c7d147819517b5f96473d6ce26d917156934163b57ea963a28058199bfcef903

Sharing

Copy URL

Twitter E-mail

General

Target

c7d147819517b5f96473d6ce26d917156934163b57ea963a28058199bfcef903
Size

54KB
MD5

827d222f3d77619d5924c3da0abcd881
SHA1

423a711024c1ca82baf9f323a039f4715de9966c
SHA256

c7d147819517b5f96473d6ce26d917156934163b57ea963a28058199bfcef903
SHA512

ec3b51eafbc5ffc2570839097bf115394daf69f0df134baea29c0fb318922a4e92361342e8d88dad61528cc0c82ba2a7cf8892c6d75d43c368945f76ce408534
SSDEEP

768:/99Y7uskb9io5Qb+all+a8gnLPgPleI5SWzIdna6Jp4Xn7cthvEqojVlChD1WtMh:kucOslnnj0oI5SgabJKLuEeN193AG

Score

N/A

Malware Config

Signatures

Files

c7d147819517b5f96473d6ce26d917156934163b57ea963a28058199bfcef903
.exe windows x86

05426cbb816670777601f030a683d046

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetGetUserA
WNetDirectoryNotifyA
WNetSetConnectionA
WNetGetPropertyTextW
WNetGetLastErrorA
I_MprSaveConn
WNetFormatNetworkNameA
WNetGetUserW
WNetConnectionDialog
WNetGetNetworkInformationA
WNetAddConnection3W
WNetSetConnectionW
WNetSetLastErrorW
WNetCancelConnectionW
WNetCloseEnum
WNetAddConnectionA
WNetUseConnectionW
WNetAddConnectionW
WNetSetLastErrorA
WNetConnectionDialog1W
WNetUseConnectionA
MultinetGetConnectionPerformanceW
WNetGetDirectoryTypeA
WNetDisconnectDialog1A
WNetSupportGlobalEnum
WNetGetUniversalNameW

kernel32

FindAtomW
LocalReAlloc
CreateProcessInternalA
GlobalUnlock
GetCurrentThread
WriteFileGather
MapViewOfFile
BaseInitAppcompatCacheSupport
GetEnvironmentVariableA
FindFirstVolumeMountPointA
InitializeCriticalSection
GetConsoleTitleA
RestoreLastError
LoadLibraryA
GetThreadTimes
CreateDirectoryExA
LocalAlloc
CreateTimerQueue
SetLocalTime
GetNumaAvailableMemoryNode
LoadLibraryExW
SetProcessAffinityMask
GetVolumePathNamesForVolumeNameW
SetErrorMode
SetLastConsoleEventActive
GetMailslotInfo
SetTapeParameters
SetUnhandledExceptionFilter
GlobalFlags
VirtualAlloc
GetStartupInfoA
SetStdHandle
HeapCreate
FoldStringW
GetPrivateProfileIntA
IsBadReadPtr
SetConsoleTitleW

mscat32

CryptCATGetAttrInfo
CryptCATAdminAcquireContext
CryptCATCDFEnumMembersByCDFTag
CryptCATCDFEnumCatAttributes
CryptCATCDFEnumMembersByCDFTagEx
CryptCATAdminEnumCatalogFromHash
CryptCATPutCatAttrInfo
CryptCATPersistStore
CryptCATAdminCalcHashFromFileHandle
CryptCATCDFEnumAttributesWithCDFTag
CryptCATEnumerateAttr
CatalogCompactHashDatabase
IsCatalogFile
CryptCATCDFOpen
CryptCATGetMemberInfo
CryptCATVerifyMember
MsCatFreeHashTag
CryptCATEnumerateCatAttr
CryptCATCDFClose
CryptCATClose
CryptCATAdminAddCatalog
CryptCATPutAttrInfo
CryptCATCatalogInfoFromContext
CryptCATAdminReleaseContext
CryptCATOpen
CryptCATCDFEnumAttributes
MsCatConstructHashTag

gdi32

EngLockSurface
GetPolyFillMode
GetFontAssocStatus
GdiCleanCacheDC
SetViewportExtEx
WidenPath
GdiConvertBrush
GetLogColorSpaceW
GdiAlphaBlend
OffsetRgn
DdEntry22
GetOutlineTextMetricsW
GetRegionData
GetBitmapDimensionEx
DdEntry15
EnableEUDC
GdiEntry8
CreateDiscardableBitmap
ExtEscape
DdEntry48
gdiPlaySpoolStream
GetBrushOrgEx
GetObjectW
PATHOBJ_vEnumStart
EngQueryEMFInfo
GdiSetServerAttr
DdEntry13
DeleteMetaFile
HT_Get8BPPFormatPalette
DdEntry14
PathToRegion
CreateSolidBrush
bInitSystemAndFontsDirectoriesW

pdh

PdhBrowseCountersHW
PdhBindInputDataSourceA
PdhEnumMachinesA
PdhGetFormattedCounterArrayA
PdhGetRawCounterArrayA
PdhVbIsGoodStatus
PdhCalculateCounterFromRawValue
PdhGetCounterInfoW
PdhBindInputDataSourceW
PdhTranslateLocaleCounterW
PdhOpenQueryA
PdhSetDefaultRealTimeDataSource
PdhVbGetDoubleCounterValue
PdhAdd009CounterA
PdhEnumLogSetNamesA
PdhLookupPerfIndexByNameW
PdhBrowseCountersW
PdhGetDefaultPerfObjectHA
PdhEnumObjectItemsHW
PdhParseCounterPathW
PdhParseInstanceNameW
PdhEnumObjectItemsA
PdhGetLogFileTypeA
PdhRelogA
PdhVbGetCounterPathElements
PdhEnumObjectsHW
PdhRelogW

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

05426cbb816670777601f030a683d046

Headers

DLL Characteristics

File Characteristics

Imports

mpr

kernel32

mscat32

gdi32

pdh

Sections

.text Size: 42KB - Virtual size: 41KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 512B - Virtual size: 296B

.rsrc Size: 3KB - Virtual size: 23KB

.text
Size: 42KB - Virtual size: 41KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 512B - Virtual size: 296B

.rsrc
Size: 3KB - Virtual size: 23KB