5b3af8ebaba8a69138082222953c84c56136ea4ccae550efe290b04685a67d21

Sharing

Copy URL

Twitter E-mail

General

Target

5b3af8ebaba8a69138082222953c84c56136ea4ccae550efe290b04685a67d21
Size

254KB
MD5

0ef4fe312fdafc87b0f785e8e69c3ecf
SHA1

7ac2dc2560610f00859c83c33afab23553cb670b
SHA256

5b3af8ebaba8a69138082222953c84c56136ea4ccae550efe290b04685a67d21
SHA512

2da6a733a8fc3063bf03852085fca6d279601f34cb41a07cec4999e61f5ebc9d3f75fa537027fb48c2f9cd098dc4d94636adf49be5fa3491846b3b311715312c
SSDEEP

3072:g6saVpKEwmEVYI4AuYcv4lmZUQkgVvMoApJ0a00aU+G9zjIRRJSj5eS/:gGBEVGlsmKcKy/knIR

Score

N/A

Malware Config

Signatures

Files

5b3af8ebaba8a69138082222953c84c56136ea4ccae550efe290b04685a67d21
.exe windows x86

a067d52fd105fe6527eb8d4d2f0114cf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
LockResource
LoadResource
FindResourceA
CreateFileA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
HeapSize
InitializeCriticalSectionAndSpinCount
HeapReAlloc
VirtualAlloc
GetConsoleMode
GetConsoleCP
SetFilePointer
GetLocalTime
GetModuleHandleA
GetStringTypeW
GetStringTypeA
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
LCMapStringW
GetTimeZoneInformation
TzSpecificLocalTimeToSystemTime
GetVolumeInformationA
lstrlenA
LoadLibraryW
GetProcAddress
HeapAlloc
FindResourceExA
UpdateResourceA
FreeResource
EnumResourceTypesA
GetCurrentProcess
GetLastError
OpenProcess
CloseHandle
Sleep
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
GetLocaleInfoA
LoadLibraryA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapFree
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoA
GetCommandLineA
RtlUnwind
GetCurrentDirectoryA

user32

SetWindowLongA
GetWindowRect
FindWindowExA
SendMessageA
GetDlgItem
CreateWindowExA
SetCursorPos
GetCursorPos
DefFrameProcA
IsWindow
FindWindowA
LoadImageA
GetSubMenu
GetMenu
CreateMenu
MessageBoxW
EndPaint
GetWindowLongA
SendDlgItemMessageA
DefWindowProcA
PostQuitMessage
SetWindowPos
DrawEdge
GetSysColor
DrawTextA
BeginPaint
WaitForInputIdle
ShowWindow
SetForegroundWindow
SetFocus
GetWindowThreadProcessId
SetRect
UnionRect
GetClientRect
CreateWindowExW
SystemParametersInfoA
GetDC
CreateDialogIndirectParamA
GetMessageA
TranslateMessage
DispatchMessageA
GetSystemMetrics
MessageBoxA
CharLowerA
DefDlgProcA

gdi32

CreateCompatibleBitmap
GetDeviceCaps
SelectObject
CreatePen
Polyline
DeleteObject
CreateMetaFileA
Ellipse
SetROP2
CloseMetaFile
SetMapMode
SetWindowExtEx
SetWindowOrgEx
CreateFontIndirectA
GetStockObject
CreateCompatibleDC

winspool.drv

ord201
GetJobA

advapi32

RegCloseKey

shell32

ShellExecuteExA
ord64
SHGetFolderPathW
SHGetFolderPathA

ole32

CoInitializeEx
CoCreateInstance
PropVariantClear
StgCreateStorageEx
StgOpenStorageEx
StringFromGUID2
CoInitialize

ws2_32

gethostbyaddr
inet_addr

psapi

InitializeProcessForWsWatch
GetProcessMemoryInfo
EnumProcesses

mpr

WNetGetConnectionA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA

gdiplus

GdipAlloc
GdipGetImageRawFormat
GdiplusShutdown
GdiplusStartup
GdipCloneImage
GdipLoadImageFromFile
GdipFree
GdipDisposeImage

opengl32

glClear
glLoadIdentity
glBegin
glRotatef
glEnable
glTranslatef
glEnd
glVertex3f
glTexCoord2f

Sections

.text
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a067d52fd105fe6527eb8d4d2f0114cf

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

ws2_32

psapi

mpr

version

gdiplus

opengl32

Sections

.text Size: 78KB - Virtual size: 77KB

.rdata Size: 102KB - Virtual size: 102KB

.data Size: 5KB - Virtual size: 11KB

.rsrc Size: 57KB - Virtual size: 57KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 78KB - Virtual size: 77KB

.rdata
Size: 102KB - Virtual size: 102KB

.data
Size: 5KB - Virtual size: 11KB

.rsrc
Size: 57KB - Virtual size: 57KB

.reloc
Size: 10KB - Virtual size: 10KB