b5a0bce860c291a4e0cd52767d3da65d8a66d69a9477913718e77b0c097b889c

Sharing

Copy URL

Twitter E-mail

General

Target

b5a0bce860c291a4e0cd52767d3da65d8a66d69a9477913718e77b0c097b889c
Size

559KB
MD5

781606d8180921843475102f4653b460
SHA1

42a4eddeba43a00fb00d255b662aeeff42dd1ed0
SHA256

b5a0bce860c291a4e0cd52767d3da65d8a66d69a9477913718e77b0c097b889c
SHA512

6b8cf5472f4e9c1c2876b637618e55e2bddeaf41efda194f902d850b4f0ce763a2f4937dcc5d1fe38be0f0d74bb067dbb473b16d53395da3ab361953c96058a3
SSDEEP

12288:E0v961Flk7SrfA5V6FvmWPAHLWoucGZrgbYD+i7G8:Ev1FlfrI5YmKAHnuXOYD1C8

Score

N/A

Malware Config

Signatures

Files

b5a0bce860c291a4e0cd52767d3da65d8a66d69a9477913718e77b0c097b889c
.exe windows x86

1221357f4b99994034fae27ac6df1655

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

tapi32

lineConfigDialogW
lineGetDevCaps
lineClose
lineBlindTransferA

advapi32

RegSetKeySecurity
FreeSid
GetSidIdentifierAuthority
GetSidSubAuthorityCount
RegCreateKeyExA
GetSidLengthRequired
OpenServiceA
DuplicateToken
LsaOpenAccount
RegisterTraceGuidsA
LsaAddAccountRights
QueryServiceStatus

rtutils

RouterLogRegisterA
TracePrintfW
RouterLogDeregisterW
RouterLogEventExW
TracePrintfExA
TraceRegisterExA

kernel32

ExpandEnvironmentStringsW
SetMailslotInfo
PrivCopyFileExW
WritePrivateProfileSectionA
CreateSemaphoreA
EnumResourceNamesW
VirtualAlloc
QueryDosDeviceW
FileTimeToDosDateTime
FindNextChangeNotification

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: 56KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 115KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 112KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 76KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 115KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1221357f4b99994034fae27ac6df1655

Headers

DLL Characteristics

File Characteristics

Imports

tapi32

advapi32

rtutils

kernel32

Sections

.text Size: 24KB - Virtual size: 23KB

BSS Size: 56KB - Virtual size: 114KB

.data Size: 115KB - Virtual size: 118KB

BSS Size: 112KB - Virtual size: 188KB

.idata Size: 76KB - Virtual size: 117KB

.idata Size: 115KB - Virtual size: 175KB

.rsrc Size: 59KB - Virtual size: 59KB

.text
Size: 24KB - Virtual size: 23KB

BSS
Size: 56KB - Virtual size: 114KB

.data
Size: 115KB - Virtual size: 118KB

BSS
Size: 112KB - Virtual size: 188KB

.idata
Size: 76KB - Virtual size: 117KB

.idata
Size: 115KB - Virtual size: 175KB

.rsrc
Size: 59KB - Virtual size: 59KB