bec9f79e336d3088f9bf3df0fa629d34d833e25daad56ca6ce9fc6f75a133aff

Sharing

Copy URL Twitter E-mail

General

Target

bec9f79e336d3088f9bf3df0fa629d34d833e25daad56ca6ce9fc6f75a133aff
Size

213KB
MD5

7c7259036377395560388e68bc8e27cf
SHA1

eda5de42453a97893c7c00bdba52589131a84c3d
SHA256

bec9f79e336d3088f9bf3df0fa629d34d833e25daad56ca6ce9fc6f75a133aff
SHA512

2e83a8967f618af1d886189824848f09f59490fa13588e6bc60b7b6fcf0312409cbb6f4ee4b7165eb2a24381736ca1633a3972b4adc5bc0ebc6c24f1f7232515
SSDEEP

3072:G6qDtguHiyqhYSJS7JhYEY87K/ax7BjbvHxtzH42cdOUn8BTsjwBDxOCGB:tWg4Fp7jdgSdvxtzHtGOy8BTsjWxOCGB

Score

N/A

Malware Config

Signatures

Files

bec9f79e336d3088f9bf3df0fa629d34d833e25daad56ca6ce9fc6f75a133aff
.exe windows x86

ec8c48362c751a178fa0d4bab0946911

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msoeacct

ValidEmailAddress
HrCreateAccountManager
DllCanUnloadNow
DllGetClassObject
GetDllMajorVersion

kernel32

GlobalHandle
GetCurrentProcessId
InterlockedDecrement
GetThreadPriority
WaitForSingleObject
QueryPerformanceCounter
EnterCriticalSection
GetVersionExW
HeapFree
VirtualFree
InterlockedExchange
DeleteCriticalSection
GetCurrentThread
WriteFile
MultiByteToWideChar
lstrlenA
CloseHandle
SetLastError
InterlockedIncrement
GetFullPathNameW
lstrcpyA
GetProfileIntA
GetSystemTimeAsFileTime
GetFileAttributesW
FreeLibrary
GlobalFindAtomW
lstrlenW
GetTickCount
IsValidCodePage
GetLastError
CreateThread
SetEndOfFile
GlobalLock
IsBadWritePtr
IsBadReadPtr
GetSystemInfo
SetThreadPriority
WaitForMultipleObjects
lstrcmpiW
SetFilePointer
lstrcpynW
lstrcpyW
lstrcmpW
GetProcessHeap
InitializeCriticalSection
SetEvent
GlobalAlloc
GlobalFree
WideCharToMultiByte
GetQueuedCompletionStatus
GlobalMemoryStatus
GetFileSize
ReadFile
HeapAlloc
GlobalUnlock
CreateFileW
GetCurrentProcess
CreateSemaphoreW
LeaveCriticalSection
GetModuleFileNameA
LoadLibraryW
GetPrivateProfileStringW
SetUnhandledExceptionFilter
CreateEventW
GetTimeZoneInformation
ResetEvent
ReleaseSemaphore
DeleteFileW
GetDiskFreeSpaceW
MulDiv
GetEnvironmentStringsW
IsBadCodePtr

msnetobj

DllGetClassObject
DllCanUnloadNow
DllRegisterServer
DllUnregisterServer

oleaut32

VarBstrFromDec
VarBstrFromUI8
VarBstrFromDisp
VarBstrFromR4
VarBstrFromR8
VarBstrFromUI4
VarBstrFromI2
VarBstrFromI8
VarBstrFromUI1
VarBstrFromCy
VarBstrFromI4
VarBstrFromDate
VarBstrFromUI2
VarBstrFromI1

user32

GetWindowRect
LoadCursorW
CheckDlgButton
GetDesktopWindow
SetDlgItemInt
GetDlgItemInt
IsRectEmpty
SetDlgItemTextW
GetClientRect
DestroyWindow
DefWindowProcW
LoadStringW
InvalidateRect
IsWindow
CheckRadioButton
GetDC
PeekMessageW
ShowWindow
SetWindowLongW
GetAsyncKeyState
IsWindowVisible
SendMessageW
TranslateMessage
CreateDialogParamW
EnableWindow
ClientToScreen
MoveWindow
SetCursor
ReleaseDC
GetDlgItem
GetWindowLongW
DispatchMessageW

msoert2

AppendTempFileList

msls31

LssbGetVisibleDcpInSubline
LssbGetNumberDnodesInSubline
LssbGetPlsrunsFromSubline
LssbGetDurTrailWithPensInSubline
LsCompressSubline
LssbGetObjDimSubline

msltus40

DllUnregisterServer
DllRegisterServer

cewmdm

DllRegisterServer
DllGetClassObject
DllCanUnloadNow
DllUnregisterServer

nddeapi

NDdeGetShareSecurityW
NDdeIsValidAppTopicListA
NDdeGetErrorStringA
NDdeGetTrustedShareW
NDdeGetTrustedShareA
NDdeIsValidAppTopicListW

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ec8c48362c751a178fa0d4bab0946911

Headers

File Characteristics

Imports

msoeacct

kernel32

msnetobj

oleaut32

user32

msoert2

msls31

msltus40

cewmdm

nddeapi

Sections

.text Size: 85KB - Virtual size: 84KB

.rdata Size: 118KB - Virtual size: 117KB

.data Size: 4KB - Virtual size: 6.1MB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 85KB - Virtual size: 84KB

.rdata
Size: 118KB - Virtual size: 117KB

.data
Size: 4KB - Virtual size: 6.1MB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB