9a05356c293376baf50a782261a9dd1625a63e56a2c7066c579122513d9a9e24

General

Target

9a05356c293376baf50a782261a9dd1625a63e56a2c7066c579122513d9a9e24
Size

89KB
MD5

a9d0faa637f76df89e5e1f9c1e9e630a
SHA1

5166f98572d6cca69860b177c2dc5870e189a939
SHA256

9a05356c293376baf50a782261a9dd1625a63e56a2c7066c579122513d9a9e24
SHA512

e9d25c55c75d217ba4c461b57437ee1d56eea9087fd36345df228fe88555e75b905b6a454030dc3e07981d386a6cbcaf3a23e704cf6451da9d035c30d68e6f53
SSDEEP

1536:49yJ1qYd212epSBvOmhykuAopr4p2zVw0UyC3fwmgpDPGmB7KwdyVSmEH3Pbe:49ytwPpSBGcK0gRwdRgp7vNssmEH3Pbe

Score

N/A

Malware Config

Signatures

Files

9a05356c293376baf50a782261a9dd1625a63e56a2c7066c579122513d9a9e24
.exe windows x86

20dabdd40987a95b1dfff799684b29ed

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitThread
EraseTape
GetFullPathNameA
GetSystemTimeAsFileTime
CallNamedPipeA
FreeLibrary
GetModuleHandleA
GetCurrentDirectoryA
GetLastError
SetFilePointerEx
GetCompressedFileSizeA
VerSetConditionMask
GetTempFileNameW
FileTimeToLocalFileTime
GetProfileSectionA
WaitForSingleObjectEx

tapi32

tapiRequestMakeCall
phoneShutdown
lineGetCountryA
lineGetAddressCapsW
lineGetAddressStatusW
phoneGetButtonInfoW
lineGetAppPriorityW
lineConfigProvider
lineSetCallTreatment
lineSetAppPriorityW
lineAddProviderW
lineGetAddressStatusA
lineSetupConference
lineHandoffW
lineSetAppSpecific

msvcrt

div
_mbsnbcat
_chkesp
_creat
wcstod
_CIlog10
memcpy
_wspawnl
_getcwd
_ismbbkprint
strncat
_wgetdcwd
_fileno
__unDNameEx
tmpfile

winmm

wod32Message
midiStreamOpen
waveOutGetErrorTextW
midiConnect
waveInReset
WOW32ResolveMultiMediaHandle
waveOutGetErrorTextA
mixerGetLineControlsW
aux32Message

opengl32

glTexCoord4i
glGetPointerv
glMap1f
glAreTexturesResident
glRasterPos3s
glColor3ubv
wglDeleteContext
glAlphaFunc

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20dabdd40987a95b1dfff799684b29ed

Headers

File Characteristics

Imports

kernel32

tapi32

msvcrt

winmm

opengl32

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 78KB - Virtual size: 78KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 20B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 78KB - Virtual size: 78KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 20B