afea153dafb8876b037df317858e09d0c6ce206eb71dce7922bebddf0f737e93

General

Target

afea153dafb8876b037df317858e09d0c6ce206eb71dce7922bebddf0f737e93
Size

52KB
MD5

8eb6d19a75c83ad4a555e0b7962cfa10
SHA1

c427b6f7962afa52a93ad2870d8a1c7f1f09aceb
SHA256

afea153dafb8876b037df317858e09d0c6ce206eb71dce7922bebddf0f737e93
SHA512

73364efc0f9285e330d6ec34db5bf9bc90e038c12366182e6b24d02f9d05aab3a1a15c61b4f6d69160168c6f8908c2886cd48502d6cc9b5c9aa46e0e4659e645
SSDEEP

768:G3CamtDk5VXsSlsdrFp8qI0nT0yhwu3fGDCDjgRRLcYb:QC9mcesdrFpJ2w93fGDCWb

Score

N/A

Malware Config

Signatures

Files

afea153dafb8876b037df317858e09d0c6ce206eb71dce7922bebddf0f737e93
.exe windows x86

49f3416bcc22db49c29fb140a306ac81

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SearchPathA
GetStartupInfoA
GetProcessHeap
HeapAlloc
FindFirstFileW
CopyFileW
GetLogicalDriveStringsA
OpenSemaphoreA
DeleteFileA
WaitForSingleObjectEx
GetTickCount
LoadLibraryW
WriteConsoleW
OpenMutexW
GetFileSize
GetLocalTime
CreateWaitableTimerA
FileTimeToLocalFileTime
DeviceIoControl
CompareStringA
OpenMutexW
lstrcpynW
FormatMessageA
GetDateFormatA
TlsGetValue
GetProcAddress
GetLastError

dhcpsapi

DhcpCreateOption
DhcpDeleteClass
DhcpCreateSubnet
DhcpCreateClass

ctl3d32

Ctl3dUnregister
Ctl3dRegister
Ctl3dCtlColor
Ctl3dEnabled

esent

JetCommitTransaction
JetBeginTransaction
JetCloseFile
JetCloseTable
JetCloseDatabase

user32

DispatchMessageW
GetMessageA
SetFocus
CharToOemA
DialogBoxParamW
DrawTextA
IsCharLowerW
MessageBoxW
PeekMessageW
IsWindowVisible
PostMessageW
FindWindowW
LoadCursorA
LoadImageA

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49f3416bcc22db49c29fb140a306ac81

Headers

File Characteristics

Imports

kernel32

dhcpsapi

ctl3d32

esent

user32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 20KB - Virtual size: 19KB