a49cad914bd0f1043c9ab5112042b2bd4cde2f0434621be2243e6d18b7df0ff2

General

Target

a49cad914bd0f1043c9ab5112042b2bd4cde2f0434621be2243e6d18b7df0ff2
Size

285KB
MD5

93d373ca31a1af28fa23ef527c650600
SHA1

2114379281f5bceb50b99330961667518999a3e2
SHA256

a49cad914bd0f1043c9ab5112042b2bd4cde2f0434621be2243e6d18b7df0ff2
SHA512

a504f758bf1c6df6508411eb695aff58d70e99e5175e44044f5a7dad248283ee6f0386960654764e4aef0443ba56a95b85b74f7e7c271878f2b80fb3da95ed01
SSDEEP

6144:xZNXanlPwpkN3sacXiVA2n/sbCJpyyU6NDGqkJoEeuGU:Ral5NOcRkQNyVJoxU

Score

N/A

Malware Config

Signatures

Files

a49cad914bd0f1043c9ab5112042b2bd4cde2f0434621be2243e6d18b7df0ff2
.exe windows x86

535bb647f5ef2c632dde97e50786f5c5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VerifyVersionInfoW
CloseHandle
LocalAlloc
DeleteFileA
FreeLibrary
GetLocaleInfoW
FindFirstFileW
GetModuleHandleA
GetSystemDefaultLCID
GetStartupInfoA
ReadFile
CreateFileW
GetEnvironmentStringsA
GetFileAttributesW
GetDateFormatW
GetFileType
SetFilePointer
LocalFree
MultiByteToWideChar
FindNextFileW
FormatMessageW
SetLastError
WriteConsoleW
GetCommandLineW
GetLocalTime
GetTimeFormatW
GetStdHandle
LoadLibraryW

hnetcfg

HNetGetSharingServicesPage
HNetDeleteRasConnection
HNetSharingAndFirewallSettingsDlg
HNetGetFirewallSettingsPage
HNetFreeSharingServicesPage
HNetSharedAccessSettingsDlg

advapi32

TraceMessage
RegOpenKeyExW
GetSecurityDescriptorOwner
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorOwner
RegQueryValueExW
SetSecurityDescriptorDacl
GetTraceEnableLevel
InitializeAcl

iasacct

DllUnregisterServer
DllGetClassObject
DllCanUnloadNow
DllRegisterServer

msvcrt

swprintf
_onexit
wcsncmp
_adjust_fdiv
__dllonexit
wcscpy
_initterm
_purecall
wcscmp
free
malloc
wcslen

ws2_32

htonl
htons

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

535bb647f5ef2c632dde97e50786f5c5

Headers

File Characteristics

Imports

kernel32

hnetcfg

advapi32

iasacct

msvcrt

ws2_32

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 103KB - Virtual size: 102KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 103KB - Virtual size: 102KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 11KB - Virtual size: 10KB