cd56931255ab11cbc3a15d854713ffc44b162b1f5683e5781553b30c4c5c0894

General

Target

cd56931255ab11cbc3a15d854713ffc44b162b1f5683e5781553b30c4c5c0894
Size

64KB
MD5

f10275599099f9dae40e3f6a0f38d484
SHA1

668648f53b1decf60780f3c63b7a1fe285485345
SHA256

cd56931255ab11cbc3a15d854713ffc44b162b1f5683e5781553b30c4c5c0894
SHA512

65fb1e7f21bd8ba55b374d332e821092986b30895f66c40cc1be082ade88441b70479c9fd505ee8536aa2cb84ecb2f8ffa5e9f5072d3ce88a75230dff5d3a307
SSDEEP

1536:aVsnTDskQtKXZ9Z5alyaYRWIDvchyBcVni:aqnJQtG5gGzxuni

Score

N/A

Malware Config

Signatures

Files

cd56931255ab11cbc3a15d854713ffc44b162b1f5683e5781553b30c4c5c0894
.exe windows x86

aca2bb94f9928b9ae7fa009a5ae506ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

qutil

FreeSoH
AllocConnections
FreeConnections
AllocFixupInfo

user32

IsCharUpperA
InsertMenuA
wsprintfA
GetMessageA
IsDialogMessageA
PeekMessageA
FindWindowExA
LoadImageA
GetClassInfoA
GetKeyNameTextA
DefDlgProcA
CharToOemA

uxtheme

DrawThemeEdge
GetThemeColor
GetThemeTextExtent
CloseThemeData
DrawThemeBackground
GetWindowTheme
GetThemeInt
GetThemeRect
IsThemeActive
GetThemeFont
GetThemeTextMetrics
SetWindowTheme

wtsapi32

WTSVirtualChannelRead
WTSEnumerateSessionsA
WTSEnumerateProcessesA
WTSVirtualChannelClose
WTSQuerySessionInformationA
WTSFreeMemory
WTSVirtualChannelPurgeInput
WTSSendMessageA
WTSQueryUserToken
WTSUnRegisterSessionNotification
WTSLogoffSession

kernel32

GetStartupInfoA
WaitForSingleObjectEx
ReadFile
CreateWaitableTimerW
HeapFree
GetShortPathNameA
GetCurrentDirectoryW
GetLogicalDriveStringsA
GetACP
FileTimeToSystemTime
CreateFileMappingA
InitializeCriticalSection
SetEnvironmentVariableA
CreateSemaphoreW
LoadLibraryA
DeleteFileA
GetCurrentProcess
GetProcAddress
CreateDirectoryA
FindFirstFileA
TlsGetValue

dhcpsapi

DhcpCreateSubnet
DhcpAddServer

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aca2bb94f9928b9ae7fa009a5ae506ad

Headers

File Characteristics

Imports

qutil

user32

uxtheme

wtsapi32

kernel32

dhcpsapi

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 24KB - Virtual size: 22KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 24KB - Virtual size: 22KB