e5a06604b9fdc41d837c2c52b036bf52ee38cb4bb2654e4db2049cf7f1851378

General

Target

e5a06604b9fdc41d837c2c52b036bf52ee38cb4bb2654e4db2049cf7f1851378
Size

724KB
MD5

b1292a22e1228055caf674c42307ea5e
SHA1

bbc7343c7a0f5660f2f53e9b65b5f8f8c24fb9e5
SHA256

e5a06604b9fdc41d837c2c52b036bf52ee38cb4bb2654e4db2049cf7f1851378
SHA512

cedd6b4d9d7cb202772fd47692fdf6530b9f8852a16361fe630317a6f275f855044d930053fa0bac742d5a820d77f86926d783faad59952033cda33360015fc1
SSDEEP

12288:4dmFw3nWcJwQSUq/jnB9ux8+hZ3nlnCqxYCOr8eXe:DFUGQfq/F9wjlCq8r8x

Score

N/A

Malware Config

Signatures

Files

e5a06604b9fdc41d837c2c52b036bf52ee38cb4bb2654e4db2049cf7f1851378
.exe windows x86

ad2da2c451864d154bb6b401a2c88a0c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

crypt32

CertFindExtension
CryptEnumOIDInfo
CertDuplicateStore
CertCloseStore
CertAlgIdToOID
CertFreeCRLContext
CertCreateCRLContext
CertOpenStore
CertFindChainInStore
CertSaveStore

cmdial32

CmCustomDialDlg
CmReConnect
AutoDialFunc
CmCustomHangUp

cfgmgr32

CM_Add_IDA
CM_Add_Empty_Log_Conf
CMP_UnregisterNotification
CMP_Report_LogOn

kernel32

lstrcmpiA
GetLogicalDrives
CreateEventW
GetFileType
CloseHandle
GetLocalTime
SetLastError
GetSystemInfo
GetAtomNameW
ReadConsoleA
GetStringTypeA
GetLocaleInfoA
GetFullPathNameW
SetVolumeLabelW
GetModuleHandleA
CopyFileA
GetDiskFreeSpaceA
GetProcessHeap
FindFirstFileA
FormatMessageW
DeleteFileA
GetComputerNameW
GetConsoleAliasW
GetEnvironmentVariableW
VirtualQueryEx
GetTickCount
VirtualQuery
CreateNamedPipeW
GetFileAttributesExA
FileTimeToSystemTime
QueryDosDeviceA
lstrcmpA
SetCurrentDirectoryA
lstrcpynA
CreateMutexA
InterlockedDecrement
GetProcAddress

authz

AuthzFreeAuditEvent
AuthzAddSidsToContext
AuthzFreeResourceManager

user32

DrawIcon
wsprintfA
LoadImageA
GetWindowTextA
PeekMessageA
IsDialogMessageA
DispatchMessageA
DialogBoxParamA
GetWindowLongA
IsCharLowerW
CharToOemA

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 597KB - Virtual size: 597KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad2da2c451864d154bb6b401a2c88a0c

Headers

File Characteristics

Imports

crypt32

cmdial32

cfgmgr32

kernel32

authz

user32

Sections

.text Size: 96KB - Virtual size: 95KB

.data Size: 10KB - Virtual size: 10KB

.rsrc Size: 597KB - Virtual size: 597KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 96KB - Virtual size: 95KB

.data
Size: 10KB - Virtual size: 10KB

.rsrc
Size: 597KB - Virtual size: 597KB

.reloc
Size: 19KB - Virtual size: 18KB