a4a94f87625f5bc099665348dfcb64babc91ad2fd1ef2a83af63fc0b65214e6c

Sharing

Copy URL

Twitter E-mail

General

Target

a4a94f87625f5bc099665348dfcb64babc91ad2fd1ef2a83af63fc0b65214e6c
Size

334KB
MD5

c356baa39f6526388f56a08b1906d73f
SHA1

6ff195b3a2553784e72374ff622a52fcb6e30945
SHA256

a4a94f87625f5bc099665348dfcb64babc91ad2fd1ef2a83af63fc0b65214e6c
SHA512

8d174b4fd3eae8a601f8f164e6c55afb58aea4b5fb518fe85f1303122e498bc9ffbc24d7c4729ec5960b2568e075509e1741d80154d5f1a3feaa3bd75933061d
SSDEEP

6144:6w7RVgwi0QMev54x19DbqE7byQ5OO/h2Ig/mJZCv8o9oG3OCo1ENTVb+pRk:RYf0/ev529tbReI2mJZCUox41EBVb+pC

Score

N/A

Malware Config

Signatures

Files

a4a94f87625f5bc099665348dfcb64babc91ad2fd1ef2a83af63fc0b65214e6c
.exe windows x86

12fc5f02a380bcfa7b1f39fa570705f9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

msls31

LsDestroySubline
LsEnumSubline
LsSetBreakSubline
LsSetDoc
LsQueryTextCellDetails
LsdnDistribute
LsQueryLineDup
LsMatchPresSubline
LsFetchAppendToCurrentSubline
LsDestroyContext
LsdnSetRigidDup
LsPointXYFromPointUV
LsQueryPointPcpSubline
LsdnFinishByPen
LsFindNextBreakSubline

mprapi

MprAdminTransportGetInfo
MprAdminInterfaceConnect
MprAdminMIBServerConnect
MprConfigServerBackup
MprConfigServerRestore
MprAdminMIBEntryGetNext
MprConfigServerInstall
MprInfoCreate
MprConfigInterfaceGetInfo
MprAdminServerConnect
MprAdminConnectionClearStats
RasPrivilegeAndCallBackNumber
MprAdminTransportSetInfo
MprAdminBufferFree
MprAdminUserOpen
MprInfoBlockRemove

cmutil

??4CIniA@@QAEAAV0@ABV0@@Z
?SetWriteICSData@CIniW@@QAEXH@Z
CmConvertRelativePathW
?GetFile@CIniA@@QBEPBDXZ
?Init@CmLogFile@@QAEJPAUHINSTANCE__@@HPBD@Z
CmLoadStringW
?GetPrimaryRegPath@CIniW@@QBEPBGXZ
?Stop@CmLogFile@@QAEJXZ
?DeInit@CmLogFile@@QAEJXZ
?WPPI@CIniA@@QAEXPBD0K@Z
CmMalloc
??_FCIniA@@QAEXXZ
IsFarEastNonOSR2Win95
CmFmtMsgW
??0CmLogFile@@QAE@XZ
?Start@CmLogFile@@QAEJH@Z
CmLoadImageW
CmWinHelp
?SetFile@CIniA@@QAEXPBD@Z
?CIniW_WriteEntryToReg@CIniW@@IBEHPAUHKEY__@@PBG1PBEKK@Z

kernel32

GetDateFormatA
SetThreadAffinityMask
ReadDirectoryChangesW
SetDefaultCommConfigW
GetCurrentThread
QueueUserWorkItem
SetConsoleCursorPosition
SetConsoleInputExeNameW
GetSystemDefaultLangID
ReadFile
QueryInformationJobObject
RtlFillMemory
VirtualAlloc
GetCurrencyFormatA
LoadLibraryA
GetFullPathNameW
RaiseException
SetThreadExecutionState
GetConsoleCursorInfo
QueryPerformanceCounter
SetCalendarInfoA
GetEnvironmentStringsA
GetStartupInfoA
EscapeCommFunction

user32

SendMessageTimeoutW
DrawIconEx
WindowFromDC
SetCaretBlinkTime
ResolveDesktopForWOW
TileWindows
GetMessageW
AnimateWindow
MessageBoxExW
EnumClipboardFormats
VkKeyScanA
EnableScrollBar
GetKeyboardLayout
GetDCEx
User32InitializeImmEntryTable
CascadeWindows
keybd_event
SwitchToThisWindow
GetUserObjectSecurity
GetSysColor
ReleaseCapture
DdeInitializeA
BroadcastSystemMessage

mpr

WNetEnumResourceW
WNetGetConnectionW
WNetAddConnectionA
WNetSupportGlobalEnum
WNetGetProviderNameW
WNetAddConnection3A
WNetConnectionDialog
WNetGetUserA
WNetGetResourceInformationA
WNetGetConnection3A
WNetClearConnections
WNetGetNetworkInformationW
WNetGetResourceParentW
WNetDisconnectDialog1A
WNetGetLastErrorA
WNetCancelConnectionW
MultinetGetErrorTextW
WNetGetProviderNameA
WNetAddConnection2W
WNetGetConnectionA
WNetOpenEnumW
WNetEnumResourceA
WNetDisconnectDialog1W

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 210KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 403KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

12fc5f02a380bcfa7b1f39fa570705f9

Headers

File Characteristics

Imports

msls31

mprapi

cmutil

kernel32

user32

mpr

Sections

.text Size: 103KB - Virtual size: 102KB

.rdata Size: 210KB - Virtual size: 210KB

.data Size: 1024B - Virtual size: 403KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 103KB - Virtual size: 102KB

.rdata
Size: 210KB - Virtual size: 210KB

.data
Size: 1024B - Virtual size: 403KB

.rsrc
Size: 18KB - Virtual size: 18KB