cdc26ec98e835784f7ac808eec444edb5a66600db279b567a4b2118d6fab059a

General

Target

cdc26ec98e835784f7ac808eec444edb5a66600db279b567a4b2118d6fab059a
Size

626KB
MD5

d778869849128efeaa9cb106bf71b318
SHA1

1313fcfc759bee71e667afa0c07638674d82fc45
SHA256

cdc26ec98e835784f7ac808eec444edb5a66600db279b567a4b2118d6fab059a
SHA512

0034be3b3e56df8facc017c2c25264b1f1d69a0cb7f19e75e220ceab5772d4ae1d415a42b5e3cfbbcdaf08c2acab63a32bc89d56e40db727c897daa20216bccd
SSDEEP

12288:gBWF6ub8WJBiziBcE6nn/JVBnpXkoA1poFGYPfDiCmuNdhf:n628WJBizgc/JVhaZnoFGYPLiEdV

Score

N/A

Malware Config

Signatures

Files

cdc26ec98e835784f7ac808eec444edb5a66600db279b567a4b2118d6fab059a
.exe windows x86

627b81e4fc4ccf802c676e8c62eea655

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

BeginUpdateResourceW
VirtualAlloc
CreateMailslotA
SetThreadAffinityMask
SystemTimeToTzSpecificLocalTime
TransactNamedPipe
OpenConsoleW
GetTempPathW
GetDateFormatA
GetWindowsDirectoryW

tapi32

lineGetDevConfigA
lineOpenA
tapiGetLocationInfoW
lineConfigDialog
lineInitialize
lineBlindTransferA
lineAccept

msvcrt

strtol
_tell
frexp
strncpy
_strupr
towupper

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 160KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 103KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 67KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 113KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 85KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

627b81e4fc4ccf802c676e8c62eea655

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

tapi32

msvcrt

Sections

.text Size: 36KB - Virtual size: 35KB

.bss Size: 160KB - Virtual size: 254KB

.bss Size: 103KB - Virtual size: 153KB

.idata Size: 67KB - Virtual size: 107KB

.edata Size: 113KB - Virtual size: 192KB

.bss Size: 85KB - Virtual size: 181KB

.rsrc Size: 59KB - Virtual size: 59KB

.text
Size: 36KB - Virtual size: 35KB

.bss
Size: 160KB - Virtual size: 254KB

.bss
Size: 103KB - Virtual size: 153KB

.idata
Size: 67KB - Virtual size: 107KB

.edata
Size: 113KB - Virtual size: 192KB

.bss
Size: 85KB - Virtual size: 181KB

.rsrc
Size: 59KB - Virtual size: 59KB