e11575f7d8abee81f345f6a754d0d42b2bf42f6b05b3a9c64b531830b4268d24

General

Target

e11575f7d8abee81f345f6a754d0d42b2bf42f6b05b3a9c64b531830b4268d24
Size

46KB
MD5

7e01d9705da0a983af63906edffb5b08
SHA1

63433b4a2ced77ed330327b0cdb6704edc811654
SHA256

e11575f7d8abee81f345f6a754d0d42b2bf42f6b05b3a9c64b531830b4268d24
SHA512

436f98941b3627bf1eb38a992aee58e3c2a1122ff3fd566a53847e5aba87fad4d287f4545a43edfbf4f9b6ab008d6bb5fbe42cce124680763e562ef58ea390f9
SSDEEP

768:OpVuoqbBLfCei7s8sOY5JvW5JxVIAA3FLH6UVrx:OqPbA1sOwJvW5JvIAA3dH

Score

N/A

Malware Config

Signatures

Files

e11575f7d8abee81f345f6a754d0d42b2bf42f6b05b3a9c64b531830b4268d24
.exe windows x86

b477cb958ff28fadb9e15660c99a77fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_DEBUG_STRIPPED

Imports

atl

AtlAxGetHost
AtlAxWinInit

gdi32

AddFontMemResourceEx
AddFontResourceA
AddFontResourceExA
AddFontResourceExW

netapi32

DsGetDcCloseW
DsGetDcNameA
DsGetDcNameW
DsGetDcNameWithAccountA
DsGetDcNameWithAccountW
DsGetDcNextW
DsGetDcSiteCoverageA
DsGetDcSiteCoverageW

oledlg

OleUIChangeSourceA

kernel32

CreateFileA
ExitProcess
ReadFile
GetACP
GetOEMCP
ReadConsoleA
GetSystemDirectoryA
Module32First
GetCommandLineA

olepro32

OleCreateFontIndirect
OleCreateFontIndirect
OleCreateFontIndirect

icmp

IcmpSendEcho

msoert2

CreateLogFile

rasapi32

RasClearConnectionStatistics
RasClearLinkStatistics
RasClearConnectionStatistics
RasClearLinkStatistics
RasClearConnectionStatistics
RasClearLinkStatistics

esent

JetGetBookmark
JetGetColumnInfo
JetGetCounter
JetGetCurrentIndex
JetGetCursorInfo
JetGetDatabaseFileInfo
JetGetDatabaseInfo
JetGetIndexInfo
JetGetInstanceInfo
JetGetBookmark
JetGetColumnInfo
JetGetCounter
JetGetCurrentIndex
JetGetCursorInfo
JetGetDatabaseFileInfo
JetGetDatabaseInfo
JetGetIndexInfo
JetGetInstanceInfo

raschap

RasEapCreateConnectionProperties
RasEapCreateConnectionProperties

Sections

cde
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

data2
Size: 9KB - Virtual size: 76KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

res
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b477cb958ff28fadb9e15660c99a77fe

Headers

File Characteristics

Imports

atl

gdi32

netapi32

oledlg

kernel32

olepro32

icmp

msoert2

rasapi32

esent

raschap

Sections

cde Size: 8KB - Virtual size: 9KB

data2 Size: 9KB - Virtual size: 76KB

res Size: 26KB - Virtual size: 25KB

cde
Size: 8KB - Virtual size: 9KB

data2
Size: 9KB - Virtual size: 76KB

res
Size: 26KB - Virtual size: 25KB