ef64307d3aadcaa7bc8a9461fdb8d1ac8c8df6fa270565f8258de5d9d5d9b0f3

Sharing

Copy URL Twitter E-mail

General

Target

ef64307d3aadcaa7bc8a9461fdb8d1ac8c8df6fa270565f8258de5d9d5d9b0f3
Size

162KB
MD5

1eab9f5d85698b3dbb79785bfaf9f330
SHA1

202cc4b956c5e2d12304e3ae2084bc3841842e0d
SHA256

ef64307d3aadcaa7bc8a9461fdb8d1ac8c8df6fa270565f8258de5d9d5d9b0f3
SHA512

8160e147f0d9d9ace180443c7c57538e7b6aede48f4e566ac8ab86fc6975c6fb5b223ffffc93392a283f8348d0af28a97fd006c476693de6edda6f28d1ff48a9
SSDEEP

3072:Ba4LTcdC4paDlyCXHIBqZMa6Y0brrAdReXF1WvO3n/AeGwcfSqfIqp:04LTn8+yE/ZMa6frAqXqWPxGwc3f1

Score

N/A

Malware Config

Signatures

Files

ef64307d3aadcaa7bc8a9461fdb8d1ac8c8df6fa270565f8258de5d9d5d9b0f3
.exe windows x86

27b2a158f10c82c0fef8862de7b9c27a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetProfileStringW
LoadLibraryW
GetSystemDefaultLCID
SetConsoleHardwareState
ZombifyActCtx
FreeEnvironmentStringsW
AddConsoleAliasA
AddLocalAlternateComputerNameA
DebugSetProcessKillOnExit
TransactNamedPipe
GetNativeSystemInfo
GetPrivateProfileSectionW
GlobalUnfix
SetThreadContext
LocalAlloc
FindFirstFileExW
BackupRead
GetStartupInfoW
GlobalGetAtomNameW
lstrlen
GlobalCompact
GetDiskFreeSpaceExW
UnregisterWaitEx
GetCPInfo
GetBinaryTypeA
CommConfigDialogA

polstore

IPSecCopyFilterData
IPSecCopyNegPolData
IPSecCopyAuthMethod
IPSecImportPolicies
IPSecGetAssignedPolicyData
IPSecSetFilterData
IPSecDeleteFilterData
IPSecSetPolicyData
IPSecDeleteISAKMPData

olecli32

DefCreateFromClip
OleGetLinkUpdateOptions
OleEnumObjects
WEP
OleQueryCreateFromClip
LeUpdate
ErrQueryOpen
OleRequestData
BmChangeData
OleIsDcMeta
SetNextNetDrive
LeEnumFormat
ErrExecute
OleCreateLinkFromFile
OleQuerySize
LeReconnect
LeSetUpdateOptions
OleRevertClientDoc
ObjQueryName
MfGetData
OleQueryOutOfDate
DibClone
BmRelease
ErrSetUpdateOptions
LeChangeData

winscard

SCardIntroduceReaderA
SCardControl
SCardListInterfacesA
SCardBeginTransaction
SCardGetStatusChangeA
SCardConnectW
SCardGetAttrib
SCardForgetReaderGroupW
SCardFreeMemory
SCardGetCardTypeProviderNameA
SCardGetProviderIdA
SCardIntroduceCardTypeA
SCardCancel
SCardIntroduceReaderGroupA
SCardReleaseStartedEvent
SCardListReaderGroupsA
SCardIntroduceReaderW
SCardTransmit
SCardRemoveReaderFromGroupW
SCardListReaderGroupsW
SCardGetCardTypeProviderNameW

gdi32

UpdateColors
GetCharABCWidthsA
SetPaletteEntries
StartDocA
CloseMetaFile
GdiGetPageHandle
EngGetCurrentCodePage
SetICMProfileA
DdEntry33
EngLineTo
GetFontAssocStatus
EngStretchBltROP
PlayMetaFileRecord
GetDeviceCaps
EngCreateSemaphore
GetCharWidth32A
DdEntry16
GdiConvertToDevmodeW

msvcrt

memmove
_abnormal_termination
_ismbstrail
__set_app_type
__p__wcmdln
_set_SSE2_enable
_ctype
frexp
_amsg_exit
wcsrchr
log10
_strnicmp
__getmainargs
_wcsset
exit
fwscanf
_adj_fprem1
_lrotr
__p__commode
_mbctohira
___mb_cur_max_func
puts
_sleep

imm32

ImmLockImeDpi
ImmIsIME
ImmIMPGetIMEW
ImmRegisterWordW
ImmAssociateContext
ImmGetVirtualKey
ImmNotifyIME
ImmSendIMEMessageExW
ImmGetDefaultIMEWnd
ImmEnumRegisterWordA
ImmWINNLSEnableIME
ImmGetCompositionFontA
ImmGetRegisterWordStyleA
ImmEscapeA

user32

DefWindowProcW
PostQuitMessage
RegisterClassW

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 46B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27b2a158f10c82c0fef8862de7b9c27a

Headers

File Characteristics

Imports

kernel32

polstore

olecli32

winscard

gdi32

msvcrt

imm32

user32

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 16KB - Virtual size: 16KB

.rdata Size: 512B - Virtual size: 46B

.data Size: 27KB - Virtual size: 27KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 16KB - Virtual size: 16KB

.rdata
Size: 512B - Virtual size: 46B

.data
Size: 27KB - Virtual size: 27KB

.rsrc
Size: 1KB - Virtual size: 1KB