40d8f762d86b6c3bfe3b836605b65abbdeb830fc850bcc545563812bc47c5d6b

Sharing

Copy URL

Twitter E-mail

General

Target

40d8f762d86b6c3bfe3b836605b65abbdeb830fc850bcc545563812bc47c5d6b
Size

896KB
MD5

de24583fd49c6d4e98dcaca26d6044b0
SHA1

ef39ca2600b39da45c9fc0ef6a1ecdf37bf7872d
SHA256

40d8f762d86b6c3bfe3b836605b65abbdeb830fc850bcc545563812bc47c5d6b
SHA512

6adf0e249f0737081a5e94cf74e019739edad643a0165196fa93f94176e659f7541ac06035ec818479e4bea7a5de2ee78e036685391e4052fbe87a6c4585e328
SSDEEP

12288:CqrJ8mGdgoCmabXbPeXFCmabXbPeXJ/Xwu/sro3X5Azgb:7bGdgoC/bWXFC/bWXJ/wu/p3X5egb

Score

N/A

Malware Config

Signatures

Files

40d8f762d86b6c3bfe3b836605b65abbdeb830fc850bcc545563812bc47c5d6b
.exe windows x86

fb5e789cb7d86f58e50eccb79bbe3126

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

psapi

EnumProcesses
EnumProcessModules
GetModuleBaseNameA
GetModuleFileNameExA

kernel32

SetEndOfFile
SetErrorMode
RtlUnwind
GetSystemTimeAsFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapFree
VirtualAlloc
HeapReAlloc
ExitProcess
HeapSize
IsValidCodePage
GetConsoleCP
GetConsoleMode
SetHandleCount
GetStdHandle
GetFileType
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
InitializeCriticalSectionAndSpinCount
SetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
FlushFileBuffers
SetFilePointer
ReadFile
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetModuleHandleW
GlobalFlags
GetModuleFileNameW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
lstrcmpA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FreeLibrary
CompareStringA
lstrcmpW
GetModuleHandleA
GetVersionExA
GetCurrentProcessId
SetLastError
GlobalAlloc
FormatMessageA
LocalFree
MulDiv
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
DeleteFileA
FindFirstFileA
lstrlenA
FindNextFileA
FindClose
OpenProcess
OutputDebugStringA
TerminateProcess
Sleep
GetLocalTime
GetModuleFileNameA
GetShortPathNameA
lstrcpyA
lstrcatA
GetEnvironmentVariableA
GetNativeSystemInfo
SetFileAttributesA
LoadLibraryA
GetProcAddress
CreateFileA
WriteFile
GetCurrentProcess
CloseHandle
GetLastError
MultiByteToWideChar
InterlockedDecrement
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetACP

user32

GetSysColorBrush
PostQuitMessage
EndPaint
BeginPaint
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
DestroyMenu
SetCursor
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
CheckMenuItem
RegisterWindowMessageA
LoadIconA
WinHelpA
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
LoadCursorA
RemovePropA
GetForegroundWindow
DispatchMessageA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
GetKeyState
SetMenu
SetForegroundWindow
IsWindowVisible
PostMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
SendMessageA
EnableWindow
UpdateWindow
GetSubMenu
CopyRect
PtInRect
DefWindowProcA
CallWindowProcA
GetMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetWindowThreadProcessId
GetLastActivePopup
UnregisterClassA
SetPropA
GetClientRect
EndDialog
GetNextDlgTabItem
GetParent
IsWindowEnabled
GetDlgItem
GetWindowLongA
IsWindow
DestroyWindow
CreateDialogIndirectParamA
SetActiveWindow
GetActiveWindow
GetDesktopWindow
GetMenuItemCount
GetMenuItemID
GetMenuState
MessageBoxA
GetFocus
SetWindowPos
ShowWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetWindowTextA
GetWindow
SetFocus
GetPropA

gdi32

GetStockObject
DeleteDC
SetWindowExtEx
GetClipBox
GetDeviceCaps
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
DeleteObject
SetMapMode
RestoreDC
SaveDC
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
ScaleWindowExtEx

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegEnumValueA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

shell32

ShellExecuteA
SHGetFolderPathA

shlwapi

PathRemoveFileSpecA
PathFindExtensionA
PathFindFileNameA
PathFileExistsA
StrStrIA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

oleaut32

VariantChangeType
VariantClear
VariantInit

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 456KB - Virtual size: 470KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb5e789cb7d86f58e50eccb79bbe3126

Headers

DLL Characteristics

File Characteristics

Imports

psapi

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

oleacc

Sections

.text Size: 162KB - Virtual size: 161KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 456KB - Virtual size: 470KB

.rsrc Size: 200KB - Virtual size: 200KB

.reloc Size: 40KB - Virtual size: 40KB

.text
Size: 162KB - Virtual size: 161KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 456KB - Virtual size: 470KB

.rsrc
Size: 200KB - Virtual size: 200KB

.reloc
Size: 40KB - Virtual size: 40KB