cb9ceb45cfc8721b690d7bc32e57fb9eec9495106d3840a01cf7a9684fe33e75

General

Target

cb9ceb45cfc8721b690d7bc32e57fb9eec9495106d3840a01cf7a9684fe33e75
Size

284KB
MD5

96e0d59abd9866729b797233aa1935f3
SHA1

f4c6b6e9df5005113b4d2406937e60bc4f55a9a8
SHA256

cb9ceb45cfc8721b690d7bc32e57fb9eec9495106d3840a01cf7a9684fe33e75
SHA512

a70632e51b41df89df35c2e89f289a21d53598ef503fa9bc0aac2fc2a07c488b340c9d5448861578d27dcd50b6cc867ae810c0515bb440cd9dff941b4899be20
SSDEEP

3072:Y9YCuzTdrr+20+xXVtol77Zw4mguJI9oPSb/rTq1bFwj+Em1gugwJC:y3uHdrr+2JUl77Zw/JISP43OxwqEm4H

Score

N/A

Malware Config

Signatures

Files

cb9ceb45cfc8721b690d7bc32e57fb9eec9495106d3840a01cf7a9684fe33e75
.exe windows x86

3bcc8819bdbea99c50b8109634f36f0c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ExtractIconA
StrChrA
DuplicateIcon
DragFinish
DragQueryFileA
ShellMessageBoxA
SHFileOperationA
DragQueryPoint
ShellAboutA
SHGetDataFromIDListA

kernel32

VirtualProtect
HeapSize
CreateFileW
lstrcmpi
SleepEx
CreateNamedPipeA
GetGeoInfoW
GetModuleHandleA
GetConsoleTitleW
GetDriveTypeA
ReadFile
UpdateResourceW
FormatMessageA
GetLogicalDriveStringsW
LoadLibraryW

cfgmgr32

CMP_Report_LogOn
CMP_Init_Detection
CM_Add_Range
CM_Add_Empty_Log_Conf
CM_Add_IDA

ctl3d32

Ctl3dEnabled
Ctl3dUnregister
Ctl3dRegister

uxtheme

CloseThemeData
GetThemeColor
IsThemeActive
GetThemeBool
GetThemeRect
GetWindowTheme
GetThemeTextMetrics
DrawThemeEdge
GetThemeSysSize
GetThemeTextExtent
GetThemeInt
SetWindowTheme
OpenThemeData

onex

OneXDeInitialize
OneXAddTLV
OneXFreeMemory
OneXCopyAuthParams
OneXInitialize

user32

DialogBoxParamA
InsertMenuA
GetPropA
wsprintfA
LoadIconA
CharToOemA
GetDlgItemTextW
FlashWindow
LoadCursorA
GetMessageW
GetClassLongA
PeekMessageW
IsDialogMessageW

modemui

drvSetDefaultCommConfigA
drvCommConfigDialogA
InvokeControlPanel
CountryRunOnce

Sections

.text
Size: 204KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3bcc8819bdbea99c50b8109634f36f0c

Headers

DLL Characteristics

File Characteristics

Imports

shell32

kernel32

cfgmgr32

ctl3d32

uxtheme

onex

user32

modemui

Sections

.text Size: 204KB - Virtual size: 200KB

.data Size: 48KB - Virtual size: 44KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 204KB - Virtual size: 200KB

.data
Size: 48KB - Virtual size: 44KB

.rsrc
Size: 28KB - Virtual size: 25KB