87f4a0d27f2a2783c0022340859944827e106b28e6e07ad414fc3b22ef82a2de

General

Target

87f4a0d27f2a2783c0022340859944827e106b28e6e07ad414fc3b22ef82a2de
Size

3.0MB
MD5

80e2ffb0f159fb00e6c82e9fb2953c64
SHA1

b7bc942336fd880725a60216fe1e3b614e727a0f
SHA256

87f4a0d27f2a2783c0022340859944827e106b28e6e07ad414fc3b22ef82a2de
SHA512

c43a7bf5da76304bc5c99c90c60a475b665da042881ee7060e1ad82deda7620d749b14d28c22a007498e9fb0253a18e817f37f060248c3a4cee39ca9aeeb4c94
SSDEEP

98304:60sZRAjlhv4OP+tbL+02cOcp/+qhm9TGEgwN:QATRP+tbL+/Lcp/+qhA

Score

N/A

Malware Config

Signatures

Files

87f4a0d27f2a2783c0022340859944827e106b28e6e07ad414fc3b22ef82a2de
.exe windows x86

a12000539e9acbc571452b93a1568346

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

nddeapi

ord603
ord503
ord610
ord511
ord501

kernel32

TlsFree
GetCPInfoExW
GetLastError
GetConsoleCP
GetCurrentThreadId
OpenThread
VirtualAlloc
GetCPInfoExA
GetLocaleInfoA
GetCurrentProcessId
ExpungeConsoleCommandHistoryW
GlobalReAlloc
Process32Next
SetLastError
ExitProcess
SetLocaleInfoA
GetCurrentProcess
OpenMutexW
FindFirstFileExW
UnlockFile
OpenProcess
AddAtomW
RemoveDirectoryA
GetNumberFormatA
GetCurrentThread

msvcrt

exit
strcspn
signal
_stati64
iswalnum
??_U@YAPAXI@Z
_CIlog
_ctime64
_open

tapi32

tapiGetLocationInfoW
lineGetIDA
lineInitializeExW
tapiGetLocationInfo
lineGetMessage
lineGetCountryW
lineMakeCallA
lineGetCallStatus
lineNegotiateAPIVersion
lineGetTranslateCapsA
lineSetStatusMessages
lineDevSpecific

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.CRT
Size: 5KB - Virtual size: 952KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbs
Size: 2.9MB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textbs
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a12000539e9acbc571452b93a1568346

Headers

File Characteristics

Imports

nddeapi

kernel32

msvcrt

tapi32

Sections

.text Size: 7KB - Virtual size: 7KB

.CRT Size: 5KB - Virtual size: 952KB

.textbs Size: 2.9MB - Virtual size: 5.0MB

.tls Size: - Virtual size: 4KB

.textbs Size: 512B - Virtual size: 24B

.rsrc Size: 60KB - Virtual size: 59KB

.text
Size: 7KB - Virtual size: 7KB

.CRT
Size: 5KB - Virtual size: 952KB

.textbs
Size: 2.9MB - Virtual size: 5.0MB

.tls
Size: - Virtual size: 4KB

.textbs
Size: 512B - Virtual size: 24B

.rsrc
Size: 60KB - Virtual size: 59KB