e622165df7e262dcd7059d1102cec2ce5aee00636f946f6ca5659fec2071983e

Sharing

Copy URL

Twitter E-mail

General

Target

e622165df7e262dcd7059d1102cec2ce5aee00636f946f6ca5659fec2071983e
Size

372KB
MD5

c6ab3e8decce83801e62b4cd27edba9e
SHA1

498cdd9a4ca6c6f4e50a5b89240edd686e0a673b
SHA256

e622165df7e262dcd7059d1102cec2ce5aee00636f946f6ca5659fec2071983e
SHA512

c44a570da67955c1a854bc74c8e101e172981ea37d78655885eec2326ead862d187a4e42b080d706bd06cb8c00b69cb3c4e4ac36c4ade09b445dec2cc878d170
SSDEEP

6144:gWWz1uvPT+Ws6R8KqtnPW/W7OGgEpdCsD5nsmkn5tsz19zMK+TVDkhPAGCNyHe:g9zkbjsXvtnPW+dg855smkn5ts59zMK

Score

N/A

Malware Config

Signatures

Files

e622165df7e262dcd7059d1102cec2ce5aee00636f946f6ca5659fec2071983e
.exe windows x86

b5ba8693ba0de9fe70568e4c145c23d8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

clbcatq

CoRegCleanup
SetSetupOpen

cmdial32

CmReConnect
AutoDialFunc
InetDialHandler
CmCustomDialDlg

kernel32

GetEnvironmentVariableA
DeviceIoControl
GetEnvironmentVariableA
CompareStringW
GetEnvironmentVariableA
SleepEx
GetStringTypeW
HeapAlloc
GetLastError
FindFirstFileA
GetLocaleInfoW
DeleteFileA
CreateDirectoryA
GetEnvironmentVariableA
GetEnvironmentVariableA
CreateEventW
OpenMutexW
CreateSemaphoreW
GetEnvironmentVariableA
GetEnvironmentVariableA
GetDriveTypeA
lstrcpynW
GetLocalTime
GetEnvironmentVariableA
CopyFileW
GetEnvironmentVariableA
InterlockedDecrement
GetEnvironmentVariableA
GetTickCount
GetProcAddress
GetEnvironmentVariableA
GetModuleHandleA
GetEnvironmentVariableA
SearchPathA
GetEnvironmentVariableA
GetLogicalDriveStringsA
FindFirstVolumeW
IsValidCodePage
GetACP
GetEnvironmentVariableA
ReplaceFileW
GetEnvironmentVariableA

cryptdll

MD5Init
MD5Update
CDLocateRng

user32

CreateDesktopW
GetClassInfoA
DrawTextA
SetCursorPos
FindWindowA
CharToOemA
wsprintfA
DrawIcon
LoadCursorA
PostMessageW
GetMessageW
IsCharLowerA
GetCaretPos
IsDialogMessageA

crypt32

CertCloseStore
CertSaveStore
CertFindChainInStore
CertFreeCRLContext
CertFindAttribute
CryptEnumOIDInfo
CertCreateContext
CertOpenStore
CertCreateCRLContext
CertAddStoreToCollection
CertFindExtension
CertNameToStrA
CertFindCRLInStore
CertGetNameStringA
CertAlgIdToOID

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 324KB - Virtual size: 323KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b5ba8693ba0de9fe70568e4c145c23d8

Headers

File Characteristics

Imports

clbcatq

cmdial32

kernel32

cryptdll

user32

crypt32

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 324KB - Virtual size: 323KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 324KB - Virtual size: 323KB