b21161366811a20b0ea91afb9d3559828aa2e1480455ef9b42afb01d1fff104f

Sharing

Copy URL

Twitter E-mail

General

Target

b21161366811a20b0ea91afb9d3559828aa2e1480455ef9b42afb01d1fff104f
Size

340KB
MD5

c73cff9e8afd69413185adb5b1ee319b
SHA1

fd0a136d08ede4cb79258252c423de43e1e6f961
SHA256

b21161366811a20b0ea91afb9d3559828aa2e1480455ef9b42afb01d1fff104f
SHA512

cd7196797b00d58bea070260b28824b6852c9f13d9791ee84123b0606d606bc51e2c605bd9a2508ad0cdc510403c77cc3b084bf7491f97892db1e4b093674a41
SSDEEP

3072:ECBz4SUVQjtTOZN6SSahCkK7BWm5+kZXHUjEL9vRo8f5CUkrTL0Cgh6aYgPRx2MX:XqSUWxOIlXZX06CrTIC/m2MJwjz6o2is

Score

N/A

Malware Config

Signatures

Files

b21161366811a20b0ea91afb9d3559828aa2e1480455ef9b42afb01d1fff104f
.exe windows x86

636b65e2d360e5c0a4b8dc1c48072e3b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
TerminateProcess
HeapSize
HeapReAlloc
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
HeapAlloc
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
SetErrorMode
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetLastError
LocalFree
GetTickCount
WritePrivateProfileStringA
GlobalAlloc
lstrcmpA
GetCurrentThread
GlobalFree
GlobalLock
GlobalUnlock
MulDiv
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameA
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
WaitForSingleObject
CloseHandle
CreateEventA
CreateThread
WaitForMultipleObjects
SetEvent
lstrcpynA
GetDriveTypeA
lstrlenA
GetModuleHandleA
SetUnhandledExceptionFilter
GetProcAddress

user32

InvalidateRect
BringWindowToTop
IsZoomed
GetClassNameA
PtInRect
GetSysColorBrush
LoadStringA
PostThreadMessageA
SetTimer
KillTimer
WindowFromPoint
SetRect
GetDCEx
LockWindowUpdate
SetCapture
SetParent
TranslateMessage
ValidateRect
GetCursorPos
SetCursor
ShowOwnedPopups
PostQuitMessage
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
DestroyMenu
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
GetDC
ReleaseDC
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
SetWindowTextA
IsDialogMessageA
UnpackDDElParam
LoadIconA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
GetScrollInfo
SetScrollInfo
GetTopWindow
MessageBoxA
IsChild
GetParent
GetCapture
WinHelpA
wsprintfA
RegisterClassA
GetMenu
TrackPopupMenu
GetDlgItem
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
UnhookWindowsHookEx
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetClientRect
GetSystemMetrics
PostMessageA
ReuseDDElParam
SetMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RegisterClipboardFormatA
GetMessageA
GetMenuDefaultItem
SetMenuDefaultItem
RemovePropA
GetPropA
CallWindowProcA
GetWindowLongA
SetPropA
SetWindowLongA
GetMenuItemID
GetMenuItemInfoA
SetMenuItemInfoA
GetClassInfoA
EnumWindows
UpdateWindow
LoadCursorA
EnableWindow
ScreenToClient
ClientToScreen
SendMessageA
LoadMenuA
InsertMenuA
GetSubMenu
GetMenuStringA
GetMenuState
GetMenuItemCount
AppendMenuA
DeleteMenu
OffsetRect
InflateRect
DrawIconEx
FrameRect
FillRect
DestroyCursor
IsMenu
GetAsyncKeyState
GetMessagePos
EqualRect
UnregisterClassA

gdi32

GetDeviceCaps
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPoint32A
GetTextMetricsA
SetRectRgn
CombineRgn
CreateFontIndirectA
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
CreateRectRgn
IntersectClipRect
CreateSolidBrush
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateRectRgnIndirect
PatBlt
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
BitBlt
CreateCompatibleDC
GetObjectA
CreateCompatibleBitmap
DeleteObject

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey

shell32

DragQueryFileA
DragFinish
SHGetSpecialFolderLocation
SHGetFileInfoA
SHGetPathFromIDListA
SHGetDesktopFolder
SHGetMalloc

comctl32

ord17
ImageList_Destroy

oledlg

ord8

ole32

OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize

winmm

timeKillEvent
timeSetEvent

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

636b65e2d360e5c0a4b8dc1c48072e3b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

winmm

Sections

.text Size: 128KB - Virtual size: 127KB

.rdata Size: 36KB - Virtual size: 32KB

.data Size: 36KB - Virtual size: 50KB

.rsrc Size: 28KB - Virtual size: 24KB

.reloc Size: 108KB - Virtual size: 107KB

.text
Size: 128KB - Virtual size: 127KB

.rdata
Size: 36KB - Virtual size: 32KB

.data
Size: 36KB - Virtual size: 50KB

.rsrc
Size: 28KB - Virtual size: 24KB

.reloc
Size: 108KB - Virtual size: 107KB