f8aaa73053cd4f79729feeac679fdc1b0a9245b16d38c07ade5611c4d8d7df84

Sharing

Copy URL Twitter E-mail

General

Target

f8aaa73053cd4f79729feeac679fdc1b0a9245b16d38c07ade5611c4d8d7df84
Size

854KB
MD5

f89f9a32f2f3efcace91ff63674b3f58
SHA1

fe3d8cd837b429229b81666fd924167326b7daa1
SHA256

f8aaa73053cd4f79729feeac679fdc1b0a9245b16d38c07ade5611c4d8d7df84
SHA512

7ad80095f2506ecb08fdab30194e3f9e484f966fd83d97f73ac0949818d770378101e2396344f7333f7f0a44caa6017652953ddf4f02aa105c33a53445f35c00
SSDEEP

24576:IFWr9VgArBR9qQZrce2kEd7f8HABefrbgoff/8fbUP/43s:WArf91dcHJfLwga38bUP/4

Score

N/A

Malware Config

Signatures

Files

f8aaa73053cd4f79729feeac679fdc1b0a9245b16d38c07ade5611c4d8d7df84
.exe windows x86

5e7cd1a6a8bc71322fa62755e3c813a2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

avifil32

AVIStreamBeginStreaming
AVIStreamOpenFromFileW
EditStreamCut
AVIFileOpenA
AVIFileReadData
AVIGetFromClipboard
AVIFileCreateStream
AVIStreamReadFormat
AVIStreamSampleToTime
EditStreamSetNameW
AVIClearClipboard
EditStreamSetInfoW
AVIStreamFindSample
AVIMakeStreamFromClipboard
AVIStreamSetFormat
AVIFileEndRecord
AVISaveOptions
EditStreamSetName
AVIStreamOpenFromFileA
AVISave
AVIStreamCreate

kernel32

IsValidCodePage
LoadLibraryA
EnumResourceNamesW
SetProcessAffinityMask
CreateSocketHandle
GetCompressedFileSizeW
GlobalFindAtomA
VerSetConditionMask
CreateDirectoryExA
CreateDirectoryExW
GetNumaAvailableMemoryNode
HeapAlloc
QueryDepthSList
Module32Next
VirtualAlloc
GetCurrencyFormatA
GetPrivateProfileStringW
CreateFileA
SystemTimeToFileTime
GetTimeFormatW
GetConsoleProcessList
GetCommState
GetNumberOfConsoleInputEvents
FindCloseChangeNotification
SetDefaultCommConfigW

iphlpapi

GetTcpTable
GetIfTable
DisableMediaSense
_PfBindInterfaceToIndex@16
GetIpAddrTable
Icmp6CreateFile
NhGetInterfaceNameFromDeviceGuid
NhGetInterfaceNameFromGuid
InternalGetTcpTable
InternalSetIpNetEntry
CreateIpNetEntry
DeleteIPAddress
_PfRebindFilters@8
NhGetGuidFromInterfaceName
GetTcpStatisticsEx
GetAdapterOrderMap
do_echo_req
AllocateAndGetIpAddrTableFromStack
RestoreMediaSense
InternalSetIfEntry
SetIpForwardEntry

cfgmgr32

CM_Set_HW_Prof_Flags_ExW
CM_Get_Class_Registry_PropertyA
CM_Register_Device_InterfaceW
CM_Remove_SubTree
CM_Request_Eject_PC
CM_Reenumerate_DevNode
CM_Create_DevNodeA
CM_Delete_Class_Key
CM_Query_Arbitrator_Free_Data_Ex
CM_Connect_MachineW
CM_Get_DevNode_Status
CM_Get_DevNode_Registry_Property_ExW
CM_Connect_MachineA
CM_Get_Class_Name_ExA
CM_Open_Class_KeyA
CM_Get_Next_Res_Des
CM_Get_HW_Prof_Flags_ExA

gdi32

CancelDC
EngFillPath
GdiGetCodePage
FONTOBJ_pQueryGlyphAttrs
ResetDCW
AddFontResourceW
SetStretchBltMode
GdiAddGlsBounds
GetCharWidthFloatW
CopyEnhMetaFileW
DdEntry18
GetBrushAttributes
DdEntry19
DdEntry24
SetTextJustification
GetCharABCWidthsA
EngReleaseSemaphore
GetCharABCWidthsFloatA
GetCharWidthA
GdiGetSpoolMessage
GetTextExtentPointA
GetCharABCWidthsW

raschap

RasCpGetInfo
RasEapGetInfo
RasCpEnumProtocolIds

Sections

.text
Size: 762KB - Virtual size: 762KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e7cd1a6a8bc71322fa62755e3c813a2

Headers

DLL Characteristics

File Characteristics

Imports

avifil32

kernel32

iphlpapi

cfgmgr32

gdi32

raschap

Sections

.text Size: 762KB - Virtual size: 762KB

.rdata Size: 83KB - Virtual size: 82KB

.data Size: 4KB - Virtual size: 1.4MB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 762KB - Virtual size: 762KB

.rdata
Size: 83KB - Virtual size: 82KB

.data
Size: 4KB - Virtual size: 1.4MB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB