c0acac779d83646207aa342cbb7a7823fdc12842c34c7e294a3939828bf6268c

Sharing

Copy URL Twitter E-mail

General

Target

c0acac779d83646207aa342cbb7a7823fdc12842c34c7e294a3939828bf6268c
Size

823KB
MD5

dd94634b93182478aaff705551464f50
SHA1

7650d07abab76c521917a2229f401fd3ad037fea
SHA256

c0acac779d83646207aa342cbb7a7823fdc12842c34c7e294a3939828bf6268c
SHA512

073923934d346bdbc0be7741a502e1992d02596c868d151c0bfa00d9db5ab526a6e09abb9cb5adb3b68a94506d3d21eb2d761866bfab3c675e7bc9c38cbc138b
SSDEEP

24576:zK0Meb4FVoPqepHG7V0YrS6t+dqUxeU7Vvnq:zK0MebWCqwmiJeUxecQ

Score

N/A

Malware Config

Signatures

Files

c0acac779d83646207aa342cbb7a7823fdc12842c34c7e294a3939828bf6268c
.exe windows x86

8ede394f84c8d6d745bd068a9ced9c08

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetConsoleCtrlHandler
OpenWaitableTimerA
CreateToolhelp32Snapshot
OpenJobObjectA
ConvertFiberToThread
GetCommandLineA
GetFullPathNameA
SetFirmwareEnvironmentVariableA
GetProcessHeaps
VirtualAlloc
DosPathToSessionPathW
ExpandEnvironmentStringsW
ScrollConsoleScreenBufferW
GetDevicePowerState
SetDefaultCommConfigA
GetModuleHandleA
HeapDestroy
GetConsoleAliasA
GetSystemDirectoryA
WaitCommEvent
GetQueuedCompletionStatus
GetEnvironmentVariableA
QueryPerformanceCounter
SetSystemTimeAdjustment
IsBadHugeWritePtr
SetTimerQueueTimer
GetSystemTimeAsFileTime
LoadLibraryA
CreateTimerQueueTimer
GetGeoInfoW
ExitProcess
SetFilePointer
GetMailslotInfo
GetVolumePathNameA
AddLocalAlternateComputerNameW

msasn1

ASN1_CreateModule
ASN1BEREncMultibyteString
ASN1uint32_uoctets
ASN1charstring_free
ASN1utf8string_free
ASN1Free
ASN1BERDecPeekTag
ASN1BEREncLength
ASN1open_free
ASN1BERDotVal2Eoid
ASN1BEREncS32
ASN1BERDecS32Val
ASN1_CreateDecoderEx
ASN1BERDecBitString2
ASN1BERDecNotEndOfContents
ASN1BERDecNull
ASN1BEREncTag
ASN1BEREncUTF8String
ASN1BEREncU32
ASN1BERDecFlush
ASN1_Encode
ASN1_CloseDecoder
ASN1_CloseEncoder2
ASN1BERDecOctetString
ASN1DecAlloc
ASN1BEREncEoid
ASN1BERDecBitString
ASN1BERDecSXVal
ASN1BERDecZeroCharString
ASN1BEREncDouble
ASN1BEREncBitString
ASN1BERDecZeroChar16String
ASN1BEREncGeneralizedTime

gdi32

EngLockSurface
GdiReleaseDC
GetTextExtentExPointWPri
CreateFontIndirectA
DdEntry25
GetCharacterPlacementW
EngDeleteSemaphore
GdiInitSpool
EngTransparentBlt
CreateDIBPatternBrush
GdiGetLocalDC
BRUSHOBJ_pvAllocRbrush
UnrealizeObject
DdEntry1
Pie
GdiAddGlsRecord
GetAspectRatioFilterEx
SelectClipRgn
GetTextFaceA
GetCharWidthFloatW
GetCharABCWidthsW
DdEntry44
CreateBitmap
PatBlt
SetLayoutWidth
InvertRgn
EnumFontFamiliesA
CreateRoundRectRgn
GetRasterizerCaps
SelectClipPath
SetRectRgn

clusapi

ClusterResourceOpenEnum
ClusterRegOpenKey
ClusterControl
GetClusterKey
GetClusterNetInterfaceState
GetClusterGroupKey
CanResourceBeDependent
MoveClusterGroup
OpenClusterResource
ClusterNetworkEnum
SetClusterQuorumResource
OfflineClusterGroup
ClusterGroupOpenEnum
ClusterRegCloseKey
ClusterRegGetKeySecurity
GetClusterResourceTypeKey
SetClusterGroupNodeList
ClusterGroupGetEnumCount
DeleteClusterGroup
ClusterResourceTypeOpenEnum
GetClusterInformation
ClusterGroupControl
SetClusterNetworkPriorityOrder
GetClusterFromResource
ClusterResourceTypeControl

user32

GetScrollRange
GetWindowTextLengthW
CharUpperBuffA
DlgDirListA
DrawEdge
ShowCaret
ReleaseCapture
GetAncestor
IMPSetIMEW
EnumDisplayDevicesW
GetUpdateRect
EnumWindowStationsA
IsCharAlphaNumericW
TranslateMessageEx
RemovePropW
CheckMenuRadioItem
SystemParametersInfoW
DefDlgProcA
LoadCursorFromFileA
DrawTextA
SetUserObjectSecurity
IsClipboardFormatAvailable
DdeConnectList
CreateDialogIndirectParamW
CreateWindowStationW
SetParent
WINNLSGetEnableStatus
GetClassInfoA
PeekMessageW

Sections

.text
Size: 405KB - Virtual size: 405KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 164KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ede394f84c8d6d745bd068a9ced9c08

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msasn1

gdi32

clusapi

user32

Sections

.text Size: 405KB - Virtual size: 405KB

.rdata Size: 114KB - Virtual size: 114KB

.data Size: 164KB - Virtual size: 1.5MB

.rsrc Size: 137KB - Virtual size: 136KB

.reloc Size: 1024B - Virtual size: 972B

.text
Size: 405KB - Virtual size: 405KB

.rdata
Size: 114KB - Virtual size: 114KB

.data
Size: 164KB - Virtual size: 1.5MB

.rsrc
Size: 137KB - Virtual size: 136KB

.reloc
Size: 1024B - Virtual size: 972B