930a4531f43a462999c5f11842daa89047ebfd1afeab22e82fa3f983cd3a4c9a

Sharing

Copy URL

Twitter E-mail

General

Target

930a4531f43a462999c5f11842daa89047ebfd1afeab22e82fa3f983cd3a4c9a
Size

172KB
MD5

73042b3608603b6bb5badf194add0a72
SHA1

ef3bcae3e7c2b6c0d27396e7d0cfb1ec5f5f8532
SHA256

930a4531f43a462999c5f11842daa89047ebfd1afeab22e82fa3f983cd3a4c9a
SHA512

4b72c3ef36d5707eb340b980175ff1d9a246872fa8355cb68e4ec76b5c62fdc9ca194c5ae2dbe743e5c10331f4a081aee21a28fbfcdc80f6210d4c4cb7f685b5
SSDEEP

3072:wUKQ9cqAo50tkwCtMMWdgd7TfvnEjudSv4gtHHGaIHqTWF:T99cqAJCFWyRcoYH1hT

Score

N/A

Malware Config

Signatures

Files

930a4531f43a462999c5f11842daa89047ebfd1afeab22e82fa3f983cd3a4c9a
.exe windows x86

e930bca4085f1950fc1c38ee8d88125b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mgmtapi

SnmpMgrOpen
SnmpMgrClose
SnmpMgrCtl
SnmpMgrRequest

mprapi

MprAdminUserSetInfo
MprAdminUserGetInfo
MprAdminTransportSetInfo
MprAdminTransportGetInfo
MprAdminTransportCreate
MprAdminServerGetInfo
MprAdminServerGetCredentials
MprAdminServerDisconnect
MprAdminServerConnect
MprAdminPortReset
MprAdminPortGetInfo
MprAdminPortEnum
MprAdminPortDisconnect
MprAdminPortClearStats
MprAdminMIBServerDisconnect
MprAdminMIBEntrySet
MprConfigGetGuidName
MprAdminMIBEntryGetFirst
MprAdminMIBEntryGet
MprAdminMIBEntryDelete
MprAdminMIBBufferFree
MprAdminIsServiceRunning
MprAdminInterfaceTransportRemove
MprAdminInterfaceTransportGetInfo
MprAdminInterfaceGetInfo
MprAdminInterfaceGetHandle
MprAdminInterfaceGetCredentialsEx
MprAdminInterfaceGetCredentials
MprAdminInterfaceEnum
MprAdminInterfaceDisconnect
MprAdminInterfaceDelete
MprAdminInterfaceCreate
MprAdminInterfaceConnect
MprAdminGetPDCServer
MprAdminDeregisterConnectionNotification
MprAdminConnectionGetInfo
MprConfigInterfaceCreate
MprConfigInterfaceDelete
MprConfigInterfaceEnum
MprConfigInterfaceGetHandle
MprConfigInterfaceGetInfo
MprConfigInterfaceSetInfo
MprConfigInterfaceTransportAdd
MprConfigInterfaceTransportEnum
MprConfigInterfaceTransportGetHandle
MprConfigInterfaceTransportGetInfo
MprConfigServerGetInfo
MprConfigServerInstall
MprConfigServerRefresh
MprConfigServerRestore
MprConfigTransportGetInfo
MprConfigTransportSetInfo
MprInfoBlockAdd
MprInfoBlockFind
MprInfoDelete
MprInfoDuplicate
MprInfoRemoveAll
MprAdminMIBEntryGetNext

msvcrt

_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_strlwr
malloc

kernel32

GetStartupInfoA
GetModuleHandleA
lstrcmpA
GetComputerNameA
PeekNamedPipe
DuplicateHandle
GetCurrentThread
DeleteFileA
OpenMutexA
CreateMutexA
GetCurrentProcessId
GetFileTime
FindCloseChangeNotification
FindNextChangeNotification
FindFirstChangeNotificationA
GetSystemTimeAsFileTime
GetLocalTime
CreateFileA
CreateDirectoryA
CopyFileA
ResetEvent
VirtualFree
VirtualProtect
VirtualAlloc
SetTapePosition
GetEnvironmentVariableA

Sections

.text
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 563KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e930bca4085f1950fc1c38ee8d88125b

Headers

File Characteristics

Imports

mgmtapi

mprapi

msvcrt

kernel32

Sections

.text Size: 24KB - Virtual size: 20KB

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 48KB - Virtual size: 563KB

.text
Size: 24KB - Virtual size: 20KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 48KB - Virtual size: 563KB