63f48cbce64f4ae6d144e0b46c08fff77c2b33410fd8d70ad3e5b96b18cb689c

General

Target

63f48cbce64f4ae6d144e0b46c08fff77c2b33410fd8d70ad3e5b96b18cb689c
Size

64KB
MD5

cae0e89a9078443ef8bed0e047bcbacf
SHA1

6e731ed2dd8f07eb53d183c6f75156e13c604591
SHA256

63f48cbce64f4ae6d144e0b46c08fff77c2b33410fd8d70ad3e5b96b18cb689c
SHA512

5bf734d722f9543fd0f56427fb17bfec9cd23e70ba5f4bafb33180621806e02c08d3443e1492e55399b6eb046d9b1f105ef0912c5f43a628e9f43757fc1d3a79
SSDEEP

1536:g8vgGNZ7msMN4PJexJIUHp3r/8Avvvvvvvvvvvvvvvvvvvvvvvvvvvv:rXINoUHpj8

Score

N/A

Malware Config

Signatures

Files

63f48cbce64f4ae6d144e0b46c08fff77c2b33410fd8d70ad3e5b96b18cb689c
.exe windows x86

ef02698078367bc79bef12e7420e7aae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

modemui

CountryRunOnce
InvokeControlPanel
drvGetDefaultCommConfigA
drvSetDefaultCommConfigA
drvCommConfigDialogA

user32

FindWindowExA
CharToOemA
PeekMessageA
wsprintfA
DispatchMessageW
IsDialogMessageA
LoadBitmapA
DefDlgProcA
InsertMenuA
LoadStringA
DrawTextW
SetParent
PostMessageW

qutil

AllocConnections
FreeFixupInfo
FreeConnections
AllocFixupInfo

kernel32

GetProcAddress
CreateWaitableTimerW
GetShortPathNameA
SetLastError
DeleteFileA
SearchPathW
LoadLibraryA
GetFileSize
HeapFree
CompareStringA
GetLocaleInfoW
CreateEventA
GetACP
OpenMutexW
CreateSemaphoreW
WaitForSingleObjectEx
WriteConsoleW
CreateDirectoryA
ReadFile
SetEnvironmentVariableA
CreateMutexA
GetDateFormatA
MoveFileA
GetLastError
FormatMessageA
ReplaceFileW

crypt32

CertGetNameStringA
CertAddStoreToCollection
CertCreateCRLContext
CertCloseStore
CertOpenStore
CertDuplicateStore
CertFindChainInStore
CertControlStore
CertFindAttribute
CryptEnumOIDInfo
CertAlgIdToOID
CertSaveStore
CryptFindOIDInfo
CertDuplicateCRLContext
CertCreateContext
CertFindExtension

dhcpsapi

DhcpCreateOption
DhcpDeleteClass
DhcpAddServer
DhcpCreateClass

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef02698078367bc79bef12e7420e7aae

Headers

File Characteristics

Imports

modemui

user32

qutil

kernel32

crypt32

dhcpsapi

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 24KB - Virtual size: 23KB