acae4391fb59ca06efdb1c3244b3fdb1563ea478600aedd432558c1eff3e65e7

Sharing

Copy URL Twitter E-mail

General

Target

acae4391fb59ca06efdb1c3244b3fdb1563ea478600aedd432558c1eff3e65e7
Size

829KB
MD5

b8999e83ffa909906c53b99055c5b981
SHA1

50b87f813e4aca4dc76be5a74ac7300275fd808e
SHA256

acae4391fb59ca06efdb1c3244b3fdb1563ea478600aedd432558c1eff3e65e7
SHA512

4398cc26e1481e29475b12fb3dc61a1f89bc0567ea04ccb4672230a60c6e02567f1c1362707e868a9931b1b141084addaed594dd26e93b32207bdcbcb2cfa4b3
SSDEEP

24576:dUZ4QB70WGw1F0wwIBR1M+iD+va1hHIh:KvAW5qoR1MaY

Score

N/A

Malware Config

Signatures

Files

acae4391fb59ca06efdb1c3244b3fdb1563ea478600aedd432558c1eff3e65e7
.exe windows x86

52f87edafc9421085c4575d49fa10551

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoA
GetTapePosition
GetCurrentThread
ReleaseActCtx
lstrcmpiA
LoadLibraryW
GetDriveTypeA
LocalShrink
FindFirstFileA
GetProfileStringA
GetThreadContext
GetModuleHandleW
EnumResourceLanguagesA
GlobalWire
OpenProcess

user32

GetFocus
EndMenu
MessageBoxExW
GetClipboardFormatNameA
SetMenuDefaultItem
ReasonCodeNeedsComment
FillRect
MessageBoxTimeoutA
SwitchDesktop
GetMenuStringW
DrawTextA
CreateIconFromResource
RegisterHotKey
SetWindowTextA
ToUnicode
CharNextExA
DeferWindowPos
GetMenu

wininet

InternetFindNextFileA
GetUrlCacheEntryInfoW
InternetSetOptionW
HttpEndRequestW
FtpCreateDirectoryA
FtpGetFileW
FtpCommandW
SetUrlCacheConfigInfoA
IncrementUrlCacheHeaderData
ReadUrlCacheEntryStream
InternetAttemptConnect
InternetConnectW
InternetGetCookieW
SetUrlCacheConfigInfoW
HttpQueryInfoW
ShowSecurityInfo
InternetSecurityProtocolToStringA
InternetEnumPerSiteCookieDecisionA
HttpSendRequestExA
ForceNexusLookupExW
InternetTimeFromSystemTimeA

mapi32

HrEntryIDFromSz@12
SwapPword@8
MAPIInitialize
HrSetOmiProvidersFlagsInvalid
BMAPIReadMail
UNKOBJ_FreeRows@8
FtgRegisterIdleRoutine@20
OpenTnefStream
HrIStorageFromStream@16
PropCopyMore@16
FBadRglpszW@8
GetOutlookVersion
MAPIOpenFormMgr@8
HrValidateParameters@8
MAPILogonEx@20
PRProviderInit
FGetComponentPath
InstallFilterHook@4
FtNegFt@8
GetOutlookVersion@0
ScRelocProps@20
MAPIFindNext
MNLS_lstrcmpW@8
ScCountNotifications@12
FPropContainsProp@12
FBadEntryList@4
MAPIReadMail
FEqualNames@8

oleaut32

VarCyFromI1
VariantTimeToDosDateTime
VarCyFromI4
VarUI4FromR8
VarI1FromR8
VarI2FromUI8
VarUI2FromR4
OleCreatePropertyFrame
VarIdiv
VarUI4FromUI2
VarCyFromUI1
VariantTimeToSystemTime
SafeArrayAccessData
SafeArrayRedim

msasn1

ASN1BEREncCheck
ASN1BEREncChar16String
ASN1intx2uint32
ASN1BEREncObjectIdentifier
ASN1BERDecOctetString2
ASN1CEREncBeginBlk
ASN1intxisuint32
ASN1_SetEncoderOption
ASN1_CloseModule
ASN1BERDecU32Val
ASN1CEREncCharString
ASN1char32string_free
ASN1bitstring_cmp
ASN1CEREncChar16String

crypt32

CertEnumSystemStore
RegQueryValueExU
CryptGetOIDFunctionAddress
CryptGetKeyIdentifierProperty
RegEnumValueU
CertFindRDNAttr
CertGetNameStringA
CertControlStore
I_CryptGetDefaultCryptProvForEncrypt
CertCreateCRLContext
CryptImportPKCS8
CertResyncCertificateChainEngine
CertGetStoreProperty
CryptBinaryToStringW
CertGetIntendedKeyUsage
CertAddStoreToCollection
CertCompareIntegerBlob
CryptSignHashU
RegCreateHKCUKeyExU
CertAddEncodedCRLToStore
CryptVerifySignatureU
CertVerifyCRLRevocation
CertCreateCertificateContext
CertDeleteCRLFromStore
CertOpenSystemStoreW
CryptBinaryToStringA
CertGetPublicKeyLength
CertGetCertificateContextProperty

Sections

.text
Size: 376KB - Virtual size: 376KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 197KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 844B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52f87edafc9421085c4575d49fa10551

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

wininet

mapi32

oleaut32

msasn1

crypt32

Sections

.text Size: 376KB - Virtual size: 376KB

.rdata Size: 138KB - Virtual size: 138KB

.data Size: 197KB - Virtual size: 1.5MB

.rsrc Size: 115KB - Virtual size: 115KB

.reloc Size: 1024B - Virtual size: 844B

.text
Size: 376KB - Virtual size: 376KB

.rdata
Size: 138KB - Virtual size: 138KB

.data
Size: 197KB - Virtual size: 1.5MB

.rsrc
Size: 115KB - Virtual size: 115KB

.reloc
Size: 1024B - Virtual size: 844B