72bcab518a250017c3865a19e26fbcdce367e7a713ba60682f2a66c49710797f

General

Target

72bcab518a250017c3865a19e26fbcdce367e7a713ba60682f2a66c49710797f
Size

144KB
MD5

91d34e54d7ff10c4ccd8df33ddabce30
SHA1

a0b692c3705fd5824ff9d61e647723b9a4c4c946
SHA256

72bcab518a250017c3865a19e26fbcdce367e7a713ba60682f2a66c49710797f
SHA512

402206cd32355c67a2c5f288d251aec45b83fb1b8420537d01499279891ecf31493f7fd425fce2c03d49c4856f5080971772e9b7cb7a7e5eace83cb74f9b5647
SSDEEP

1536:N+zyh2iozhVvmDVzwSNbMOebK459fYCs0bWnEyQ2BEL50g:Nh2ioODVzLd2bj59glEMm3

Score

N/A

Malware Config

Signatures

Files

72bcab518a250017c3865a19e26fbcdce367e7a713ba60682f2a66c49710797f
.exe windows x86

3716f645b9ed02556060503aeb2224b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

alicallusbphone

USBPhone_Call
USBPhone_CallConnected
USBPhone_ClearScreen
UnInitUSBPhone
InitUSBPhone
SetUSBPhoneHandler
USBPhone_Incoming

user32

LoadStringA
SendMessageA
GetMessageA
TranslateMessage
DispatchMessageA
LoadIconA
LoadCursorA
RegisterClassExA
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
CreateWindowExA
ShowWindow
UpdateWindow
SetTimer
PostMessageA

kernel32

HeapSize
LCMapStringW
LCMapStringA
GetSystemInfo
VirtualProtect
GetLocaleInfoA
HeapReAlloc
VirtualAlloc
HeapAlloc
GetCPInfo
GetOEMCP
GetACP
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
VirtualQuery
InterlockedExchange
GetSystemTimeAsFileTime
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetModuleFileNameA
GetProcAddress
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapFree
LoadLibraryA
RtlUnwind

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3716f645b9ed02556060503aeb2224b3

Headers

File Characteristics

Imports

alicallusbphone

user32

kernel32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 48KB - Virtual size: 47KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 48KB - Virtual size: 47KB

.rmnet
Size: 60KB - Virtual size: 60KB