6e22d47c76efa1c5d2c957a64be877a9901ae188b51a67ea84f382dfb7b9d941

Sharing

Copy URL Twitter E-mail

General

Target

6e22d47c76efa1c5d2c957a64be877a9901ae188b51a67ea84f382dfb7b9d941
Size

33KB
MD5

2432f277030670499c429e6e1a7b4454
SHA1

7afe726933132ccc4456e2fcc6b2a391f104fab2
SHA256

6e22d47c76efa1c5d2c957a64be877a9901ae188b51a67ea84f382dfb7b9d941
SHA512

20177ab948d189582fe16548c4d248fc1ed5e83519adb08c4c557961e87592b002770841bc6d68c6235d3d5210f49ba32dedad14abb2e9a7551cd3dda718595a
SSDEEP

384:iUYe3jQe3KTqdcU1yWBkdZe+y1N1Z+BtES3XbQbXVs3yO5RsQb1bhbum:nNIUhBk3Uf+8bFBk/b1bhb

Score

N/A

Malware Config

Signatures

Files

6e22d47c76efa1c5d2c957a64be877a9901ae188b51a67ea84f382dfb7b9d941
.exe windows x86

f8384c17b2c16392fe6bb0992b0270cf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoDosDateTimeToFileTime
CoEnableCallCancellation
CoFileTimeNow
CoFileTimeToDosDateTime
CoFreeAllLibraries
CoFreeLibrary
CoFreeUnusedLibraries
CoFreeUnusedLibrariesEx
CoGetApartmentID
CoGetCallContext
CoGetCallerTID
CoGetCancelObject
CoGetClassObject
CoGetClassVersion
CoGetComCatalog
CoGetContextToken
CoDosDateTimeToFileTime
CoEnableCallCancellation
CoFileTimeNow
CoFileTimeToDosDateTime
CoFreeAllLibraries
CoFreeLibrary
CoFreeUnusedLibraries
CoFreeUnusedLibrariesEx
CoGetApartmentID
CoGetCallContext
CoGetCallerTID
CoGetCancelObject
CoGetClassObject
CoGetClassVersion
CoGetComCatalog
CoGetContextToken
CoDosDateTimeToFileTime
CoEnableCallCancellation
CoFileTimeNow
CoFileTimeToDosDateTime
CoFreeAllLibraries
CoFreeLibrary
CoFreeUnusedLibraries
CoFreeUnusedLibrariesEx
CoGetApartmentID
CoGetCallContext
CoGetCallerTID
CoGetCancelObject
CoGetClassObject
CoGetClassVersion
CoGetComCatalog
CoGetContextToken
CoDosDateTimeToFileTime
CoEnableCallCancellation
CoFileTimeNow
CoFileTimeToDosDateTime
CoFreeAllLibraries
CoFreeLibrary
CoFreeUnusedLibraries
CoFreeUnusedLibrariesEx
CoGetApartmentID
CoGetCallContext
CoGetCallerTID
CoGetCancelObject
CoGetClassObject
CoGetClassVersion
CoGetComCatalog
CoGetContextToken

netapi32

DsRoleDcAsDc
DsGetDcNextA

msvcrt

fread
fopen

kernel32

QueryDosDeviceA
GetVersionExW
ReadConsoleA
EnumCalendarInfoW
GetTickCount
CallNamedPipeA
SetFileTime
SetLocalTime
GetWindowsDirectoryA

mprapi

CompressPhoneNumber
MprAdminBufferFree
MprAdminConnectionClearStats
MprAdminConnectionEnum
MprAdminConnectionGetInfo
MprAdminDeregisterConnectionNotification

perfctrs

CloseDhcpPerformanceData

httpapi

HttpAddFragmentToCache

msi

MsiLocateComponentW
MsiMessageBoxA
MsiMessageBoxExA
MsiMessageBoxExW
MsiMessageBoxW
MsiNotifySidChangeA
MsiNotifySidChangeW
MsiOpenDatabaseA
MsiOpenDatabaseW
MsiOpenPackageA
MsiOpenPackageExA
MsiOpenPackageExW
MsiOpenPackageW
MsiOpenProductA
MsiOpenProductW
MsiLocateComponentW
MsiMessageBoxA
MsiMessageBoxExA
MsiMessageBoxExW
MsiMessageBoxW
MsiNotifySidChangeA
MsiNotifySidChangeW
MsiOpenDatabaseA
MsiOpenDatabaseW
MsiOpenPackageA
MsiOpenPackageExA
MsiOpenPackageExW
MsiOpenPackageW
MsiOpenProductA
MsiOpenProductW

activeds

ADsEncodeBinaryData
ADsFreeEnumerator

mshtml

CreateHTMLPropertyPage
CreateHTMLPropertyPage

Sections

text
Size: 1KB - Virtual size: 10KB

IMAGE_SCN_MEM_READ

.bss
Size: 10KB - Virtual size: 84KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 496B

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8384c17b2c16392fe6bb0992b0270cf

Headers

File Characteristics

Imports

ole32

netapi32

msvcrt

kernel32

mprapi

perfctrs

httpapi

msi

activeds

mshtml

Sections

text Size: 1KB - Virtual size: 10KB

.bss Size: 10KB - Virtual size: 84KB

.rsrc Size: 17KB - Virtual size: 20KB

.rdata Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 496B

text
Size: 1KB - Virtual size: 10KB

.bss
Size: 10KB - Virtual size: 84KB

.rsrc
Size: 17KB - Virtual size: 20KB

.rdata
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 496B