529335d79994ec81a8bf203c17b00fa71a95a14db442ffe92fc8518e23274314

Sharing

Copy URL

Twitter E-mail

General

Target

529335d79994ec81a8bf203c17b00fa71a95a14db442ffe92fc8518e23274314
Size

363KB
MD5

60fba22da0288b3b371193f9973d03ac
SHA1

82bfa2cb2823f846fe40d93cd52333a5f938d061
SHA256

529335d79994ec81a8bf203c17b00fa71a95a14db442ffe92fc8518e23274314
SHA512

0306f231b1a07a915faec74a0cf28d4511272b0125a097fba21e206c7cc865d9de63b7ca075f23e3dddba5d3a86ac40bf96339d9d762a53d6fcb3b3f9719d3dc
SSDEEP

6144:jotHqKArIOB2kRdhnIjEJ8BdODHEcWpqZoZF7LmNsL38cUlXudTx:jKHIrNbnmEJHWpqqZlqNsLMcUh6x

Score

N/A

Malware Config

Signatures

Files

529335d79994ec81a8bf203c17b00fa71a95a14db442ffe92fc8518e23274314
.exe windows x86

6eae74229fd316151ab981eeb9ee7b46

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryW
GetCurrentDirectoryW
GetSystemInfo
Sleep
VirtualProtect
TlsAlloc
GetSystemTimeAsFileTime
TlsSetValue
FindFirstFileW
FindNextFileW
DeleteCriticalSection
CreateFileW
SetEndOfFile
GetFileSize
ReadFile
CloseHandle
SetLastError
GetLastError
LocalAlloc
LocalFree
LoadResource
TlsGetValue
EnterCriticalSection
GlobalLock
GlobalReAlloc
GlobalUnlock
GlobalHandle
GlobalAlloc
InitializeCriticalSection
LocalReAlloc
GlobalFree
TlsFree
GetProcAddress
GetModuleFileNameW
InterlockedDecrement
SizeofResource
LockResource
FreeLibrary
GetCurrentProcessId
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
GetCurrentThreadId
InterlockedIncrement
lstrcmpA
lstrlenA
GetVersionExA
lstrcmpW
LoadLibraryA
LoadLibraryW
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
GlobalFlags
WriteFile
SetFilePointer
FlushFileBuffers
GetCurrentProcess
GetModuleHandleA
HeapAlloc
GetStartupInfoW
HeapFree
RtlUnwind
RaiseException
HeapReAlloc
HeapSize
ExitProcess
GetACP
GetOEMCP
IsValidCodePage
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualFree
VirtualAlloc
HeapCreate
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
GetTickCount
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
GetConsoleCP
GetConsoleMode
CreateFileA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
FindResourceW
GetDateFormatW
GetModuleHandleW
GetVersionExW
OpenProcess
GetSystemTime
GetWindowsDirectoryW
QueryPerformanceCounter
GetCPInfo
FormatMessageW
SetSystemPowerState
LeaveCriticalSection

user32

UnhookWinEvent
GetFocus
GetCursorPos
CallWindowProcW
GetWindowTextLengthW
GetClassInfoExW
AppendMenuW
RegisterClassExW
GetSysColor
GetKeyNameTextW
DrawEdge
DrawIconEx
IsDlgButtonChecked
SetFocus
UnhookWindowsHookEx
MessageBoxW
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetWindowLongW
GetParent
SendMessageW
GetWindowThreadProcessId
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
ValidateRect
PeekMessageW
GetKeyState
DispatchMessageW
CallNextHookEx
SetWindowsHookExW
GetSysColorBrush
ReleaseDC
GetDC
GetSystemMetrics
LoadCursorW
GetWindowTextW
CheckMenuItem
EnableMenuItem
ModifyMenuW
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetWindow
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
SetWindowPos
SetWindowLongW
GetMenu
DefWindowProcW
GetDlgCtrlID
PtInRect
CopyRect
AdjustWindowRectEx
RegisterClassW
GetClassInfoW
CreateWindowExW
PostMessageW
GetClientRect
SetForegroundWindow
SetMenu
MapWindowPoints
GetMessagePos
GetMessageTime
DestroyWindow
GetTopWindow
GetDlgItem
GetForegroundWindow
IsWindow
RemovePropW
GetPropW
SetPropW
GetClassNameW
GetClassLongW
GetCapture
WinHelpW
LoadIconW
RegisterWindowMessageW
SetWindowTextW
ClientToScreen
DestroyMenu
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
PostQuitMessage

winspool.drv

AddPrinterConnectionW
OpenPrinterW
DocumentPropertiesW
ClosePrinter

comctl32

CreatePropertySheetPageW
PropertySheetW
ImageList_SetDragCursorImage

comdlg32

ChooseColorW
GetSaveFileNameW
GetOpenFileNameW

ole32

OleInitialize
OleUninitialize
CoRegisterSurrogate
CoInitialize
OleSetContainedObject

oleaut32

VariantInit
VariantChangeType
VariantClear

shlwapi

PathFileExistsW
PathIsDirectoryW
PathCanonicalizeW
PathFindFileNameW

advapi32

RegOpenKeyExW
RegQueryValueExW
AllocateAndInitializeSid
FreeSid
OpenProcessToken
StartServiceCtrlDispatcherW
InitializeSecurityDescriptor
RegEnumKeyW
RegSetValueExW
RegisterServiceCtrlHandlerW
SetEntriesInAclW
SetSecurityDescriptorDacl
SetServiceStatus
CreateServiceW
GetTokenInformation
LookupPrivilegeValueW
OpenSCManagerW
OpenServiceW
OpenThreadToken
QueryServiceStatus
RegCloseKey

uxtheme

CloseThemeData
DrawThemeText
OpenThemeData

oleacc

LresultFromObject
CreateStdAccessibleObject
GetOleaccVersionInfo
AccessibleObjectFromPoint

wsnmp32

ord999
ord906
ord905
ord904
ord903
ord902
ord901
ord900
ord606
ord605
ord604
ord603
ord602
ord601
ord600
ord504
ord503
ord502
ord501
ord500
ord402
ord401
ord400
ord320
ord302
ord301
ord300
ord222
ord221
ord220
ord206
ord205
ord204
ord203
ord202
ord201
ord200
ord120
ord107
ord106
ord105
ord104
ord103
ord102

gdi32

SetMapMode
GetStockObject
RestoreDC
SaveDC
ExtTextOutW
GetDeviceCaps
CreateBitmap
GetClipBox
SetTextColor
SetBkColor
DeleteObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
RectVisible
PtVisible

Sections

.text
Size: 253KB - Virtual size: 253KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6eae74229fd316151ab981eeb9ee7b46

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

winspool.drv

comctl32

comdlg32

ole32

oleaut32

shlwapi

advapi32

uxtheme

oleacc

wsnmp32

gdi32

Sections

.text Size: 253KB - Virtual size: 253KB

.rdata Size: 40KB - Virtual size: 40KB

.data Size: 15KB - Virtual size: 1.7MB

.rsrc Size: 19KB - Virtual size: 18KB

.reloc Size: 33KB - Virtual size: 33KB

.text
Size: 253KB - Virtual size: 253KB

.rdata
Size: 40KB - Virtual size: 40KB

.data
Size: 15KB - Virtual size: 1.7MB

.rsrc
Size: 19KB - Virtual size: 18KB

.reloc
Size: 33KB - Virtual size: 33KB