c7819359b0317b4ad5941993d662e6ce4b405bcabe93e04dde56d045b4841b97

Sharing

Copy URL Twitter E-mail

General

Target

c7819359b0317b4ad5941993d662e6ce4b405bcabe93e04dde56d045b4841b97
Size

51KB
MD5

48e4e41c6b050c9b044a122eb9e88684
SHA1

f60189243c3b7812dac87d5b9f8c837942ef15d4
SHA256

c7819359b0317b4ad5941993d662e6ce4b405bcabe93e04dde56d045b4841b97
SHA512

966610090dfec71e9b5679b06b7f69279913dd296773609a242995cbee34d9bf1a2ad226eafdc49a54a32a5f4642402529ad5c3376c750f8d9b9d59e59c984df
SSDEEP

768:5BSxNamzfFX1jP6Eb65U2iWNnREq3oBbbbbbbqDn43mN:5B0TX6z5ZJNiRBbbbbbb443o

Score

N/A

Malware Config

Signatures

Files

c7819359b0317b4ad5941993d662e6ce4b405bcabe93e04dde56d045b4841b97
.exe windows x86

ee6e9ae954be05eb7c5472ee57b86197

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

mscms

SetColorProfileHeader
SetStandardColorSpaceProfileA
SetStandardColorSpaceProfileW
SpoolerCopyFileEvent
TranslateBitmapBits
TranslateColors
UninstallColorProfileA
UninstallColorProfileW
UnregisterCMMA
UnregisterCMMW

crypt32

CertFreeCertificateChain
CertFreeCertificateChainEngine
CertFreeCertificateContext
CertGetCRLContextProperty
CertGetCRLFromStore
CertGetCTLContextProperty
CertGetCertificateChain
CertGetCertificateContextProperty
CertGetEnhancedKeyUsage
CertGetIntendedKeyUsage
CertGetIssuerCertificateFromStore

oledlg

OleUIPasteSpecialA
OleUIChangeIconA

polstore

IPSecClosePolicyStore
IPSecClosePolicyStore
IPSecClosePolicyStore
IPSecClosePolicyStore
IPSecClosePolicyStore
IPSecClosePolicyStore
IPSecClosePolicyStore
IPSecClosePolicyStore
IPSecClosePolicyStore
IPSecCopyAuthMethod
IPSecCopyFilterData
IPSecCopyFilterSpec
IPSecCopyISAKMPData
IPSecCopyNFAData
IPSecCopyNegPolData
IPSecCopyPolicyData
IPSecCreateFilterData
IPSecCreateISAKMPData
IPSecCreateNFAData
IPSecCreateNegPolData
IPSecCreatePolicyData
IPSecDeleteFilterData
IPSecDeleteISAKMPData
IPSecDeleteNFAData
IPSecDeleteNegPolData
IPSecDeletePolicyData
IPSecEnumFilterData
IPSecEnumISAKMPData

msvcrt

fopen
fread

kernel32

GetCurrentThread
SetFilePointer
MulDiv
GetOEMCP
GetACP
ExitProcess
GetCommState
GetCommandLineA
GetSystemDirectoryA

atl

AtlAxAttachControl
AtlAxCreateControl
AtlAxCreateControlEx
AtlAxCreateDialogA
AtlAxCreateDialogW
AtlAxDialogBoxA

comsnap

InstallDsExtension

htui

HTUI_ColorAdjustment

regapi

RegWdQueryA
RegWdQueryW
RegCdCreateW
RegCdDeleteA
RegCdDeleteW
RegCdEnumerateA
RegCdEnumerateW
RegCdQueryA
RegCdQueryW
RegCloseServer
RegConsoleShadowQueryA
RegConsoleShadowQueryW
RegDefaultUserConfigQueryA
RegDefaultUserConfigQueryW

icmp

IcmpSendEcho
IcmpCreateFile

Sections

code1
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.PDATA
Size: 9KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_WRITE

.RSRC
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.relpn
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_WRITE

.dAte2
Size: 1024B - Virtual size: 384B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_WRITE

.dAte2
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ee6e9ae954be05eb7c5472ee57b86197

Headers

File Characteristics

Imports

mscms

crypt32

oledlg

polstore

msvcrt

kernel32

atl

comsnap

htui

regapi

icmp

Sections

code1 Size: 9KB - Virtual size: 8KB

.PDATA Size: 9KB - Virtual size: 77KB

.RSRC Size: 27KB - Virtual size: 28KB

.relpn Size: 1024B - Virtual size: 2KB

.dAte2 Size: 1024B - Virtual size: 384B

.dAte2 Size: 512B - Virtual size: 400B

code1
Size: 9KB - Virtual size: 8KB

.PDATA
Size: 9KB - Virtual size: 77KB

.RSRC
Size: 27KB - Virtual size: 28KB

.relpn
Size: 1024B - Virtual size: 2KB

.dAte2
Size: 1024B - Virtual size: 384B

.dAte2
Size: 512B - Virtual size: 400B