c34ab424815e30ab143aed57a815c0fd53753ed3a1b072b1cc53e4eacaa6e749

Sharing

Copy URL Twitter E-mail

General

Target

c34ab424815e30ab143aed57a815c0fd53753ed3a1b072b1cc53e4eacaa6e749
Size

39KB
MD5

feec014ef985b891ceda4bface40605c
SHA1

9d8d33d2fd859d4ed845dd557bbdcd89451b49ad
SHA256

c34ab424815e30ab143aed57a815c0fd53753ed3a1b072b1cc53e4eacaa6e749
SHA512

158c363e84957eabc14fd592d6668991aa7c6f97949295f916456418b20928404098330863452ca9316dc701088c42551e565d3aaa8ba9be02663701729b50af
SSDEEP

768:WKG110tJka8FuK3XN11/402vUwYfjFj9FAtf88Zl5Ik2fqPm:Vt/8Fd3XN3A1va7Fj9F92l6nEm

Score

N/A

Malware Config

Signatures

Files

c34ab424815e30ab143aed57a815c0fd53753ed3a1b072b1cc53e4eacaa6e749
.exe windows x86

f8ca6d4dfca4e6f81a8d51a4b83944a7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mapi32

ScUNCFromLocalPath@12
cmc_logon
ScDupPropset@16
MNLS_CompareStringW@24
cmc_read
CchOfEncoding@4
LPropCompareProp@8
FBadProp@4
MAPILogoff
BMAPISaveMail
MAPIAllocateMore@12
HrDispatchNotifications@4
cmc_query_configuration
ScRelocProps@20
ScBinFromHexBounded@12
OpenTnefStreamEx@32
FBadPropTag@4
ScCountProps@12
HexFromBin@12

user32

SetDoubleClickTime
GetTabbedTextExtentW
InsertMenuItemW
IsDialogMessage
OffsetRect
DrawIcon
DeviceEventWorker
IsIconic
SetWindowLongA
DragDetect
GetKeyboardState
GetClassInfoA
GetThreadDesktop
CharUpperBuffA
DefWindowProcA
SetDebugErrorLevel
DrawCaption
SetClassWord
SubtractRect
LockWorkStation
SendDlgItemMessageW
CliImmSetHotKey
FreeDDElParam
GetIconInfo
WindowFromPoint
IsMenu
DialogBoxIndirectParamW
RealGetWindowClass

oledlg

OleUIInsertObjectA
OleUIUpdateLinksW
OleUIObjectPropertiesA
OleUIEditLinksA
OleUIConvertA
OleUIChangeIconA
OleUIPromptUserA
OleUIPasteSpecialW
OleUIAddVerbMenuW
OleUIBusyA
OleUIBusyW
OleUIChangeIconW
OleUIPasteSpecialA
OleUIChangeSourceW
OleUIEditLinksW
OleUIChangeSourceA
OleUIInsertObjectW
OleUIPromptUserW
OleUICanConvertOrActivateAs
OleUIAddVerbMenuA
OleUIConvertW
OleUIUpdateLinksA
OleUIObjectPropertiesW

ntdll

NtSetEaFile
RtlNormalizeProcessParams
ZwSetEvent
ZwOpenThreadToken
ZwFlushKey
RtlExpandEnvironmentStrings_U
NtAllocateVirtualMemory
_wtol
ZwResumeThread
NtDebugActiveProcess
LdrVerifyImageMatchesChecksum
sscanf
RtlClearAllBits
NtMapUserPhysicalPages
RtlAbsoluteToSelfRelativeSD
RtlActivateActivationContext
ZwImpersonateClientOfPort
NtSetInformationThread
wcscmp
RtlLeaveCriticalSection
NtOpenThread
NtSetInformationDebugObject
ZwAddAtom
RtlAnsiCharToUnicodeChar
ZwTranslateFilePath
NtYieldExecution
ZwSetSystemInformation
LdrShutdownThread
RtlGetNativeSystemInformation
NtDeleteAtom
ZwLockProductActivationKeys

kernel32

GetOEMCP
DnsHostnameToComputerNameW
GetConsoleTitleA
RemoveDirectoryW
HeapSize
WriteFileGather
GetSystemDefaultUILanguage
LoadLibraryW
SetUnhandledExceptionFilter
HeapCreate
GetCompressedFileSizeW
IsDBCSLeadByteEx
GetDefaultCommConfigA

Sections

.text
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 608B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8ca6d4dfca4e6f81a8d51a4b83944a7

Headers

DLL Characteristics

File Characteristics

Imports

mapi32

user32

oledlg

ntdll

kernel32

Sections

.text Size: 30KB - Virtual size: 30KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 608B

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 30KB - Virtual size: 30KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 608B

.rsrc
Size: 2KB - Virtual size: 2KB