882b11868ea284eec1925a792120f5f5855646191b0c34478f03751deb67417e

Sharing

Copy URL

Twitter E-mail

General

Target

882b11868ea284eec1925a792120f5f5855646191b0c34478f03751deb67417e
Size

849KB
MD5

edb855e2a838dd1a3cb5c6413a0cfddf
SHA1

10aa999f04e80c63751bd1496d438a5923c435bc
SHA256

882b11868ea284eec1925a792120f5f5855646191b0c34478f03751deb67417e
SHA512

d35c06ce58b278d1ed862c06ca50aad09626fb3653269991c4d62f236e50d59ac6d78e1c9222998ac76e1605cad1c8cd890c785f9e8ab1318e5513d2257e28c6
SSDEEP

24576:EUD3C1O5WA+83UnoVDRwDVjRPBYWMRFm6:ND3wH43UnofOub

Score

N/A

Malware Config

Signatures

Files

882b11868ea284eec1925a792120f5f5855646191b0c34478f03751deb67417e
.exe windows x86

887767117f213bd3956b56151fe8da4b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

inetcomm

CreateIMAPTransport
MimeOleGenerateCID
MimeOleUnEscapeStringInPlace
MimeGetAddressFormatW
HrGetAttachIconByFile
MimeOleGetPropA
MimeOleCreateHeaderTable
MimeOleSMimeCapInit
MimeOleSMimeCapsFull
HrFreeAttachData
MimeOleGetBodyPropW
HrSaveAttachToFile
CreateSMTPTransport
MimeOleSMimeCapsFromDlg
MimeOleStripHeaders
MimeOleGetCharsetInfo
MimeOleClearDirtyTree
EssContentHintDecodeEx
HrGetLastOpenFileDirectoryW
MimeOleSetPropW

ntdsapi

DsReplicaAddW
DsBindW
DsReplicaSyncAllW
DsCrackUnquotedMangledRdnA
DsFreePasswordCredentials
DsServerRegisterSpnW
DsQuoteRdnValueW
DsGetDomainControllerInfoW
DsListInfoForServerW
DsListDomainsInSiteA
DsLogEntry
DsAddSidHistoryW
DsWriteAccountSpnW
DsReplicaGetInfoW
DsGetDomainControllerInfoA

avifil32

AVISaveOptions
AVIStreamAddRef
AVIStreamSampleToTime
AVIClearClipboard
EditStreamPaste
AVIFileExit
AVIStreamInfoA
CreateEditableStream
AVIStreamInfoW
AVISave
AVIFileInfo
EditStreamSetInfoW
AVIFileRelease
AVIStreamStart
AVIPutFileOnClipboard
IID_IGetFrame
EditStreamSetInfo
AVISaveVA
AVIStreamGetFrameOpen
AVIFileCreateStreamA
IID_IAVIEditStream

kernel32

GetStringTypeA
lstrcatW
VirtualAlloc
GetCommMask
TransactNamedPipe
DeleteVolumeMountPointW
GetConsoleScreenBufferInfo
GlobalLock
SetConsoleInputExeNameW
SetConsoleCursorInfo
SetCurrentDirectoryA
GlobalUnfix
GetBinaryTypeW
SetConsoleHardwareState
DosDateTimeToFileTime
GetEnvironmentStringsW
SetConsoleNlsMode
DeleteFileA
IsBadReadPtr
GetVolumeNameForVolumeMountPointW
GlobalHandle
LoadLibraryA
BaseFlushAppcompatCache
ExpandEnvironmentStringsW
HeapCreate

cfgmgr32

CM_Unregister_Device_Interface_ExA
CM_Get_Device_IDW
CM_Free_Log_Conf_Ex
CM_Modify_Res_Des
CM_Move_DevNode
CM_Get_Next_Log_Conf
CMP_UnregisterNotification
CM_Add_ID_ExW
CM_Register_Device_Interface_ExW
CM_Invert_Range_List
CM_Add_Range
CM_Get_Resource_Conflict_DetailsW
CM_Free_Log_Conf
CM_Get_HW_Prof_Flags_ExW
CM_Disable_DevNode_Ex
CM_Add_Empty_Log_Conf_Ex
CM_Get_Device_ID_Size_Ex
CM_Get_Class_Name_ExW
CM_Add_IDW
CM_Get_Device_Interface_Alias_ExA
CM_Query_Arbitrator_Free_Data_Ex
CM_Free_Resource_Conflict_Handle
CM_Get_Device_ID_List_Size_ExA
CM_Get_Hardware_Profile_Info_ExA

gdi32

GetDIBits
EngAssociateSurface
GdiGetPageHandle
EngCopyBits
CreateDIBitmap
DdEntry55
SetBrushAttributes
GetWinMetaFileBits
GdiEntry2
DdEntry3
GetFontUnicodeRanges
CopyMetaFileW
SetVirtualResolution
EnumObjects
GetPixelFormat
GetPaletteEntries
GetTextExtentExPointW
GetFontAssocStatus
EngQueryEMFInfo

Sections

.text
Size: 716KB - Virtual size: 715KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

887767117f213bd3956b56151fe8da4b

Headers

DLL Characteristics

File Characteristics

Imports

inetcomm

ntdsapi

avifil32

kernel32

cfgmgr32

gdi32

Sections

.text Size: 716KB - Virtual size: 715KB

.rdata Size: 124KB - Virtual size: 123KB

.data Size: 5KB - Virtual size: 1.4MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 716KB - Virtual size: 715KB

.rdata
Size: 124KB - Virtual size: 123KB

.data
Size: 5KB - Virtual size: 1.4MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB