6b67ed0c0d2c1aa33368d03340c2e093ab3550138286faa20e499d94e5749d70

Sharing

Copy URL Twitter E-mail

General

Target

6b67ed0c0d2c1aa33368d03340c2e093ab3550138286faa20e499d94e5749d70
Size

43KB
MD5

5d768fc90186bcce7ee909a6ade9ea20
SHA1

1f1fcc8a55d144bc65db86492040274d8d93dc85
SHA256

6b67ed0c0d2c1aa33368d03340c2e093ab3550138286faa20e499d94e5749d70
SHA512

eb37d4cb64fbe27ee7f9f7afec7fdf9323dfacfe38b41364dfc4087d801b68b5d51828cfee107289496d61924a82b05f11d787049b99ffad9af6f3c3bd3c3dfd
SSDEEP

768:wgZNG9wNhoLk+IrXkKK51gQZOeRLZlIKj3sqpSDr0D9y8UA8Y1FW:JQeP5r0KK51+eBZiKzsD30pm4FW

Score

N/A

Malware Config

Signatures

Files

6b67ed0c0d2c1aa33368d03340c2e093ab3550138286faa20e499d94e5749d70
.exe windows x86

904fb11af5450a84b55def86a9970464

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

cmpbk32

PhoneBookUnload
PhoneBookParseInfoA
PhoneBookCopyFilter
PhoneBookEnumNumbers
PhoneBookMatchFilter
PhoneBookGetPhoneDUNA
PhoneBookGetPhoneDispA
PhoneBookEnumNumbersWithRegionsZero
PhoneBookGetPhoneType
PhoneBookEnumRegions
PhoneBookFreeFilter
PhoneBookHasPhoneType
PhoneBookGetCountryNameA
PhoneBookMergeChanges
PhoneBookGetRegionNameA
PhoneBookLoad
PhoneBookGetCurrentCountryId
PhoneBookGetCountryNameW
PhoneBookGetPhoneCanonicalA
PhoneBookEnumCountries
PhoneBookGetPhoneDescA
PhoneBookGetCountryId
PhoneBookGetPhoneNonCanonicalA

clusapi

OpenClusterNode
ClusterRegCloseKey
OnlineClusterGroup
ClusterResourceControl
BackupClusterDatabase
CreateClusterGroup
ClusterResourceTypeOpenEnum
ClusterNetworkOpenEnum
ClusterRegOpenKey
ClusterNodeEnum
GetClusterFromNetInterface
ClusterCloseEnum
ClusterEnum
ClusterResourceOpenEnum
CloseClusterNetwork
AddClusterResourceNode
CloseClusterNotifyPort
ClusterNodeGetEnumCount
OnlineClusterResource
ClusterNodeControl
ChangeClusterResourceGroup
ClusterResourceTypeGetEnumCount
ClusterRegCreateKey
ClusterNodeOpenEnum
OfflineClusterGroup
ClusterGroupEnum
CreateClusterResourceType
EvictClusterNode
CloseClusterNode
ClusterOpenEnum
ClusterResourceTypeCloseEnum
CloseCluster
OpenClusterResource
GetClusterKey
ClusterNetInterfaceControl

kernel32

SizeofResource
EnumLanguageGroupLocalesA
GetNumberFormatW
RemoveDirectoryA
HeapCompact
InitializeSListHead
GetModuleHandleA
LoadLibraryA
VirtualUnlock
CreateTimerQueue
CancelIo
SystemTimeToFileTime
GetConsoleAliasesA
SetConsoleMenuClose
GenerateConsoleCtrlEvent
VirtualAlloc
SetClientTimeZoneInformation
GetConsoleKeyboardLayoutNameW
LoadLibraryExA
GetSystemDefaultUILanguage
CreateHardLinkW
PostQueuedCompletionStatus
BaseCheckAppcompatCache
VirtualQuery
TransmitCommChar
CreateWaitableTimerA
CreateActCtxA
GetCommandLineW
AddConsoleAliasW
FindNextFileA
FindFirstFileExA
GetCurrencyFormatA
DeleteTimerQueueEx
SetLastConsoleEventActive
SetVolumeMountPointW
IsBadStringPtrW
WriteConsoleInputVDMW
GetConsoleAliasExesLengthW
CommConfigDialogA
lstrcmpiA
InterlockedExchange
SetCommMask
CallNamedPipeW
EnumSystemLocalesW
FlushViewOfFile
GetFileTime
RtlZeroMemory
GetProcessVersion
SetConsoleCursorMode
GetFileSize
GetExpandedNameA
FindVolumeMountPointClose
GetCurrentProcessId
DeleteTimerQueue
CmdBatNotification
ClearCommBreak
GetProcessId
UnlockFileEx
DeleteFileA

wdigest

SpInitialize
CredentialUpdateRegister
CredentialUpdateNotify
CredentialUpdateFree
SpUserModeInitialize
SpLsaModeInitialize
SpInstanceInit

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

904fb11af5450a84b55def86a9970464

Headers

DLL Characteristics

File Characteristics

Imports

cmpbk32

clusapi

kernel32

wdigest

Sections

.text Size: 33KB - Virtual size: 32KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 1024B - Virtual size: 558B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 33KB - Virtual size: 32KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 1024B - Virtual size: 558B

.rsrc
Size: 2KB - Virtual size: 1KB