eaeef02a6ae2e7cb8a0e2675af29cae5b5cb687d9a5441fc3f61a024c7b805cc

Sharing

Copy URL Twitter E-mail

General

Target

eaeef02a6ae2e7cb8a0e2675af29cae5b5cb687d9a5441fc3f61a024c7b805cc
Size

135KB
MD5

fe9eb75ade176f46526ece165489101e
SHA1

3e63c9f3d1fd67833dbc67003f058a1c58d65689
SHA256

eaeef02a6ae2e7cb8a0e2675af29cae5b5cb687d9a5441fc3f61a024c7b805cc
SHA512

207c73bcd762cae9d581590282f7f3056f0c7f3838a76e64891eadf3d9b191cea3a6513e0c4672f4fe3da981c3469f6c84a879bd4b4a5550400c62cbd61de82d
SSDEEP

3072:1/Pjcwzj1Sww8WEAR6amPY9fyRchqHYIYdUOVoPn:dbRVl+yYJyRchPICVqn

Score

N/A

Malware Config

Signatures

Files

eaeef02a6ae2e7cb8a0e2675af29cae5b5cb687d9a5441fc3f61a024c7b805cc
.exe windows x86

d535275e9a4a621134cbd4a695150c60

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

shlwapi

PathFindExtensionW
PathStripToRootW
PathIsUNCW
PathFindFileNameW

oledlg

OleUIBusyW

advapi32

RegOpenKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegDeleteKeyW
RegEnumKeyW
RegCreateKeyExW
RegCreateKeyW
RegQueryValueW

kernel32

CloseHandle
ReleaseMutex
SetCurrentDirectoryW
InterlockedDecrement
WaitForSingleObject
GetLastError
GetProcAddress
GetPrivateProfileStringW
LocalFree
MultiByteToWideChar
GetVersionExW
LockResource
FindVolumeClose
GetModuleHandleW
GlobalDeleteAtom
TerminateProcess
FreeLibrary
FormatMessageW
MulDiv
LoadResource
lstrcmpA
GlobalUnlock
WritePrivateProfileStringW
CompareStringW
GetCurrentThread
GlobalFindAtomW
lstrcmpW
EnumResourceLanguagesA
GlobalAddAtomW
LoadLibraryA
GlobalFree
CompareStringA
GetLocaleInfoW
ExitProcess
ConvertDefaultLocale
GetCurrentProcessId
LoadLibraryW
WideCharToMultiByte
InterlockedExchange
SizeofResource
GetVersionExA
GetCurrentThreadId
CreateMutexW
GetUserDefaultUILanguage
FreeResource
GlobalAlloc
lstrlenW
EnumResourceLanguagesW
GetModuleFileNameW
SetLastError
FindResourceW
CreateProcessW
ExpandEnvironmentStringsW
GlobalLock
GetModuleHandleA

comctl32

InitCommonControlsEx

user32

EnableMenuItem
TranslateMessage
GetSysColorBrush
SetWindowsHookExW
IsWindowEnabled
CheckMenuItem
CallNextHookEx
PeekMessageW
GetMenuItemID
GetLastActivePopup
CreateDialogIndirectParamW
GetKeyState
MapDialogRect
GetWindowThreadProcessId
GetSystemMetrics
InvalidateRgn
MessageBoxW
GetParent
DrawIcon
UnhookWindowsHookEx
GetDesktopWindow
EnableWindow
GetCursorPos
CreateWindowExW
GetNextDlgTabItem
DestroyMenu
GetActiveWindow
GetSystemMenu
SetMenu
UnregisterClassW
GetClientRect
PostQuitMessage
GetMessageW
DispatchMessageW
SetMenuItemBitmaps
IsWindow
LoadIconW
IsWindowVisible
UpdateWindow
IsIconic
GetWindowLongW
GetFocus
AppendMenuW
DestroyWindow
GetMenuState
GetSubMenu
SetWindowContextHelpId
MessageBeep
CopyRect
ModifyMenuW
CharUpperW
LoadBitmapW
SetTimer
GetDlgItem
EndDialog
SetActiveWindow
SetCursor
GetMenuItemCount
GetWindow
GetMenuCheckMarkDimensions
PostMessageW
GetSysColor
SetWindowPos
GetNextDlgGroupItem
ValidateRect
SendMessageW
SendDlgItemMessageW

gdi32

GetBkColor
GetMapMode
GetObjectW
ScaleViewportExtEx
DeleteObject
SetBkColor
SetTextColor
TextOutW
ScaleWindowExtEx
RestoreDC
SetViewportExtEx
SetMapMode
SetWindowExtEx
GetStockObject
DeleteDC
OffsetViewportOrgEx
GetClipBox
SetViewportOrgEx
SelectObject
CreateBitmap
RectVisible
GetTextColor
PtVisible
GetDeviceCaps
GetViewportExtEx
SaveDC
Escape
CreateRectRgnIndirect
ExtTextOutW
GetWindowExtEx
GetRgnBox
ExtSelectClipRgn

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoGetClassObject
CoTaskMemFree
CLSIDFromString
OleIsCurrentClipboard
CLSIDFromProgID
OleFlushClipboard
CoTaskMemAlloc
CoRegisterMessageFilter
CoRevokeClassObject

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d535275e9a4a621134cbd4a695150c60

Headers

File Characteristics

Imports

comdlg32

winspool.drv

shlwapi

oledlg

advapi32

kernel32

comctl32

user32

gdi32

ole32

Sections

.text Size: 106KB - Virtual size: 106KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 21KB - Virtual size: 21KB

.rsrc Size: 1024B - Virtual size: 212KB

.text
Size: 106KB - Virtual size: 106KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 21KB - Virtual size: 21KB

.rsrc
Size: 1024B - Virtual size: 212KB