c86fb0d26eed899cd4750a4941a6afc466ab2f62af42db42fe49f7303297951e

Sharing

Copy URL Twitter E-mail

General

Target

c86fb0d26eed899cd4750a4941a6afc466ab2f62af42db42fe49f7303297951e
Size

40KB
MD5

1cce243bae2cdc93e11705de64ba3720
SHA1

cebfffe459e8cfe0fa4e74977dde9faf6056e98c
SHA256

c86fb0d26eed899cd4750a4941a6afc466ab2f62af42db42fe49f7303297951e
SHA512

cfef6329e5d11ed34fbf3444e90c95b46290bdc1d2f64fb3f87c70b6307c9c3aa7ecc198988cebd1198d29205d19d620ed5f0b25ad31a4f0ace1d2617d7798a9
SSDEEP

768:Mz0zeEc9lh2LfAndPNqFOhDoPmbHihX/uF8r4+4cy7f:Mpbo7AnRQoDoeD6X/A8r4+4cS

Score

N/A

Malware Config

Signatures

Files

c86fb0d26eed899cd4750a4941a6afc466ab2f62af42db42fe49f7303297951e
.exe windows x86

59783b0b78a107fd72a5c37a21bb95c9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsValidLocale
CreateRemoteThread
LocalFlags
OutputDebugStringA
HeapSetInformation
MultiByteToWideChar
InterlockedExchangeAdd
Process32NextW
BaseUpdateAppcompatCache
InitializeCriticalSection
WriteProfileStringA
IsDebuggerPresent
FindResourceW
GetProcessHeaps
QueryDosDeviceA
VirtualAlloc
SetTermsrvAppInstallMode
GetEnvironmentStringsW
SetLastError
SetComputerNameExA
GetVolumePathNamesForVolumeNameA
AllocConsole
_hread
GetDateFormatW
GetProcessIoCounters
AreFileApisANSI
EnumUILanguagesA
ExitProcess
GetConsoleCommandHistoryW
FoldStringW
CloseProfileUserMapping
LoadLibraryA
FileTimeToDosDateTime

mapi32

cmc_logoff
MAPIFindNext
HrEntryIDFromSz@12
RTFSync@12
HrAllocAdviseSink@12
FGetComponentPath@20
MAPIFreeBuffer@4
UNKOBJ_COFree@8
MAPIAdminProfiles
DeregisterIdleRoutine@4
cmc_query_configuration
FixMAPI@0
MAPIDeinitIdle@0
ScMAPIXFromCMC
MAPISendDocuments

user32

PackDDElParam
InsertMenuW
GetMonitorInfoA
IsDialogMessageW
WINNLSEnableIME
SwitchToThisWindow
ChangeMenuA
CreateMenu
GetMonitorInfoW
ReasonCodeNeedsBugID
DestroyAcceleratorTable
CreateIconFromResourceEx
SetWindowPos
DeferWindowPos
RemovePropA

olepro32

OleTranslateColor
OleCreatePropertyFrame
OleIconToCursor
OleCreatePictureIndirect
OleLoadPicture
OleCreateFontIndirect
OleCreatePropertyFrameIndirect

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59783b0b78a107fd72a5c37a21bb95c9

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

mapi32

user32

olepro32

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB