11d7ebfc6dd68efb6dda3a7a37c29eaf96b5e154522db9d933e7b20ca978faea

Sharing

Copy URL

Twitter E-mail

General

Target

11d7ebfc6dd68efb6dda3a7a37c29eaf96b5e154522db9d933e7b20ca978faea
Size

528KB
MD5

f51873066eeb8bb1fb5dace075a31f9f
SHA1

c6311b013a66fd5c859199db282d8608a4a0606a
SHA256

11d7ebfc6dd68efb6dda3a7a37c29eaf96b5e154522db9d933e7b20ca978faea
SHA512

5c5f96cb6940585fb8cfb0b7ab2a966e48e34dce0cc7519fb0612964d653230c6b3ad69294c90352ca54c968af374fb73a7b3154b330bdfcbf503021f8b39ee9
SSDEEP

6144:uNmlmQCs6iLszfB5ZPG9bus44yW+lDAA1AkJfDRaI4MtJ81W/9tjHssxViveRVa9:8m/wzHZuZcldAAHfeMVtjHPivAVU

Score

N/A

Malware Config

Signatures

Files

11d7ebfc6dd68efb6dda3a7a37c29eaf96b5e154522db9d933e7b20ca978faea
.exe windows x86

458f360f2ad6fd4de67dac0512661a86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
RtlUnwind
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetProfileStringA
WriteFile
GetCurrentProcess
SetErrorMode
GetOEMCP
GetCPInfo
SizeofResource
GetProcessVersion
GetLastError
WritePrivateProfileStringA
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
lstrcpynA
MulDiv
SetLastError
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
FreeLibrary
VirtualProtect
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetProcAddress
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
CloseHandle
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
GetModuleHandleA
VirtualFree

user32

CopyRect
ScreenToClient
AdjustWindowRectEx
SetFocus
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
SetWindowTextA
LoadStringA
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
DestroyMenu
GetClassNameA
GetSysColorBrush
GetTopWindow
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
SetCursor
PostMessageA
KillTimer
SetTimer
InvalidateRect
GetWindowRect
InflateRect
PtInRect
GetSysColor
LoadIconA
EnableWindow
GetFocus
GetClientRect
DispatchMessageA
TranslateMessage
IsDialogMessageA
UnregisterClassA
HideCaret
ShowCaret
IsIconic
GetSystemMenu
SendMessageA
AppendMenuA
DrawIcon
GetSystemMetrics
PostQuitMessage
DefWindowProcA
LoadCursorA
GetDlgCtrlID
RegisterClassA
CreateWindowExA
ShowWindow
GetMessageA
IsWindowUnicode
CharNextA
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
SetWindowLongA

gdi32

RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
IntersectClipRect
SaveDC
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
DeleteDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetTextExtentPoint32A
CreateRectRgnIndirect
GetObjectA
CreateDIBitmap
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateFontIndirectA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegOpenKeyExA

shell32

ShellExecuteA

comctl32

ord17
_TrackMouseEvent

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 356KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

458f360f2ad6fd4de67dac0512661a86

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 32KB - Virtual size: 40KB

.rsrc Size: 356KB - Virtual size: 352KB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 32KB - Virtual size: 40KB

.rsrc
Size: 356KB - Virtual size: 352KB