cacc7d6cf3238dc97e564e13309d7c319de91ecd6f94ec95a5fc033f56a77f49

General

Target

cacc7d6cf3238dc97e564e13309d7c319de91ecd6f94ec95a5fc033f56a77f49
Size

176KB
MD5

dc783b4848ebf0aa43481861a9765eda
SHA1

b2f220dc192b0346a5181c87b252d20a33dd46b1
SHA256

cacc7d6cf3238dc97e564e13309d7c319de91ecd6f94ec95a5fc033f56a77f49
SHA512

0e7ba90e6e036318773b59a40cf511153082ff6927f6faf591465513a11866214d3b94114c5b8a469c7c09f3b65d481479d883974d286703c2a2e03479445346
SSDEEP

3072:CVQBmeHTYwqU8vfvkVXtW6vKe7/RhrmyeKblt859fzLOCQqk5gdkD:CkHTN2vXF6Ke7/GLilaTLQqigdk

Score

N/A

Malware Config

Signatures

Files

cacc7d6cf3238dc97e564e13309d7c319de91ecd6f94ec95a5fc033f56a77f49
.exe windows x86

9a8665f6064d989fdc492bdb76f311eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winfax

FaxAccessCheck
FaxSetRoutingInfoA
FaxSetJobA
FaxSetGlobalRoutingInfoA
FaxSetConfigurationA
FaxSendDocumentA
FaxSendDocumentForBroadcastA
FaxRegisterServiceProviderW
FaxRegisterRoutingExtensionW
FaxFreeBuffer
FaxEnumRoutingMethodsA
FaxEnumPortsA
FaxEnumJobsA
FaxEnumGlobalRoutingInfoA
FaxAbort
FaxStartPrintJobA
FaxConnectFaxServerA
FaxEnableRoutingMethodA

winhttp

WinHttpWriteData
WinHttpTimeToSystemTime
WinHttpTimeFromSystemTime
WinHttpSetTimeouts
WinHttpSetStatusCallback
WinHttpQueryAuthSchemes
WinHttpOpenRequest
WinHttpOpen
WinHttpGetProxyForUrl
WinHttpConnect
WinHttpCloseHandle
WinHttpCheckPlatform
WinHttpAddRequestHeaders

kernel32

GetTempPathA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetProcAddress
GetOEMCP
GetACP
WriteFile
RtlUnwind
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
HeapReAlloc
VirtualAlloc
HeapFree
VirtualFree
HeapCreate
HeapDestroy
CompareStringW
CompareStringA
GetCPInfo
MultiByteToWideChar
TerminateProcess
GetCurrentProcess
LoadLibraryA
SetTapePosition
lstrlenA
HeapAlloc
GetCommandLineA
GetVersion
ExitProcess

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 799KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a8665f6064d989fdc492bdb76f311eb

Headers

File Characteristics

Imports

winfax

winhttp

kernel32

Sections

.text Size: 20KB - Virtual size: 17KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 72KB - Virtual size: 799KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 20KB - Virtual size: 17KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 72KB - Virtual size: 799KB

.reloc
Size: 8KB - Virtual size: 6KB