54fd83e4337d36d69d9044f595473e1499f10acae37389feea68c97eaec4f2b0

Sharing

Copy URL Twitter E-mail

General

Target

54fd83e4337d36d69d9044f595473e1499f10acae37389feea68c97eaec4f2b0
Size

67KB
MD5

0fe2d0fad866f87b8701a25cc2e8c7f2
SHA1

d02acaec14ee04f72fdaa0d1803228f9ced0f14e
SHA256

54fd83e4337d36d69d9044f595473e1499f10acae37389feea68c97eaec4f2b0
SHA512

377b39668044cb8addd290e1a556b37f8cb9d9461dc419662fdf8cbc69d7141489f1421cda9c68d1d47e918152f5ecf4bde6a8a60ad7f280369ed7e572119814
SSDEEP

1536:rsLqsI0b80cI2aKPjmzhnZBrHaZByIFhtkGJoh0mbOA9ZyPX:rhP0IG2aKPKDsG8k2oh0mbp9Zyv

Score

N/A

Malware Config

Signatures

Files

54fd83e4337d36d69d9044f595473e1499f10acae37389feea68c97eaec4f2b0
.exe windows x86

c2ef275c5016438175214e9ba20c95f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

CreateProxyArpEntry
SetTcpEntry
GetPerAdapterInfo
DeleteIpNetEntry
SetIpNetEntry
InternalSetTcpEntry
SendARP
_PfBindInterfaceToIndex@16
GetIfTable
InternalGetUdpTable
_PfGetInterfaceStatistics@16
GetIpNetTable
NhGetInterfaceNameFromGuid
NotifyRouteChange
SetIpStatistics
UnenableRouter

raschap

RasCpGetInfo
DllRegisterServer
DllGetClassObject
RasEapGetInfo
RasEapFreeMemory
DllCanUnloadNow
RasEapGetIdentity
DllUnregisterServer
RasEapInvokeConfigUI
RasCpEnumProtocolIds
RasEapInvokeInteractiveUI

mprddm

DDMAdminConnectionEnum
DDMAdminServerGetInfo
DDMTransportCreate
DDMDisconnectInterface
DDMAdminPortReset
DDMAdminPortGetInfo
DDMAdminInterfaceDisconnect
DDMAdminConnectionClearStats
DDMAdminPortEnum
DDMConnectInterface
DDMServicePostListens
DDMSendUserMessage
IfObjectNotifyOfReachabilityChange
DDMRegisterConnectionNotification
IfObjectSetDialoutHoursRestriction
DDMServiceInitialize
DDMGetIdentityAttributes
DDMAdminConnectionGetInfo
DDMAdminInterfaceConnect
IfObjectLoadPhonebookInfo
IfObjectInitiatePersistentConnections

user32

WINNLSGetEnableStatus
wvsprintfW
LoadLocalFonts
ScreenToClient
GetWindowTextW
FindWindowA
RegisterShellHookWindow
GetWindowRect
GetWindowTextA
SetShellWindow
GetClientRect
ShowOwnedPopups
UserLpkTabbedTextOut
DialogBoxParamA
LoadImageW
OpenWindowStationA
SendNotifyMessageW
GetDesktopWindow
ShowStartGlass
GetWinStationInfo
SendMessageTimeoutW
SetThreadDesktop
GetForegroundWindow
FindWindowW
SetShellWindowEx
CallMsgFilterW
SetMenu
TranslateMessageEx

uniplat

UnimodemDeviceIoControlEx
DestroyOverStructPool
SetUnimodemTimer
StopMonitoringHandle
AllocateOverStructEx
UmPlatformDeinitialize
UnimodemQueueUserAPC

kernel32

lstrlenA
CreateFileA
GetConsoleTitleA
GetVersion
AddConsoleAliasW
lstrcmpA
GetSystemTime
GetLocalTime
TerminateProcess
CopyFileA
GetCompressedFileSizeA
GetCurrentProcessId
GetCommandLineW
GetACP
VirtualAlloc
lstrcmpW
VirtualFree
CloseHandle
GetFileAttributesW
GetCompressedFileSizeW
GetCurrentThread
GetCommandLineA
GetCurrentThreadId
WriteFile
AddAtomA
GetConsoleTitleW
ReadFile
AddConsoleAliasA
GetStartupInfoW
lstrlenW
GetCurrentProcess
GetFileAttributesA
GetConsoleWindow

serialui

drvCommConfigDialogW
drvCommConfigDialogA
drvSetDefaultCommConfigA
drvGetDefaultCommConfigW
drvGetDefaultCommConfigA
drvSetDefaultCommConfigW

rasdlg

RasDialDlgA
RasPhonebookDlgA
RasSrvAddPropPages
RasUserEnableManualDial
RouterEntryDlgA
RasPhonebookDlgW
RasAutodialQueryDlgA
RasEntryDlgW
RasSrvAllowConnectionsConfig
RasSrvInitializeService
RasSrvCleanupService
GetRasDialOutProtocols
RasSrvHangupConnection
RasDialDlgW
RasSrvIsServiceRunning
RouterEntryDlgW
RasSrvIsConnectionConnected
RasEntryDlgA
RasUserGetManualDial
RasUserPrefsDlg
RasSrvEnumConnections
DwTerminalDlg

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c2ef275c5016438175214e9ba20c95f3

Headers

File Characteristics

Imports

iphlpapi

raschap

mprddm

user32

uniplat

kernel32

serialui

rasdlg

Sections

.text Size: 50KB - Virtual size: 49KB

.rsrc Size: 2KB - Virtual size: 1KB

.data Size: 14KB - Virtual size: 14KB

.text
Size: 50KB - Virtual size: 49KB

.rsrc
Size: 2KB - Virtual size: 1KB

.data
Size: 14KB - Virtual size: 14KB