887c26e0b4fae53840ddbd73d377bc04a3080d43793e3b38afeafc9e53b72b0d

Sharing

Copy URL Twitter E-mail

General

Target

887c26e0b4fae53840ddbd73d377bc04a3080d43793e3b38afeafc9e53b72b0d
Size

839KB
MD5

251bd0cb046f471d57c6c4e5ff644133
SHA1

1be4b42447273656cc44ae2cdc64a3bf33569611
SHA256

887c26e0b4fae53840ddbd73d377bc04a3080d43793e3b38afeafc9e53b72b0d
SHA512

d4d1cce8d64a4dd6be8f92fa4859f7247672b28a224a7ef8687d09bc28338cb31a2c0c5e447e57fea7d2612244a870bd3f8020f5ccf3ecd398f547d653f9d030
SSDEEP

24576:Mh4jQBzVjDpdEWiLP6jtjX38MSpuY9UGH:o4SzNDXEnitX3mpulG

Score

N/A

Malware Config

Signatures

Files

887c26e0b4fae53840ddbd73d377bc04a3080d43793e3b38afeafc9e53b72b0d
.exe windows x86

8b18483a03a9aaba6ee13b4313147379

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryActCtxW
RemoveDirectoryW
HeapCreate
EnumSystemGeoID
GetSystemInfo
WaitCommEvent
WideCharToMultiByte
SetTermsrvAppInstallMode
GetExitCodeProcess
GetProcessAffinityMask
CopyFileExW
GetLastError
EnumResourceTypesA
GetProcAddress
GetACP
_lcreat
CallNamedPipeA
GetPrivateProfileIntW
QueryDepthSList
Heap32First
LoadLibraryW
GetExitCodeThread
DosPathToSessionPathW
SetLastError
CloseHandle
GetPrivateProfileStructW
ReplaceFileA
CreateWaitableTimerW

msasn1

ASN1BEREoid2DotVal
ASN1char16string_free
ASN1bitstring_cmp
ASN1DecSetError
ASN1BEREncCharString
ASN1intx_setuint32
ASN1CEREncZeroMultibyteString
ASN1BEREncBool
ASN1BERDecChar32String

mpr

WNetGetConnection3W
WNetGetResourceParentA
WNetGetDirectoryTypeA
WNetGetUniversalNameA
WNetPasswordChangeNotify
MultinetGetConnectionPerformanceA
WNetAddConnectionA
WNetUseConnectionA
WNetFormatNetworkNameA
WNetSupportGlobalEnum
MultinetGetErrorTextA
WNetOpenEnumW
I_MprSaveConn
WNetAddConnection2A
WNetFormatNetworkNameW
WNetGetLastErrorW
WNetSetConnectionW
WNetAddConnection2W
WNetGetSearchDialog
WNetDirectoryNotifyA
MultinetGetErrorTextW
WNetCloseEnum
WNetGetConnection2A
WNetGetUserA
WNetConnectionDialog
WNetEnumResourceW
WNetGetNetworkInformationA
MultinetGetConnectionPerformanceW

msvcrt

_wrmdir
__set_app_type
_outp
raise
__p___mb_cur_max
memcmp
exit
_wrename
__getmainargs
_mbsnset
__p__commode
??2@YAPAXI@Z
_heapwalk
_chdrive

hhsetup

?GetTitle@CLocation@@QAEPADXZ
?GetColNo@CCollection@@QAEKXZ
?GetLangId@CCollection@@QAEGPBG@Z
?GetPath@CLocation@@QAEPADXZ
?GetLanguage@CTitle@@QAEGXZ
?AddLocation@CCollection@@QAEPAVCLocation@@PBG000PAK@Z
?ParseFile@CCollection@@AAEKPBD@Z
??0CFolder@@QAE@XZ
?AddTail@CFIFOString@@QAEKPAD@Z
?GetVersion@CCollection@@QAEKXZ

rpcns4

I_RpcNsRaiseException
RpcNsMgmtEntryInqIfIdsA
RpcNsMgmtEntryInqIfIdsW
RpcNsBindingUnexportPnPW
RpcNsGroupMbrInqNextA
RpcNsProfileDeleteW
I_RpcNsNegotiateTransferSyntax
RpcNsBindingExportA
RpcNsBindingImportBeginW
RpcNsBindingImportBeginA
RpcNsEntryObjectInqNext
RpcNsGroupMbrRemoveW
RpcNsMgmtEntryDeleteW
RpcNsEntryObjectInqBeginW

user32

EndDialog

Sections

.text
Size: 370KB - Virtual size: 369KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 165KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 219KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 860B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b18483a03a9aaba6ee13b4313147379

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msasn1

mpr

msvcrt

hhsetup

rpcns4

user32

Sections

.text Size: 370KB - Virtual size: 369KB

.rdata Size: 82KB - Virtual size: 82KB

.data Size: 165KB - Virtual size: 1.6MB

.rsrc Size: 219KB - Virtual size: 219KB

.reloc Size: 1024B - Virtual size: 860B

.text
Size: 370KB - Virtual size: 369KB

.rdata
Size: 82KB - Virtual size: 82KB

.data
Size: 165KB - Virtual size: 1.6MB

.rsrc
Size: 219KB - Virtual size: 219KB

.reloc
Size: 1024B - Virtual size: 860B