f13460959956559f5fbc32710ccc17adb694915a60736161852f39df799b2ad7

Sharing

Copy URL Twitter E-mail

General

Target

f13460959956559f5fbc32710ccc17adb694915a60736161852f39df799b2ad7
Size

609KB
MD5

c8698b5411c5b0f85fcc126f6ad58760
SHA1

ca098b489810924185fbfc93a6c606dbfc766981
SHA256

f13460959956559f5fbc32710ccc17adb694915a60736161852f39df799b2ad7
SHA512

9dd52a42eea2d21d2edaa1de50d56809692520c4e33c55318b773e360bdd8c32fe093ec5a46b7d0b00c6f8046bb267732d81c9eba2a99043ebb08d781b8e16e0
SSDEEP

12288:BuPxtOsNDILFVvOhKcNCnqN1yyUM86aEcdRY8ee6Iaon:uVwVmh8nMBMEc/YULaO

Score

N/A

Malware Config

Signatures

Files

f13460959956559f5fbc32710ccc17adb694915a60736161852f39df799b2ad7
.exe windows x86

65d0247b6d6185a6b3e736253cb92bea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

atl

AtlAdvise

dhcpsapi

DhcpAuditLogSetParams
DhcpCreateClass
DhcpCreateClientInfo
DhcpCreateClientInfoV4
DhcpCreateOption
DhcpCreateOptionV5
DhcpCreateSubnet
DhcpDeleteClass
DhcpDeleteClientInfo
DhcpDeleteMClientInfo
DhcpDeleteMScope
DhcpDeleteServer
DhcpDeleteSubnet
DhcpDeleteSuperScopeV4
DhcpDsCleanup
DhcpDsClearHostServerEntries
DhcpDsInit
DhcpEnumClasses
DhcpEnumMScopeClients
DhcpEnumMScopeElements
DhcpEnumMScopes
DhcpEnumOptionValues
DhcpEnumOptionValuesV5
DhcpEnumOptions
DhcpEnumOptionsV5
DhcpEnumServers
DhcpEnumSubnetClients
DhcpEnumSubnetClientsV4
DhcpEnumSubnetClientsV5
DhcpEnumSubnetElements
DhcpEnumSubnetElementsV4

kernel32

AllocConsole
CreateFileA
GetWindowsDirectoryA
AllocConsole
DebugBreakProcess
AllocConsole
GetPrivateProfileStringA
IsBadWritePtr
GetCommandLineW

lz32

LZRead

msacm32

acmFormatDetailsW
acmFormatEnumA
acmFormatEnumW
acmFormatSuggest
acmFormatTagDetailsA
acmFormatTagDetailsW
acmFormatTagEnumA
acmFormatTagEnumW
acmGetVersion
acmMessage32
acmMetrics
acmStreamClose
acmStreamConvert
acmStreamMessage
acmStreamOpen
acmStreamPrepareHeader
acmStreamReset
acmStreamSize
acmStreamUnprepareHeader

advpack

AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry
AddDelBackupEntry

Sections

.text
Size: 31KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 266KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 552KB - Virtual size: 556KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

65d0247b6d6185a6b3e736253cb92bea

Headers

File Characteristics

Imports

atl

dhcpsapi

kernel32

lz32

msacm32

advpack

Sections

.text Size: 31KB - Virtual size: 35KB

.data Size: 13KB - Virtual size: 266KB

.rsrc Size: 552KB - Virtual size: 556KB

.text
Size: 31KB - Virtual size: 35KB

.data
Size: 13KB - Virtual size: 266KB

.rsrc
Size: 552KB - Virtual size: 556KB