c1909c9e8adfe6772ae118cfbdfcc0e2ee2333f00668811cc77eee32f998d665

Sharing

Copy URL Twitter E-mail

General

Target

c1909c9e8adfe6772ae118cfbdfcc0e2ee2333f00668811cc77eee32f998d665
Size

134KB
MD5

4f02953df020ba8e8092a2140a513c09
SHA1

63a9a48ee7de6b648b86bcc379cc7a4c63ddbe55
SHA256

c1909c9e8adfe6772ae118cfbdfcc0e2ee2333f00668811cc77eee32f998d665
SHA512

b50ea6b76594ef206a1a0841ebddc3cb0ff8897c6202e82902b54fe299a3e1543c36a8ee20a46b39c7ae32a8664c2a77c071a9ba79a079579902c5c068ac965e
SSDEEP

3072:v4xMFp7yRAAskhPWoHZuh3DQN3zT1Zzx6awHbzYEeYvDi:vqMF9yRA7DoHA5khzjdRwHbkD

Score

N/A

Malware Config

Signatures

Files

c1909c9e8adfe6772ae118cfbdfcc0e2ee2333f00668811cc77eee32f998d665
.exe windows x86

f886eb7430348b20ae13d85bb23e142e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoCreateInstance
CoUninitialize

kernel32

GetTickCount
TlsSetValue
GlobalAlloc
GetCurrentThreadId
GetACP
ReadFile
GetLocaleInfoA
TlsGetValue
GlobalUnlock
GetVersion
WriteFile
lstrcatW
ExitProcess
MoveFileW
CopyFileA
GetStartupInfoW
InterlockedDecrement
CopyFileW
HeapSize
GetSystemTimeAsFileTime
RemoveDirectoryW
RaiseException
LocalFree
HeapFree
EnterCriticalSection
TlsAlloc
GetModuleHandleA
FindVolumeClose
GlobalDeleteAtom
RtlUnwind
TlsGetValue
GetCurrentProcessId
VirtualAlloc
WideCharToMultiByte
DeleteFileW
LocalReAlloc
GlobalReAlloc
GlobalFree
LocalAlloc
VirtualQuery
HeapAlloc
MultiByteToWideChar
HeapDestroy
EnumResourceLanguagesA
GetSystemInfo
LoadResource
SetFilePointer
LoadLibraryA
lstrcpyW
FreeLibrary
FindResourceW
FormatMessageW
SetFileAttributesA
CreateDirectoryA
TerminateProcess
ExitProcess
GetVersionExW
lstrcmpW
GlobalLock
GetProcAddress
MoveFileA
CreateDirectoryW
HeapReAlloc
GlobalFlags
FlushFileBuffers
LockResource
HeapCreate
GlobalAddAtomW
DeleteCriticalSection
LeaveCriticalSection
GlobalHandle
lstrcpynW
GetThreadLocale
VirtualProtect
DeleteFileA
SetLastError
InitializeCriticalSection
GetCurrentProcess
GetModuleHandleW
InterlockedIncrement
GetLastError
GlobalFindAtomW
TlsFree
InterlockedExchange
SetFileAttributesW
SizeofResource
QueryPerformanceCounter
RemoveDirectoryA

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

shlwapi

PathFileExistsW
StrStrW
PathRemoveBackslashW
PathFileExistsA
PathFindExtensionA
PathFindFileNameA
PathAppendA
PathCanonicalizeW
StrStrA
PathIsDirectoryEmptyA
PathCanonicalizeA
PathIsDirectoryW
PathAddBackslashW
PathRemoveFileSpecW
PathFindExtensionW
PathAppendW
PathFindFileNameW
PathAddExtensionW
PathIsDirectoryA
PathRemoveFileSpecA
PathIsDirectoryEmptyW

oleacc

CreateStdAccessibleObject
LresultFromObject

gdi32

GetClipBox
RectVisible
GetDeviceCaps
ExtTextOutW
ScaleWindowExtEx
SetTextColor
PtVisible
DeleteObject
SetViewportOrgEx
SetMapMode
DeleteDC
ScaleViewportExtEx
GetStockObject
TextOutW
OffsetViewportOrgEx
SelectObject
SetWindowExtEx
SetBkColor
SaveDC
RestoreDC
CreateBitmap
Escape
SetViewportExtEx

user32

PostQuitMessage
EnableMenuItem
GetWindowPlacement
UnhookWindowsHookEx
SendMessageW
SetForegroundWindow
SetWindowLongW
CreateWindowExW
GetClassInfoW
GetSubMenu
LoadCursorW
GetMessageTime
GetWindow
LoadIconW
GetMenuItemID
GetClientRect
RegisterClassW
SetMenuItemBitmaps
MessageBoxW
ValidateRect
DefWindowProcW
GetClassInfoExW
GetMenuState
ReleaseDC
GetParent
SetPropW
IsIconic
GetPropW
PostMessageW
GetDC
CallWindowProcW
SetWindowTextW
GetWindowRect
GetMenu
EnableWindow
GetSysColor
TabbedTextOutW
GetDlgCtrlID
SetWindowPos
GetSystemMetrics
DrawTextExW
GetDlgItem
GetClassLongW
GetWindowLongW
GetMessagePos
GetMenuItemCount
GrayStringW
GetTopWindow
IsWindowEnabled
WinHelpW
MapWindowPoints
GetKeyState
LoadBitmapW
DrawTextW
ModifyMenuW
CopyRect
PeekMessageW
PtInRect
DispatchMessageW
GetWindowTextW
GetForegroundWindow
GetSysColorBrush
GetFocus
GetCapture
GetLastActivePopup
GetClassNameW
SystemParametersInfoA
CallNextHookEx
SetWindowsHookExW
ClientToScreen
AdjustWindowRectEx
DestroyWindow
GetMenuCheckMarkDimensions
RemovePropW
CheckMenuItem
DestroyMenu
UnregisterClassW
RegisterWindowMessageW

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f886eb7430348b20ae13d85bb23e142e

Headers

File Characteristics

Imports

ole32

kernel32

winspool.drv

shlwapi

oleacc

gdi32

user32

Sections

.text Size: 107KB - Virtual size: 106KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 19KB - Virtual size: 18KB

.rsrc Size: 1024B - Virtual size: 336KB

.text
Size: 107KB - Virtual size: 106KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 1024B - Virtual size: 336KB