d51befb03fac62791e01f4d27b2666e05bb48c41b199f80915b233fe00afb078

General

Target

d51befb03fac62791e01f4d27b2666e05bb48c41b199f80915b233fe00afb078
Size

374KB
MD5

daf8f0d8685033acbf845236c483aeab
SHA1

37ba77c55e17111c5f8c752b3ef3c093d989c68a
SHA256

d51befb03fac62791e01f4d27b2666e05bb48c41b199f80915b233fe00afb078
SHA512

86815289e120ac5945ad7e3eae205ae1e40bae99cfcd0ce959641b94dc8e4c8d63bd237cf3cf2b006dc6e1e346824d35a50767dfd5528ac58cbe8c1619347af2
SSDEEP

6144:Dk8NaDeipI8UO9ettla9UHsFML3VYTOQp1lKQdAYp7aw5f1G5UHy6dR6vrfQOvz6:DN+eipI8b9ettla9UHsFSVYFp1aY9nfm

Score

N/A

Malware Config

Signatures

Files

d51befb03fac62791e01f4d27b2666e05bb48c41b199f80915b233fe00afb078
.exe windows x86

8fbb2a86717c90805ed54003a3c0121c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

oleaut32

DispGetParam

pdh

PdhAdd009CounterA
PdhAdd009CounterW
PdhAddCounterA
PdhAddCounterW
PdhBindInputDataSourceA
PdhBindInputDataSourceW
PdhBrowseCountersA
PdhBrowseCountersHA
PdhBrowseCountersHW
PdhBrowseCountersW
PdhCalculateCounterFromRawValue
PdhCloseLog
PdhCloseQuery
PdhCollectQueryData
PdhCollectQueryDataEx
PdhComputeCounterStatistics
PdhConnectMachineA
PdhConnectMachineW
PdhCreateSQLTablesA
PdhCreateSQLTablesW
PdhEnumLogSetNamesA
PdhEnumLogSetNamesW
PdhEnumMachinesA
PdhEnumMachinesHA
PdhEnumMachinesHW
PdhEnumMachinesW
PdhEnumObjectItemsA
PdhEnumObjectItemsHA
PdhEnumObjectItemsHW
PdhEnumObjectItemsW
PdhEnumObjectsA

kernel32

GetSystemTime
GetACP
GetSystemDirectoryA
GetVersionExA
PeekConsoleInputA
EnumCalendarInfoW
CallNamedPipeW
_lread
CreateFileA

rasapi32

RasFreeEapUserIdentityW
RasGetAutodialAddressA
RasGetAutodialAddressW
RasGetAutodialEnableA

Sections

.code
Size: 1024B - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA
Size: 6KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RSRC
Size: 365KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.r3
Size: - Virtual size: 496B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8fbb2a86717c90805ed54003a3c0121c

Headers

File Characteristics

Imports

oleaut32

pdh

kernel32

rasapi32

Sections

.code Size: 1024B - Virtual size: 20KB

.DATA Size: 6KB - Virtual size: 80KB

RSRC Size: 365KB - Virtual size: 368KB

.r3 Size: - Virtual size: 496B

.code
Size: 1024B - Virtual size: 20KB

.DATA
Size: 6KB - Virtual size: 80KB

RSRC
Size: 365KB - Virtual size: 368KB

.r3
Size: - Virtual size: 496B