cd171d12df0d7193ab63f40a160e6aa951218bf6a7fee9c456ae8fc3e370ff17

Sharing

Copy URL Twitter E-mail

General

Target

cd171d12df0d7193ab63f40a160e6aa951218bf6a7fee9c456ae8fc3e370ff17
Size

160KB
MD5

966d17fa499cd08c8464b25dc11d3c4b
SHA1

6f8ac53bd1430dacdf848121e786852d651137ab
SHA256

cd171d12df0d7193ab63f40a160e6aa951218bf6a7fee9c456ae8fc3e370ff17
SHA512

4631c5810a8edcd7d33982496cf87e303550805bfc0f6fe97971a0d2b3fa17b51bcbac53731a3d65e3483ee28e231085f71248c8f86d652249e25a94653e3d5a
SSDEEP

3072:rhJw/8/B8Lzu/s50HHlkR8VTglj3DLdA82IlfM9:rhJwYqLz30HHlkR8V8lfJA82Ilfm

Score

N/A

Malware Config

Signatures

Files

cd171d12df0d7193ab63f40a160e6aa951218bf6a7fee9c456ae8fc3e370ff17
.exe windows x86

6893186efbf453686d4c356bb90c7054

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetUserNameA

comdlg32

FindTextA
ChooseFontA
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

comctl32

PropertySheetA
ImageList_Draw
CreatePropertySheetPageA
ImageList_SetDragCursorImage
ImageList_LoadImageA

mgmtapi

SnmpMgrOidToStr
SnmpMgrCtl

mprapi

MprConfigTransportEnum
MprConfigTransportDelete
MprConfigTransportCreate
MprConfigServerRestore
MprConfigServerRefresh
MprConfigServerInstall
MprConfigServerGetInfo
MprConfigServerConnect
MprConfigServerBackup
MprConfigInterfaceTransportSetInfo
MprConfigInterfaceTransportGetInfo
MprConfigInterfaceTransportGetHandle
MprConfigInterfaceTransportEnum
MprConfigInterfaceGetInfo
MprConfigGetGuidName
MprAdminUserSetInfo
MprAdminUserGetInfo
MprAdminTransportSetInfo
MprAdminTransportGetInfo
MprAdminTransportCreate
MprAdminServerGetInfo
MprAdminServerGetCredentials
MprAdminServerDisconnect
MprAdminServerConnect
MprAdminSendUserMessage
MprAdminRegisterConnectionNotification
MprAdminPortReset
MprAdminPortGetInfo
MprAdminPortEnum
MprAdminPortDisconnect
MprAdminPortClearStats
MprAdminMIBServerDisconnect
MprAdminMIBServerConnect
MprAdminMIBEntrySet
MprAdminMIBEntryGetNext
MprAdminMIBEntryGetFirst
MprAdminMIBEntryGet
MprAdminMIBEntryDelete
MprConfigTransportGetHandle
MprAdminIsServiceRunning
MprAdminInterfaceUpdateRoutes
MprAdminInterfaceUpdatePhonebookInfo
MprAdminInterfaceTransportRemove
MprAdminInterfaceTransportGetInfo
MprAdminInterfaceTransportAdd
MprAdminInterfaceSetInfo
MprAdminInterfaceSetCredentialsEx
MprAdminInterfaceSetCredentials
MprAdminInterfaceQueryUpdateResult
MprAdminInterfaceGetInfo
MprAdminInterfaceGetHandle
MprAdminInterfaceGetCredentialsEx
MprAdminInterfaceGetCredentials
MprAdminInterfaceEnum
MprAdminInterfaceDisconnect
MprAdminInterfaceDelete
MprAdminInterfaceCreate
MprAdminInterfaceConnect
MprAdminGetPDCServer
MprAdminGetErrorString
MprAdminEstablishDomainRasServer
MprAdminDeviceEnum
MprAdminDeregisterConnectionNotification
MprAdminConnectionGetInfo
MprAdminConnectionEnum
MprAdminConnectionClearStats
MprInfoRemoveAll
MprInfoDuplicate
MprInfoDelete
MprInfoCreate
MprInfoBlockSet
MprInfoBlockRemove
MprInfoBlockQuerySize
MprInfoBlockFind
MprInfoBlockAdd
MprConfigTransportSetInfo
MprConfigTransportGetInfo
MprAdminMIBBufferFree

msvcrt

__set_app_type
_except_handler3
_controlfp
__dllonexit
_onexit
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strrchr
malloc
__p__fmode

kernel32

GetProfileStringW
lstrlenA
GetModuleHandleA
GetStartupInfoA
VirtualProtect
VirtualAlloc
VirtualFree
ResetEvent
CopyFileA
CreateDirectoryA
EnterCriticalSection
InitializeCriticalSection
LocalAlloc
LocalFree
CreateEventA
RemoveDirectoryA
GlobalLock
GlobalAlloc
GlobalFree
SetErrorMode

Sections

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 713KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6893186efbf453686d4c356bb90c7054

Headers

File Characteristics

Imports

advapi32

comdlg32

comctl32

mgmtapi

mprapi

msvcrt

kernel32

Sections

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 76KB - Virtual size: 75KB

.data Size: 48KB - Virtual size: 713KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 76KB - Virtual size: 75KB

.data
Size: 48KB - Virtual size: 713KB