1cae86596cab1fe0068315103af64a51e7408b57b6fa136f21d207bfc3f58437

Sharing

Copy URL Twitter E-mail

General

Target

1cae86596cab1fe0068315103af64a51e7408b57b6fa136f21d207bfc3f58437
Size

21KB
MD5

0efc584bdd723a53304c20731f4a9f2c
SHA1

c1388cccc94947892478a23576e86d0d574e2d7f
SHA256

1cae86596cab1fe0068315103af64a51e7408b57b6fa136f21d207bfc3f58437
SHA512

8193a4a8371b51478c0c7e716f3686e1ac5e5142193f192240c92b985a6bea6dfe8cae2d7de53b47b070b3271250518c1dd17de71cddd3a987939aa744fabbf0
SSDEEP

384:ex2ZUyCPW9zoKDJhHGqp0NUMrz9NcEPD6iGFeZBcP4BvwOuu7mlvA9Se55N:exWEQhHF0NUMbcEXZB88vv7hUe55N

Score

N/A

Malware Config

Signatures

Files

1cae86596cab1fe0068315103af64a51e7408b57b6fa136f21d207bfc3f58437
.exe windows x86

4850c6eb75ce8860ad28021f7da01900

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dataclen

DllGetClassObject

adsnt

DllGetClassObject

kernel32

FatalAppExitA
LoadLibraryExA
LoadResource
TerminateProcess
GetOEMCP
ExitProcess
TlsSetValue
LeaveCriticalSection
IsBadWritePtr
lstrcatA
HeapDestroy
MultiByteToWideChar
SetLastError
GetCurrentThread
TlsGetValue
lstrcmpiA
lstrcpyA
GetCommandLineA
GetStartupInfoA
GetModuleFileNameA
InterlockedDecrement
HeapFree
GetStringTypeW
SetHandleCount
HeapReAlloc
lstrlenA
RtlUnwind
GetEnvironmentStringsW
GetLastError
HeapAlloc
IsBadReadPtr
VirtualFree
WideCharToMultiByte
WriteFile
lstrlenW
GetShortPathNameA
GetACP
GetCPInfo
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FindResourceA
GetVersion
LCMapStringA
HeapCreate
GetStringTypeA
InterlockedIncrement
GetCurrentProcess
IsBadCodePtr
GetEnvironmentStrings
LoadLibraryA
SizeofResource
SetConsoleCtrlHandler
TlsFree
LCMapStringW
TlsAlloc
GetCurrentThreadId
FreeLibrary
FreeEnvironmentStringsW
EnterCriticalSection
FreeEnvironmentStringsA
lstrcpynA
GetModuleHandleA
DeleteCriticalSection
GetStdHandle
GetFileType
DisableThreadLibraryCalls
IsDBCSLeadByte
GetProcAddress
InitializeCriticalSection
VirtualAlloc

cmdial32

AutoDialFunc

Sections

.text
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4850c6eb75ce8860ad28021f7da01900

Headers

DLL Characteristics

File Characteristics

Imports

dataclen

adsnt

kernel32

cmdial32

Sections

.text Size: 512B - Virtual size: 420B

.rsrc Size: 12KB - Virtual size: 11KB

.idata Size: 2KB - Virtual size: 2KB

.data Size: - Virtual size: 80KB

.rdata Size: 5KB - Virtual size: 5KB

.text
Size: 512B - Virtual size: 420B

.rsrc
Size: 12KB - Virtual size: 11KB

.idata
Size: 2KB - Virtual size: 2KB

.data
Size: - Virtual size: 80KB

.rdata
Size: 5KB - Virtual size: 5KB