d7d2fdd6cc52c203e327dffedfc4367167ec101711c71258b8ca5ad28662810a

General

Target

d7d2fdd6cc52c203e327dffedfc4367167ec101711c71258b8ca5ad28662810a
Size

806KB
MD5

16212dafcd723860afa81c642b5fe17d
SHA1

24a28ede9b64084ec4575fe420d0afcce8b2208a
SHA256

d7d2fdd6cc52c203e327dffedfc4367167ec101711c71258b8ca5ad28662810a
SHA512

58f78cde3b3d2fe87ad211c81bc2fdc51f08280f9f0e95f2561f31de67ab841a4206dc11adca6fdf0d441dddb6b9a2a9c034dbbd005008a9a6a472e803f2d755
SSDEEP

12288:/VztmVedHczyWjy0rZXJeyuY+gSZSLyScxKYao49FreXSrg3fEFfP:/VcVedWy2y0rvepYKZhBxKKC6if

Score

N/A

Malware Config

Signatures

Files

d7d2fdd6cc52c203e327dffedfc4367167ec101711c71258b8ca5ad28662810a
.exe windows x86

ea30680d978482d462708b67f0abf164

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

mshtml

CreateHTMLPropertyPage

rasman

RasPortEnumProtocols
IsRasmanProcess
RasActivateRoute
RasActivateRouteEx
RasAddConnectionPort
RasAddNotification
RasAllocateRoute
RasBundleClearStatistics
RasBundleClearStatisticsEx
RasBundleGetPort
RasBundleGetStatistics
RasBundleGetStatisticsEx
RasCompressionGetInfo
RasCompressionSetInfo
RasConnectionEnum
RasConnectionGetStatistics
RasCreateConnection
RasDeAllocateRoute
RasDestroyConnection
RasDeviceConnect
RasFindPrerequisiteEntry
RasFreeBuffer
RasPortGetProtocolCompression
RasGetCalledIdInfo
RasGetConnectInfo
RasGetConnectionParams
RasGetConnectionUserData
RasGetEapUserInfo
RasGetFramingCapabilities
RasGetHConnFromEntry
RasGetHportFromConnection

kernel32

GetPrivateProfileIntA
FreeConsole
GetSystemDirectoryA
GetNumberFormatA
IsBadCodePtr
AddAtomW
GetSystemDirectoryA
FormatMessageA
SearchPathA
GetConsoleTitleA
CreateFileA
ResetEvent
_lread

mprapi

MprAdminUserClose
MprAdminUserGetInfo
MprAdminUserOpen
MprAdminUserRead
MprAdminUserReadProfFlags
MprAdminUserServerConnect
MprAdminUserSetInfo
MprAdminUserWrite

Sections

.text
Size: 30KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 746KB - Virtual size: 748KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 8KB

Sharing

General

Malware Config

Signatures

Files

ea30680d978482d462708b67f0abf164

Headers

File Characteristics

Imports

mshtml

rasman

kernel32

mprapi

Sections

.text Size: 30KB - Virtual size: 35KB

.rdata Size: 12KB - Virtual size: 14KB

.RSRC Size: 746KB - Virtual size: 748KB

.data Size: 5KB - Virtual size: 8KB

.text
Size: 30KB - Virtual size: 35KB

.rdata
Size: 12KB - Virtual size: 14KB

.RSRC
Size: 746KB - Virtual size: 748KB

.data
Size: 5KB - Virtual size: 8KB