09866b81a1eeb1b4a2eb50596990366be267db6659b43f2b0177b3a026e13fde

Sharing

Copy URL Twitter E-mail

General

Target

09866b81a1eeb1b4a2eb50596990366be267db6659b43f2b0177b3a026e13fde
Size

240KB
MD5

06891c264243e00299b9aaaad7ae1b99
SHA1

1b868c536d155062d34472f23e68b40000788552
SHA256

09866b81a1eeb1b4a2eb50596990366be267db6659b43f2b0177b3a026e13fde
SHA512

b51dff3c60ff63c3f8bb38462c05c206e0ce7514c7f37f60f9971dd59032df13ddc82c10c2b389513230fe860c6f9bada5f66209dbc7fda2c8de8a1a102d51fc
SSDEEP

3072:Dvkt2UBWUBVA5tG6j43BaeBnitU74iRjDuR/VRBJh6wShHg/5lv2MTsVA3qzon/p:oYLIV3BJniw4kuX6/hqZTseqzGB

Score

N/A

Malware Config

Signatures

Files

09866b81a1eeb1b4a2eb50596990366be267db6659b43f2b0177b3a026e13fde
.exe windows x86

4ce930a5b729aad7b0f860be92d1520c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dbnmpntw

ConnectionError
ConnectionWrite
ConnectionVer
ConnectionClose
ConnectionRead

cfgmgr32

CM_Add_Empty_Log_Conf
CMP_Init_Detection
CM_Add_IDA
CM_Add_Range
CMP_Report_LogOn

qutil

FreeFixupInfo
AllocConnections

modemui

InvokeControlPanel
drvSetDefaultCommConfigA
drvGetDefaultCommConfigA
CountryRunOnce

kernel32

GetFullPathNameW
GetProcessId
GetPrivateProfileSectionA
CompareStringA
GetGeoInfoW
GetAtomNameA
CreateNamedPipeA
GetDateFormatW
ReadFile
VirtualProtect
SleepEx
GetCurrentProcess
CreateFileW
LoadLibraryW
GetConsoleAliasW
GetTimeFormatA
GetModuleHandleA

shell32

DragAcceptFiles
SHFree
SHChangeNotify
SHGetDataFromIDListA
DragQueryFileA
StrChrA
DuplicateIcon
DragQueryPoint
SHGetDiskFreeSpaceA
FindExecutableA
SHFileOperationA
SHGetMalloc
DllUnregisterServer
ExtractIconA
DragFinish
SHCreateShellItem

user32

wsprintfA
DialogBoxParamA
CreateDesktopW
GetDlgItemTextW
PostMessageW
LoadBitmapA
IsDialogMessageW
CharToOemA
LoadMenuW
DispatchMessageW
IsZoomed

uxtheme

GetThemeTextMetrics
IsThemeActive
GetThemeTextExtent
DrawThemeBackground
CloseThemeData
GetThemeFilename
GetThemeBool
OpenThemeData
GetThemeRect
DrawThemeEdge
SetWindowTheme
GetWindowTheme

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 168KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ce930a5b729aad7b0f860be92d1520c

Headers

DLL Characteristics

File Characteristics

Imports

dbnmpntw

cfgmgr32

qutil

modemui

kernel32

shell32

user32

uxtheme

Sections

.text Size: 48KB - Virtual size: 44KB

.data Size: 20KB - Virtual size: 18KB

.rsrc Size: 168KB - Virtual size: 165KB

.text
Size: 48KB - Virtual size: 44KB

.data
Size: 20KB - Virtual size: 18KB

.rsrc
Size: 168KB - Virtual size: 165KB