmode
_exit

rasapi32

RasGetAutodialAddressW
RasGetAutodialParamW
RasEnumAutodialAddressesW

rasdlg

RasDialDlgW
RasPhonebookDlgW
RasAutodialQueryDlgW

advapi32

RegOpenKeyExW
RegQueryValueExA
RegCloseKey

shlwapi

StrCatW

Sections

.safdwer
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 267KB - Virtual size: 266KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 300B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

afd8999dbdc4bcd3cd44af0d0397a912

Headers

File Characteristics

Imports

kernel32

msvcrt

rasapi32

rasdlg

advapi32

shlwapi

Sections

.safdwer Size: 57KB - Virtual size: 57KB

.rdata Size: 59KB - Virtual size: 58KB

.text Size: 267KB - Virtual size: 266KB

.data Size: 58KB - Virtual size: 57KB

.rsrc Size: 49KB - Virtual size: 49KB

.reloc Size: 512B - Virtual size: 300B

.safdwer
Size: 57KB - Virtual size: 57KB

.rdata
Size: 59KB - Virtual size: 58KB

.text
Size: 267KB - Virtual size: 266KB

.data
Size: 58KB - Virtual size: 57KB

.rsrc
Size: 49KB - Virtual size: 49KB

.reloc
Size: 512B - Virtual size: 300B