e82f850f5e8c078eb72312b955ec1e8c8e2b627a52ee2aa8ad413d312367c030

General

Target

e82f850f5e8c078eb72312b955ec1e8c8e2b627a52ee2aa8ad413d312367c030
Size

1.6MB
MD5

5fec8c51be66567405e8beec60cdfc08
SHA1

9428a10913133d447c233765c229d4dfe18a9056
SHA256

e82f850f5e8c078eb72312b955ec1e8c8e2b627a52ee2aa8ad413d312367c030
SHA512

f6f67c54bcc2dc7dbf2911ccd2716ea76f0163ca6aee05664d5547de4b405e9221fb0f48923f0fe97f9d3a6a0a833612cd077ac5fc358a9f6e7f799790bef78d
SSDEEP

49152:FsrQ9Plg57ZZ3nwdaacut/WZfV85jI361BB3:FsrAle7ZZAE1mGfO5jI36Z3

Score

N/A

Malware Config

Signatures

Files

e82f850f5e8c078eb72312b955ec1e8c8e2b627a52ee2aa8ad413d312367c030
.exe windows x86

555433f6cfbf6af1c4d380e4f7ead4e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

modemui

CountryRunOnce
drvGetDefaultCommConfigA

shlwapi

UrlGetPartA
UrlHashA
UrlIsA
UrlIsNoHistoryW
UrlCreateFromPathA
UrlCompareA
UrlCombineA
UrlCanonicalizeA
UrlGetLocationA
PathCompactPathA
UrlIsOpaqueA
UrlEscapeA

certcli

CADeleteCA
CACloseCA

kernel32

UpdateResourceA
FindResourceA
lstrcpynA
lstrcmpiA
SetFilePointer
GetCurrentProcess
GetCurrentDirectoryA
WriteConsoleA
ReadConsoleA
GetVersionExA
GetTimeFormatA
GetPrivateProfileStructW
LoadLibraryA
HeapValidate
GetPrivateProfileStructW
lstrcmpiA
GetStringTypeA
GetComputerNameA
GetPrivateProfileSectionA
WaitForSingleObject
CreateNamedPipeA
GetAtomNameA
CreateFileA
QueryDosDeviceW
GetNumberFormatW
GetTickCount
GetDateFormatA
GetConsoleAliasW
GetConsoleTitleA
GetFullPathNameW
SetCurrentDirectoryW
GetSystemTimeAsFileTime
GetGeoInfoA
GetEnvironmentVariableA
SetEnvironmentVariableW
GetCommandLineA
ReadFile
GetProcessHeap
GetShortPathNameW
FormatMessageA
GetPrivateProfileStructW
GetLongPathNameA
HeapCreate
GetFullPathNameA
CompareStringA

msimg32

TransparentBlt
AlphaBlend
DllInitialize
GradientFill

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

555433f6cfbf6af1c4d380e4f7ead4e0

Headers

DLL Characteristics

File Characteristics

Imports

modemui

shlwapi

certcli

kernel32

msimg32

Sections

.text Size: 87KB - Virtual size: 86KB

.data Size: 1.5MB - Virtual size: 1.5MB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 87KB - Virtual size: 86KB

.data
Size: 1.5MB - Virtual size: 1.5MB

.rsrc
Size: 25KB - Virtual size: 25KB