caa0b3269a8862b3770d14c9dbfc5565c6ecdd3d8422e8816d0b3b7e43cb8b59

Sharing

Copy URL Twitter E-mail

General

Target

caa0b3269a8862b3770d14c9dbfc5565c6ecdd3d8422e8816d0b3b7e43cb8b59
Size

42KB
MD5

3cff42cf769425a8f47dfc807a510c52
SHA1

726d518eb29234909f47dbe24a44660d39748a16
SHA256

caa0b3269a8862b3770d14c9dbfc5565c6ecdd3d8422e8816d0b3b7e43cb8b59
SHA512

b0de56965ff282681283392ae3824f3828a18af998abce5a499059a2caeda83703e25b966e2b133fda0d180bdf6c2ddd4bbbf534688d9308bd7a0dcbf86dcc75
SSDEEP

768:udSuuWkOTwv+wNQi+xPC6pEzBe5EA4mLhumBHqr:+jO+ClMPeBeX4mLQmBHqr

Score

N/A

Malware Config

Signatures

Files

caa0b3269a8862b3770d14c9dbfc5565c6ecdd3d8422e8816d0b3b7e43cb8b59
.exe windows x86

b6788254448a91b23e8c4c5137d476e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleDisplayMode
GetConsoleCharType
GetStringTypeExA
AddRefActCtx
FreeUserPhysicalPages
UpdateResourceW
GetLongPathNameA
IsValidCodePage
WriteFileEx
IsBadReadPtr
FindActCtxSectionGuid
LoadLibraryA
VirtualAlloc
WriteConsoleInputW
SetHandleInformation
InitializeCriticalSection
SetUnhandledExceptionFilter
LocalFileTimeToFileTime
GetConsoleProcessList
GetStringTypeW
VirtualFree
WriteProfileSectionA
GetStringTypeA
GetCurrentConsoleFont
FindFirstChangeNotificationW
GetVolumeInformationW

msoert2

HrSafeGetStreamSize
CreateDataObject
CchFileTimeToDateTimeSz
HrIndexOfWeek
PVGetCertificateParam
HrFillRasCombo
HrGetStyleSheet
RicheditStreamOut
IUnknownList_CreateInstance
StripCRLF
HrStreamSeekEnd
HrCreatePhonebookEntry
CleanupFileNameInPlaceW
UlStripWhitespace
HrStreamSeekCur

winmm

mmioStringToFOURCCW
waveOutGetNumDevs
mmsystemGetVersion
mmioStringToFOURCCA
midiDisconnect
mmioRenameA
CloseDriver
mmioClose
mixerMessage
joySetCapture
waveOutSetPitch
mciGetErrorStringA
midiOutPrepareHeader
auxOutMessage
mixerGetID
mmTaskCreate
mciGetYieldProc
waveOutGetErrorTextA
waveInGetPosition
midiInGetDevCapsA
timeGetDevCaps
waveOutOpen
midiInGetNumDevs
waveOutGetPlaybackRate

winscard

SCardAddReaderToGroupW
SCardForgetReaderA
SCardGetAttrib
SCardListCardsW
SCardTransmit
SCardBeginTransaction
SCardIntroduceReaderGroupA
SCardListReadersA
SCardGetStatusChangeA
g_rgSCardT1Pci
SCardForgetReaderW
SCardSetAttrib
SCardSetCardTypeProviderNameA
SCardIntroduceCardTypeA
ClassInstall32
SCardListReaderGroupsW
SCardFreeMemory
SCardStatusA
SCardLocateCardsByATRW

sqlunirl

_GetTabbedTextExtent_@20
_CommConfigDialog_@12
_WinHelp@16
_NDdeTrustedShareEnum_@24
_CallNamedPipe_@28
_BuildCommDCB_@8
_tsystem
_MapVirtualKey_@8
_ChangeServiceConfig_@44
_CreateStatusWindow_@16
_AppendMenu_@16
_ChooseFont_@4
_CreateDC_@16
_CreateDialogIndirectParam@20
_lstrcmp_@8
_NDdeShareAdd_@20
_ShellAbout_@16
_LoadKeyboardLayout_@8
_FindNextFile_@8
_DefineDosDevice_@12

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6788254448a91b23e8c4c5137d476e2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msoert2

winmm

winscard

sqlunirl

Sections

.text Size: 33KB - Virtual size: 32KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 33KB - Virtual size: 32KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB