123b5ca2c6b835dd45a1e90647ff380e6baa4397123b115cfac6047ddb90b252

General

Target

123b5ca2c6b835dd45a1e90647ff380e6baa4397123b115cfac6047ddb90b252
Size

84KB
MD5

efdca497f4faa9b65a9dc938fc057d3a
SHA1

dd72def1013e9ac91519e6861e2a83f4237c1031
SHA256

123b5ca2c6b835dd45a1e90647ff380e6baa4397123b115cfac6047ddb90b252
SHA512

386d202887f224f2cc4d5c26df366d7e06d258bac7e59b87773ea1d17603bf65ee7f80bcfd898baf0bb1e3e6182f6d1b934d0316d00c2773ddec7bad30fbb062
SSDEEP

1536:kL/hhzSSSIFCLEBrMFYOOO16qEq2bRbZWho6KmZsly4gK0Oyl0:kL/PFCLSrMFYOOO1BpEZYPMJ07

Score

N/A

Malware Config

Signatures

Files

123b5ca2c6b835dd45a1e90647ff380e6baa4397123b115cfac6047ddb90b252
.exe windows x86

3b7c05da26a9ac7ca7470f9639df34cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLogicalDriveStringsA
LoadLibraryA
GetStringTypeA
ReplaceFileW
ReadFile
TlsGetValue
FormatMessageA
GetProcAddress
WaitForSingleObject
GetFileSize
CompareStringW
GetLastError
ReadConsoleW
GetCurrentDirectoryA
GetLocalTime
GetCommandLineW

user32

SendMessageA
LoadBitmapW
DestroyMenu
DestroyIcon
CreateDesktopA
DefDlgProcW
LoadImageW
LoadCursorA
OemToCharA
FindWindowW
wsprintfW
EnumDesktopsA
EnumWindows
GetPropA

cfgmgr32

CM_Add_Empty_Log_Conf
CMP_Init_Detection
CM_Add_IDA

dsprop

CheckADsError
CrackName
ErrMsg
ErrMsgParam

crypt32

CryptEnumOIDInfo
CertGetNameStringA
CertDuplicateCRLContext
CertAlgIdToOID
CryptMsgClose
CertFreeCRLContext
CertCreateCRLContext
CertFindChainInStore
CertSetStoreProperty
CertNameToStrA
CertCloseStore
CertCreateCTLContext
CertFindExtension
CertCompareCertificate
CertDuplicateStore
CertAddStoreToCollection
CryptFindOIDInfo

onex

OneXAddTLV
OneXInitialize

nddeapi

NDdeShareEnumA
NDdeShareAddA

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 224KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b7c05da26a9ac7ca7470f9639df34cf

Headers

File Characteristics

Imports

kernel32

user32

cfgmgr32

dsprop

crypt32

onex

nddeapi

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 224KB

.rsrc Size: 68KB - Virtual size: 68KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 224KB

.rsrc
Size: 68KB - Virtual size: 68KB