f1f260389c97aa75fffdc5c6e4674fd43d7bf21f696a94f759cb3a7f0f55f940

Sharing

Copy URL

Twitter E-mail

General

Target

f1f260389c97aa75fffdc5c6e4674fd43d7bf21f696a94f759cb3a7f0f55f940
Size

300KB
MD5

6c6003731a1bd0bc82d74a0d9591a50d
SHA1

0585bd664fe452fe6544ed0fa37989607d630758
SHA256

f1f260389c97aa75fffdc5c6e4674fd43d7bf21f696a94f759cb3a7f0f55f940
SHA512

543d46727905af53506242689f3c5cad6e522b3a37168702b14fcefc2ccaaa21087745e59b71af37e3a9f9d03f85747d8aebc4bbe4de6ff0521d3681e5dd60af
SSDEEP

6144:QMc9HT2Duw3jogrHDPAWS9zqI+x1/arVS/tpeEUx1HmZCtwfl:EM3zrjPAWSNqH1SrVSHtUxvwf

Score

N/A

Malware Config

Signatures

Files

f1f260389c97aa75fffdc5c6e4674fd43d7bf21f696a94f759cb3a7f0f55f940
.exe windows x86

dd90d23d58c70072e6918b921c6ce4c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAddAtomW
GetThreadLocale
GlobalFlags
GetModuleHandleA
InterlockedExchange
ReadFile
GlobalFindAtomW
FlushFileBuffers
GetCurrentProcess
HeapAlloc
GetCommandLineA
HeapFree
GetProcessHeap
GetStartupInfoA
RaiseException
RtlUnwind
HeapReAlloc
HeapSize
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
GetModuleFileNameA
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryA
lstrcmpW
GetVersionExA
GetVersion
InterlockedIncrement
MultiByteToWideChar
GetCurrentThreadId
FormatMessageW
FreeLibrary
InterlockedDecrement
GetModuleHandleW
GetProcAddress
TlsFree
GlobalFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalAlloc
GlobalHandle
GlobalUnlock
GlobalReAlloc
GlobalLock
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalFree
LocalAlloc
lstrlenW
WideCharToMultiByte
GetCurrentProcessId
GetModuleFileNameW
FindResourceW
LoadResource
LockResource
SizeofResource
GetLastError
SetLastError
DeleteFileW
GetWindowsDirectoryW
CloseHandle
DeleteCriticalSection
ResetEvent
VirtualProtectEx
VirtualAlloc
GetTempPathW
CreateFileW
Sleep
WriteFile
VirtualFree
CreateDirectoryW
SetEndOfFile
SetFilePointer
GetFileSize

user32

DrawTextExW
GrayStringW
PostQuitMessage
UnregisterClassA
DrawTextW
TabbedTextOutW
DestroyMenu
ClientToScreen
SetWindowTextW
WinHelpW
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
IsWindow
GetWindowTextW
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
PostMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetWindow
SetMenuItemBitmaps
UnregisterHotKey
BeginDeferWindowPos
DeferWindowPos
EndDialog
OffsetRect
LoadIconW
TranslateMessage
CreateMenu
UnhookWinEvent
WindowFromPoint
SetCapture
RegisterWindowMessageW
GetMessageW
CloseClipboard
MessageBoxW
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetWindowLongW
GetParent
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
EnableMenuItem
CheckMenuItem
LoadCursorW
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
SetWindowsHookExW
CallNextHookEx
DispatchMessageW
GetKeyState
PeekMessageW
ValidateRect
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
UnhookWindowsHookEx
GetWindowThreadProcessId
SendMessageW
IsIconic

gdi32

ExtTextOutW
SaveDC
RestoreDC
SelectObject
SetPixel
StretchBlt
PatBlt
GetTextExtentPoint32W
DeleteObject
SetBkColor
SetTextColor
GetClipBox
SetMapMode
CreateBitmap
SetWindowExtEx
GetStockObject
DeleteDC
GetDeviceCaps
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
TextOutW
RectVisible
PtVisible
ScaleWindowExtEx

ole32

CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoUninitialize

comctl32

ImageList_GetImageCount
ImageList_GetIcon
ImageList_Create
ImageList_EndDrag
ImageList_DragEnter

oleaut32

VariantClear
VariantChangeType
VariantInit

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromPoint
AccessibleObjectFromWindow
GetOleaccVersionInfo

avifil32

AVIFileExit
AVIStreamRelease
AVIFileInit
AVIStreamFindSample
AVIStreamSetFormat
AVIMakeFileFromStreams

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

Sections

.text
Size: 216KB - Virtual size: 215KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 480KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd90d23d58c70072e6918b921c6ce4c0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

comctl32

oleaut32

oleacc

avifil32

winspool.drv

Sections

.text Size: 216KB - Virtual size: 215KB

.rdata Size: 36KB - Virtual size: 33KB

.data Size: 16KB - Virtual size: 480KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 24KB - Virtual size: 21KB

.text
Size: 216KB - Virtual size: 215KB

.rdata
Size: 36KB - Virtual size: 33KB

.data
Size: 16KB - Virtual size: 480KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 24KB - Virtual size: 21KB