5a22bba8f4aab1189845dc26ab27c24777cc2f5b7f6c15bca20957502d5e8aa7

Sharing

Copy URL Twitter E-mail

General

Target

5a22bba8f4aab1189845dc26ab27c24777cc2f5b7f6c15bca20957502d5e8aa7
Size

46KB
MD5

03372c1f500b76acbd592a5ec0d992ac
SHA1

6ddda97a70749f143a7361a61e35fcf1b27e9966
SHA256

5a22bba8f4aab1189845dc26ab27c24777cc2f5b7f6c15bca20957502d5e8aa7
SHA512

ef1918850341b3eb730c4c30651b4c25fe7aae08fb259fb1992126c8e907c95b109e90508dee0beefbff43f7da8d5c77125fbbed418a417e20b3aad5e43b9721
SSDEEP

768:rHHfaAh2RRRRMjeMQQlwk80/yQBLRuXL8FtrbwVsCKCLY5UenAgjWPiBN:rfaAYRnRkjwv0Kc0XLI8VsCKCLYGMAgF

Score

N/A

Malware Config

Signatures

Files

5a22bba8f4aab1189845dc26ab27c24777cc2f5b7f6c15bca20957502d5e8aa7
.exe windows x86

550e727669384ed74ff7cb8957f26e60

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

inetcomm

EssReceiptRequestEncodeEx
MimeEditDocumentFromStream
HrSaveAttachmentAs
MimeEditViewSource
MimeOleGenerateFileName
EssMLHistoryDecodeEx
HrGetLastOpenFileDirectoryW
CreatePOP3Transport
EssSecurityLabelEncodeEx
MimeOleParseRfc822Address
MimeOleGetFileExtension
MimeOleSetPropA
MimeOleGetFileInfoW
MimeOleGetCodePageCharset
EssReceiptEncodeEx
MimeEditCreateMimeDocument
MimeOleEncodeHeader
MimeOleGetInternat
MimeOleCreateHeaderTable
EssKeyExchPreferenceDecodeEx
CreateNNTPTransport
HrAthGetFileNameW
MimeOleAlgStrengthFromSMimeCap
MimeOleSetBodyPropA
HrGetAttachIconByFile
MimeOleSMimeCapAddSMimeCap
MimeOleGetBodyPropA
MimeOleParseRfc822AddressW
GetDllMajorVersion
MimeOleCreateSecurity
MimeOleSetBodyPropW
MimeOleGetPropA
MimeOleCreateVirtualStream
MimeOleGetFileInfo
EssReceiptDecodeEx

gdi32

GetStretchBltMode
GdiConsoleTextOut
GdiEntry13
GdiTransparentBlt
Arc
OffsetWindowOrgEx
CopyMetaFileW
SetBitmapAttributes
GetNearestPaletteIndex
GdiConvertMetaFilePict
GetStockObject
CreateEnhMetaFileA
DdEntry27
GetDCBrushColor
FONTOBJ_pxoGetXform
TextOutW
GetMetaFileW
SetPolyFillMode
SetPixel
CreateFontA
EngCreateDeviceSurface
EngLoadModule
CopyEnhMetaFileW
EngMultiByteToWideChar
AddFontResourceExW
StrokePath

kernel32

GetPrivateProfileStructA
SignalObjectAndWait
OpenWaitableTimerW
GetBinaryTypeA
BuildCommDCBW
GetConsoleWindow
WriteProfileSectionW
CreateMailslotA
GetUserDefaultLCID
SetCommConfig
GetTickCount
IsWow64Process
GetShortPathNameA
OpenWaitableTimerA
GetOEMCP
GetCurrentDirectoryW
CreateNamedPipeW
SetFirmwareEnvironmentVariableW
GetLogicalDrives
GetProfileIntA
GetModuleHandleExA
GetDiskFreeSpaceW
DeleteVolumeMountPointW
Module32First
GlobalMemoryStatus
GetLocaleInfoA
LoadLibraryA
SetSystemTime
ReadProcessMemory
WriteConsoleOutputCharacterA
GetMailslotInfo
SetCalendarInfoW
FlushInstructionCache
RegisterConsoleVDM
CallNamedPipeA

comsnap

InstallDsExtension

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

550e727669384ed74ff7cb8957f26e60

Headers

DLL Characteristics

File Characteristics

Imports

inetcomm

gdi32

kernel32

comsnap

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 452B

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 452B

.rsrc
Size: 12KB - Virtual size: 12KB