46dea8cf41f8bc9685d9f1b46a69f4e4c932bcb3ce570262e49eaf200300f409

Sharing

Copy URL Twitter E-mail

General

Target

46dea8cf41f8bc9685d9f1b46a69f4e4c932bcb3ce570262e49eaf200300f409
Size

8.6MB
MD5

c8f90b04fd0fa07defd305726939c669
SHA1

a69b014e1ae5e76e6790da5d47ab6dce80001738
SHA256

46dea8cf41f8bc9685d9f1b46a69f4e4c932bcb3ce570262e49eaf200300f409
SHA512

c116f9d526ee36881b3b25d6b5076afd579d01c73a2d7b59c48baf12e92596b96faf9cfda7e3af07c6226666ec26e81312778719d88fce7a935f23d386e15e6a
SSDEEP

196608:7eLhU1WFVKyynCrwLFn8+tHRWPSR89ciKqAfshtQ2EmKnmcOC:8m1EwCML++tHRWPuIci7AfL2W/

Score

N/A

Malware Config

Signatures

Files

46dea8cf41f8bc9685d9f1b46a69f4e4c932bcb3ce570262e49eaf200300f409
.exe windows x86

1dc39954f91ba5b4f582620b86cc5f05

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rasapi32

RasGetConnectStatusA

kernel32

LoadLibraryA
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

SetWindowLongA

gdi32

GetStockObject

winmm

midiStreamOut

msimg32

GradientFill

winspool.drv

ClosePrinter

advapi32

RegOpenKeyExA

shell32

Shell_NotifyIconA

ole32

CoFreeUnusedLibraries

oleaut32

SafeArrayGetLBound

comctl32

ord17

oledlg

ord8

ws2_32

WSACleanup

wininet

InternetTimeFromSystemTime

comdlg32

GetFileTitleA

Sections

.text
Size: - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

CODE
Size: - Virtual size: 330KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 759KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 422KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp0
Size: 8KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp1
Size: - Virtual size: 6.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp2
Size: 8.6MB - Virtual size: 8.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1dc39954f91ba5b4f582620b86cc5f05

Headers

File Characteristics

Imports

rasapi32

kernel32

user32

gdi32

winmm

msimg32

winspool.drv

advapi32

shell32

ole32

oleaut32

comctl32

oledlg

ws2_32

wininet

comdlg32

Sections

.text Size: - Virtual size: 1.9MB

CODE Size: - Virtual size: 330KB

.rdata Size: - Virtual size: 759KB

.data Size: - Virtual size: 422KB

DATA Size: - Virtual size: 67KB

BSS Size: - Virtual size: 25KB

.vmp0 Size: 8KB - Virtual size: 29KB

.vmp1 Size: - Virtual size: 6.9MB

.vmp2 Size: 8.6MB - Virtual size: 8.6MB

.rsrc Size: 8KB - Virtual size: 6KB

.text
Size: - Virtual size: 1.9MB

CODE
Size: - Virtual size: 330KB

.rdata
Size: - Virtual size: 759KB

.data
Size: - Virtual size: 422KB

DATA
Size: - Virtual size: 67KB

BSS
Size: - Virtual size: 25KB

.vmp0
Size: 8KB - Virtual size: 29KB

.vmp1
Size: - Virtual size: 6.9MB

.vmp2
Size: 8.6MB - Virtual size: 8.6MB

.rsrc
Size: 8KB - Virtual size: 6KB