484a80ec43128fb82ea83c119f44116bb63b8d468a0d844122cdb150f18bd111

Sharing

Copy URL Twitter E-mail

General

Target

484a80ec43128fb82ea83c119f44116bb63b8d468a0d844122cdb150f18bd111
Size

322KB
MD5

5ece91b30cbb883cef3de9ead7fe4872
SHA1

5a7c7705d1dca3f427056173e202039fab7dab04
SHA256

484a80ec43128fb82ea83c119f44116bb63b8d468a0d844122cdb150f18bd111
SHA512

4b236231b5d1ece27a763f5f5b98ddd3909c3ba097814ba38227c4acd70e498d1c2e5be36e1e05e165bd3d334324ed4202e50f6a7469764c7dd4fac22cf6915d
SSDEEP

6144:QOADjCj19U9eQy/oK+AenIK3Sl8TfS9lbLRnd2WPrVgK:QOIjCj1K9eroRNnIKil0695LRXeK

Score

N/A

Malware Config

Signatures

Files

484a80ec43128fb82ea83c119f44116bb63b8d468a0d844122cdb150f18bd111
.exe windows x86

aafa9f6810f59384b55af11cb739d5af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

DeleteFileA
GetEnvironmentStringsA
GetProfileStringW
RegisterWowBaseHandlers
GetLogicalDriveStringsW
DefineDosDeviceW
MoveFileExW
ContinueDebugEvent
SetHandleContext
GetFileAttributesW
VirtualAlloc
ConsoleMenuControl
GetEnvironmentVariableA
UTUnRegister
ChangeTimerQueueTimer
LoadLibraryA
IsBadStringPtrW
SetThreadExecutionState
RemoveDirectoryA
GetCurrentProcessId
TerminateJobObject
EnumSystemGeoID
LockFile
QueryPerformanceCounter

ntdll

RtlRemoveVectoredExceptionHandler
NtResetWriteWatch
NtCreateProcessEx
RtlOpenCurrentUser
RtlUpcaseUnicodeToOemN
RtlTraceDatabaseFind
NtInitializeRegistry
NtQueryVirtualMemory
DbgUiGetThreadDebugObject
RtlUlonglongByteSwap
ZwAddBootEntry
NtDeviceIoControlFile
NtSetInformationKey
RtlDeleteElementGenericTableAvl
CsrCaptureMessageMultiUnicodeStringsInPlace
ZwSetInformationKey

inetcomm

MimeOleGetInternat
MimeOleCreateBody
MimeOleSetBodyPropA
HrGetLastOpenFileDirectory
MimeOleGetContentTypeExt
MimeOleAlgNameFromSMimeCap
HrGetAttachIconByFile
MimeOleCreateHeaderTable
MimeOleGenerateFileName
EssKeyExchPreferenceEncodeEx
MimeOleGetCertsFromThumbprints
MimeOleOpenFileStream
EssSecurityLabelEncodeEx
MimeOleSMimeCapsFull
MimeOleParseRfc822AddressW
MimeOleGetPropA
MimeOleGetFileInfoW
MimeOleSetPropW
MimeOleCreateHashTable
MimeEditCreateMimeDocument
MimeOleSetDefaultCharset
MimeOleSMimeCapAddSMimeCap
MimeOleSMimeCapGetEncAlg

msls31

LsFinishCurrentSubline
LsdnSetRigidDup
LsSetDoc
LsdnFinishRegularAddAdvancePen
LssbGetPlsrunsFromSubline
LsEnumSubline
LsGetHihLsimethods
LsModifyLineHeight
LssbFDonePresSubline
LsQueryPointPcpSubline
LsDestroySubline
LssbGetDurTrailInSubline
LsFetchAppendToCurrentSubline
LsFindPrevBreakSubline
LsdnResolvePrevTab
LsQueryLinePointPcp

utildll

NetBIOSDeviceEnumerate
CalculateElapsedTime
AsyncDeviceEnumerate
GetUnknownString
ElapsedTimeString
RegGetNetworkDeviceName
CtxGetAnyDCName
FormDecoratedAsyncDeviceName
ParseDecoratedAsyncDeviceName
SetupAsyncCdConfig
InitializeAnonymousUserCompareList
EnumerateMultiUserServers
StrAsyncConnectState
CachedGetUserFromSid
StandardErrorMessage
IsPartOfDomain
WinEnumerateDevices
CompareElapsedTime
GetAssociatedPortName
ConfigureModem
CalculateDiffTime
NetworkDeviceEnumerate
GetUserFromSid
DateTimeString

Sections

.text
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aafa9f6810f59384b55af11cb739d5af

Headers

File Characteristics

Imports

kernel32

ntdll

inetcomm

msls31

utildll

Sections

.text Size: 102KB - Virtual size: 102KB

.rdata Size: 207KB - Virtual size: 206KB

.data Size: 1024B - Virtual size: 363KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 102KB - Virtual size: 102KB

.rdata
Size: 207KB - Virtual size: 206KB

.data
Size: 1024B - Virtual size: 363KB

.rsrc
Size: 11KB - Virtual size: 10KB