2037cdc5508ab70210c1d891efeabc7d0303497874bdcc7e2b829294a96102ae

General

Target

2037cdc5508ab70210c1d891efeabc7d0303497874bdcc7e2b829294a96102ae
Size

838KB
MD5

436d15ffa4360a3da875739ae56c5ca0
SHA1

d082df63643870bb8f5f546bc8ae3ceefa04b288
SHA256

2037cdc5508ab70210c1d891efeabc7d0303497874bdcc7e2b829294a96102ae
SHA512

afaa72ee3a463d92bebc6643d8ec4f2c5c20d4f95ebb0d5e9b9e36649efa41dcb4099acf86cc390965f66f3dc74ba5fef5422034f6c117c536a84bc654918a21
SSDEEP

24576:4YmNanf1wUjy6RJFVnE9WESh0gfOWsBI:QUWEntmSCgWWsBI

Score

N/A

Malware Config

Signatures

Files

2037cdc5508ab70210c1d891efeabc7d0303497874bdcc7e2b829294a96102ae
.exe windows x86

b7b971ebf40676e4e36c03775484d4c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

rastapi

PortCompressionSetInfo

rasman

RasPortEnumProtocols
IsRasmanProcess
RasActivateRoute
RasActivateRouteEx
RasAddConnectionPort
RasAddNotification
RasAllocateRoute
RasBundleClearStatistics
RasBundleClearStatisticsEx
RasBundleGetPort
RasBundleGetStatistics
RasBundleGetStatisticsEx
RasCompressionGetInfo
RasCompressionSetInfo
RasConnectionEnum
RasConnectionGetStatistics
RasCreateConnection
RasDeAllocateRoute
RasDestroyConnection
RasDeviceConnect
RasFindPrerequisiteEntry
RasFreeBuffer
RasPortGetProtocolCompression
RasGetCalledIdInfo
RasGetConnectInfo
RasGetConnectionParams
RasGetConnectionUserData
RasGetEapUserInfo
RasGetFramingCapabilities
RasGetHConnFromEntry
RasGetHportFromConnection

kernel32

Module32FirstW
FreeConsole
GetSystemDirectoryA
OpenProfileUserMapping
IsBadCodePtr
GetTapeParameters
ReleaseSemaphore
SearchPathW
SetCommState
CreateSemaphoreA
_lopen
Beep

onex

OneXAddEapAttributes
OneXAddTLV
OneXCompareAuthParams
OneXCopyAuthParams
OneXCreateDefaultProfile
OneXCreateDiscoveryProfiles
OneXCreateSupplicantPort
OneXDeInitialize

lz32

LZRead

Sections

.text
Size: 30KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 778KB - Virtual size: 780KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

Sharing

General

Malware Config

Signatures

Files

b7b971ebf40676e4e36c03775484d4c0

Headers

File Characteristics

Imports

rastapi

rasman

kernel32

onex

lz32

Sections

.text Size: 30KB - Virtual size: 35KB

.rdata Size: 12KB - Virtual size: 14KB

.RSRC Size: 778KB - Virtual size: 780KB

.rsrc Size: 5KB - Virtual size: 8KB

.text
Size: 30KB - Virtual size: 35KB

.rdata
Size: 12KB - Virtual size: 14KB

.RSRC
Size: 778KB - Virtual size: 780KB

.rsrc
Size: 5KB - Virtual size: 8KB