897fd5874ee93e39b790c656e8e5111c3dceef9950658825a4f20fa267a199d6

General

Target

897fd5874ee93e39b790c656e8e5111c3dceef9950658825a4f20fa267a199d6
Size

1.4MB
MD5

ed62b44b1f04bfa4669e6d614a357a78
SHA1

cf60a19dbc86299191b2edb08969e4b262ec2657
SHA256

897fd5874ee93e39b790c656e8e5111c3dceef9950658825a4f20fa267a199d6
SHA512

c39e8ca929b8c194ac565f7ad0e7c0f9e0e3ea5edf0954b3b564794ca8bd626697d8f3f4d8f10263f9c9a4f65e97e67bb53722df9d8fedfcc0e1293ccf8830fa
SSDEEP

24576:aangJ2ufzYs4om0ElkiQ3fGVUinW4ZMMMMMMMMMMMMMMMMMMJebY0x0qUrNR56Td:hs2AYsiLltVUinpZMMMMMMMMMMMMMMM1

Score

N/A

Malware Config

Signatures

Files

897fd5874ee93e39b790c656e8e5111c3dceef9950658825a4f20fa267a199d6
.exe windows x86

7549e25888c91176f99e3aaab520b42e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeviceIoControl
VirtualAllocEx
HeapSize
IsSystemResumeAutomatic
lstrcpyA
RtlMoveMemory
SetDllDirectoryA
ReleaseSemaphore
GetFileSize
RemoveDirectoryA
CreateNamedPipeA
SetConsoleTextAttribute
LockFileEx
GetDllDirectoryA
GetSystemWindowsDirectoryA
GlobalFix
lstrcmpA
GetEnvironmentVariableA
OpenJobObjectA
CreateProcessA
GetBinaryTypeA
SetFilePointer
PulseEvent
WriteConsoleOutputCharacterA
GetDiskFreeSpaceA
GetCurrentConsoleFont
GetNumberOfConsoleFonts
LoadLibraryExA
FindVolumeMountPointClose
GetProfileStringA
WriteConsoleOutputCharacterA
lstrlenA
GetLastError
WriteFileEx
WritePrivateProfileStringA
ExpandEnvironmentStringsA
GetCurrentDirectoryA
EnumResourceNamesA
GetConsoleAliasExesW
HeapSize
ReleaseMutex
OpenEventA
ClearCommBreak
ConnectNamedPipe

dpmodemx

SPInit

advapi32

CredFree

user32

CharUpperBuffA
OemToCharBuffA
IsCharUpperA
SetMenuContextHelpId
IsDialogMessageA
CreateDesktopA
GetListBoxInfo
GetMenuCheckMarkDimensions
GetKeyboardLayout
GetClassWord
IsCharUpperA
DispatchMessageA
GetUserObjectSecurity
SwitchToThisWindow
GetWindow
ToAscii
GetWindowRgnBox
UpdateLayeredWindow

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 636KB - Virtual size: 989KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 331KB - Virtual size: 330KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7549e25888c91176f99e3aaab520b42e

Headers

File Characteristics

Imports

kernel32

dpmodemx

advapi32

user32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 636KB - Virtual size: 989KB

.data Size: 331KB - Virtual size: 330KB

.rsrc Size: 65KB - Virtual size: 65KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 636KB - Virtual size: 989KB

.data
Size: 331KB - Virtual size: 330KB

.rsrc
Size: 65KB - Virtual size: 65KB