9a3d05b4bb293b086124092f59f1243ea996d28cc22a93366185ce188355e000

Sharing

Copy URL Twitter E-mail

General

Target

9a3d05b4bb293b086124092f59f1243ea996d28cc22a93366185ce188355e000
Size

154KB
MD5

79743ed9b955ebcb9a14fd6bf6d7bba6
SHA1

27b6b9aa8a54ff7db4188664dba651d938cfb067
SHA256

9a3d05b4bb293b086124092f59f1243ea996d28cc22a93366185ce188355e000
SHA512

e611f4b7d03e8b962a31e08d0e83a18f469d371035cf3b49e9717ffbd85d545dd9baad112dac957f8f7be772ea2741cd6d259f1870c87f8ad235701ce2fbd4ec
SSDEEP

1536:tr7on63LUtmeCVlkNmnNJfuhMpLFiEhO5EvBWcO50KsTngZpJDF:trEwWTCVCKNtuh+hiEhO5NcOwTebDF

Score

N/A

Malware Config

Signatures

Files

9a3d05b4bb293b086124092f59f1243ea996d28cc22a93366185ce188355e000
.exe windows x86

4db56a9e5ce4caf46d6bb734422eb821

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

iphlpapi

GetUniDirectionalAdapterInfo
_PfAddFiltersToInterface@24
SetTcpEntry
GetIpStatistics
InternalGetIfTable
AllocateAndGetIpAddrTableFromStack
DeleteIpForwardEntry
GetIfTable
GetBestInterface
InternalDeleteIpNetEntry
DeleteProxyArpEntry
NhGetGuidFromInterfaceName
AddIPAddress
NotifyRouteChange
_PfBindInterfaceToIPAddress@12
_PfRemoveFilterHandles@12
CreateIpForwardEntry
GetUdpTable
GetFriendlyIfIndex
GetNetworkParams
GetAdapterIndex
GetRTTAndHopCount
SetIpStatistics
SendARP
SetIpTTL
GetNumberOfInterfaces
SetIpNetEntry
GetAdaptersInfo
InternalGetIpForwardTable
NTTimeToNTPTime
FlushIpNetTable
InternalSetIpNetEntry
CreateIpNetEntry
GetAdapterOrderMap
GetIpNetTable

user32

IsChild
GetWindowTextA
mouse_event
EnumDisplayDevicesA
GetDC
RealGetWindowClass
DdeUninitialize
CreateWindowStationW
GetCursorFrameInfo
GetUpdateRgn
GetDesktopWindow
GetForegroundWindow
GetPropW
wsprintfA
DestroyIcon
ChangeDisplaySettingsExA
SetMenuContextHelpId
GetCaretBlinkTime
EnumPropsA
EqualRect
SetWindowTextA
GetSysColor
GetDialogBaseUnits
SendMessageTimeoutW
SetLayeredWindowAttributes
FindWindowA
GetDoubleClickTime
VkKeyScanW
CharUpperBuffW
IMPSetIMEW
GetWindowModuleFileNameA
FindWindowW
ImpersonateDdeClientWindow
DefFrameProcA
GetClientRect

txflog

DllGetClassObject

cabinet

FCICreate
FDIIsCabinet
DllGetVersion
Extract
FDICopy
DeleteExtractedFiles
FDIDestroy
FCIFlushFolder
FDITruncateCabinet

webcheck

DllCanUnloadNow
DllGetClassObject

shlwapi

PathIsUNCW
SHRegEnumUSValueA
SHCopyKeyA
PathRemoveBlanksW
SHGetValueW
PathIsLFNFileSpecA
PathCanonicalizeA
StrToIntW
SHRegWriteUSValueW
SHGetInverseCMAP
SHEnumKeyExA
PathIsRootW
PathStripToRootW
StrTrimA
UrlCreateFromPathA
SHRegQueryUSValueW
StrCSpnA
PathIsURLW
PathFindFileNameW
UrlCompareA
PathRemoveBlanksA
AssocIsDangerous
SHCreateStreamOnFileW
PathIsNetworkPathA
StrCmpIW
PathGetDriveNumberA
SHCreateStreamWrapper

kernel32

FillConsoleOutputCharacterW
DosPathToSessionPathW
SetDefaultCommConfigW
GetCPInfoExA
IsBadHugeWritePtr
_lopen
GetCPInfo
CreateFiberEx
WaitForSingleObjectEx
ResetEvent
Heap32ListFirst
VirtualAlloc
WriteConsoleOutputA
SystemTimeToTzSpecificLocalTime
SetConsoleCursorInfo
CreateEventA
GetEnvironmentStrings
SetThreadPriority
GetFileType
DisconnectNamedPipe
lstrcmpA
lstrcmpiW
QueryPerformanceCounter
GetConsoleAliasesA
GetDevicePowerState
AllocateUserPhysicalPages
SetNamedPipeHandleState
GlobalMemoryStatusEx
CloseHandle
EnumSystemCodePagesA
SetCommState
GetTimeFormatW
lstrlenA
GetCurrentProcess

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4db56a9e5ce4caf46d6bb734422eb821

Headers

DLL Characteristics

File Characteristics

Imports

iphlpapi

user32

txflog

cabinet

webcheck

shlwapi

kernel32

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 143KB - Virtual size: 142KB

.data Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 143KB - Virtual size: 142KB

.data
Size: 2KB - Virtual size: 1KB