ed0d20eb40096cfe4234447aa3074552b0cc3a12ce3a909c6d739a0f95b5fea3

General

Target

ed0d20eb40096cfe4234447aa3074552b0cc3a12ce3a909c6d739a0f95b5fea3
Size

37KB
MD5

832e58aa101ff9a7bcd7eb5f8e1c132c
SHA1

3330915917a7d24baa66b4ecee9b65f3e74a3b76
SHA256

ed0d20eb40096cfe4234447aa3074552b0cc3a12ce3a909c6d739a0f95b5fea3
SHA512

76a63e9088d22c1f0cccd4feec6cf3267ce6d6fec187a26e05809993454208e937f02566c21d982e4d998813ca7363735e15391e35354ffe246b4daa664c8d64
SSDEEP

768:jpys8HtXXXm7SCpr1XoohpSl7gqE+ZHHO9ymVPB3czdAx:tyvtXXXm7SCpr1XoohpSl7gqE+ZHHIyS

Score

N/A

Malware Config

Signatures

Files

ed0d20eb40096cfe4234447aa3074552b0cc3a12ce3a909c6d739a0f95b5fea3
.exe windows x86

7401850f3cf5bad6dd9d3260bf378614

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

cfgmgr32

CM_Get_Version
CM_Get_Version

fde

DllGetClassObject
DllGetClassObject

iassam

DllRegisterServer
DllRegisterServer

dciman32

DCICreateOverlay

clusapi

ClusterEnum
ClusterEnum

kernel32

ReplaceFileA
GetACP
RtlMoveMemory
SetComputerNameA
QueryDosDeviceA
CreateJobObjectA
ReadConsoleOutputA
RegisterWowExec
Beep
_lopen
GetProfileIntW
TerminateThread
ExitThread
GetSystemDirectoryA

lz32

LZRead
LZInit

tapi32

lineGetCallInfo
lineGetCallInfoA
lineGetCallInfoW
lineGetCallStatus
lineGetConfRelatedCalls
lineGetCountry
lineGetCountryA
lineGetCountryW
lineGetDevCaps
lineGetDevCapsA
lineGetDevCapsW
lineGetDevConfig
lineGetDevConfigA
lineGetDevConfigW
lineGetGroupListA
lineGetGroupListW
lineGetID
lineGetIDA
lineGetIDW
lineGetIcon
lineGetIconA
lineGetIconW
lineGetLineDevStatus
lineGetLineDevStatusA
lineGetLineDevStatusW
lineGetMessage

Sections

.text
Size: 6KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.neolit
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7401850f3cf5bad6dd9d3260bf378614

Headers

File Characteristics

Imports

cfgmgr32

fde

iassam

dciman32

clusapi

kernel32

lz32

tapi32

Sections

.text Size: 6KB - Virtual size: 30KB

.data Size: 7KB - Virtual size: 70KB

.neolit Size: 18KB - Virtual size: 20KB

.rdata Size: 2KB - Virtual size: 2KB

DATA Size: 2KB - Virtual size: 2KB

.text
Size: 6KB - Virtual size: 30KB

.data
Size: 7KB - Virtual size: 70KB

.neolit
Size: 18KB - Virtual size: 20KB

.rdata
Size: 2KB - Virtual size: 2KB

DATA
Size: 2KB - Virtual size: 2KB