44c3a2383b4ec262fc2b207f955c414b424f00ac7a719bf0b33512bbb746ba73

Sharing

Copy URL Twitter E-mail

General

Target

44c3a2383b4ec262fc2b207f955c414b424f00ac7a719bf0b33512bbb746ba73
Size

1.4MB
MD5

ffd31db7ff868e58de805a528cb8fd31
SHA1

8b02b49a894c263765d88da65d87121363f38bdb
SHA256

44c3a2383b4ec262fc2b207f955c414b424f00ac7a719bf0b33512bbb746ba73
SHA512

39dbba870bc6c5510b2044c62bc2759ce9e0a09e9ab36978ccaf1b4874d2640bae8b6032173491a0bd7cba36afdd024750edb1fa8ec019eb9d12fe0bf887c5eb
SSDEEP

24576:AuvhQimKRBg49zSfN6heE5JjNbAVeQ0IYeJwrfMg+5ZI4rL:hZJBg49KanJJEVeAYxrfM

Score

N/A

Malware Config

Signatures

Files

44c3a2383b4ec262fc2b207f955c414b424f00ac7a719bf0b33512bbb746ba73
.exe windows x86

8eb4b58e3fbb2c5e94efa345eb32dfd0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SystemTimeToTzSpecificLocalTime
GetTickCount
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetFileTime
lstrcpynA
WriteConsoleW
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetFileSizeEx
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileW
FindFirstFileExW
GetTimeZoneInformation
SetFilePointerEx
GetFileType
LCMapStringW
ExitProcess
GetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
GetModuleHandleExW
GetCommandLineW
GetCommandLineA
RtlUnwind
OutputDebugStringW
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
SetErrorMode
VirtualProtect
FileTimeToSystemTime
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
CreateFileW
GetThreadLocale
DeleteFileW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
CompareStringW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
FormatMessageW
MulDiv
LocalFree
GetCurrentProcessId
GlobalAddAtomW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CreateEventW
CloseHandle
GlobalUnlock
GlobalFree
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GlobalLock
GlobalAlloc
LoadLibraryExW
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
LoadLibraryW
GetModuleHandleW
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
SetLastError
OutputDebugStringA
GetACP
WideCharToMultiByte
LoadLibraryA
GetModuleHandleA
GetProcAddress
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetLastError
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
FindResourceW
LoadResource
LockResource
SizeofResource
SetStdHandle
MultiByteToWideChar

user32

CharUpperW
MessageBeep
GetNextDlgGroupItem
IsRectEmpty
IntersectRect
SetRect
InvalidateRgn
CopyAcceleratorTableW
CharNextW
InvalidateRect
KillTimer
SetTimer
RealChildWindowFromPoint
LoadCursorW
ReleaseCapture
SetCapture
ClientToScreen
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetTopWindow
GetClassLongW
PtInRect
EqualRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
RemovePropW
GetPropW
SetPropW
GetScrollPos
RedrawWindow
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
UpdateWindow
SetMenu
LoadIconW
GetSystemMenu
AppendMenuW
SendMessageW
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
RegisterClipboardFormatW
PostThreadMessageW
GetClassNameW
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
EnableWindow
UnregisterClassW
SendDlgItemMessageA
SetRectEmpty
OffsetRect
GetParent
PostMessageW
PostQuitMessage
CheckMenuItem
SetWindowPos
SetWindowContextHelpId
GetWindow
MapDialogRect
IsWindow
ShowWindow
MoveWindow
GetDlgItem
GetDlgCtrlID
SetFocus
GetFocus
IsWindowEnabled
SetWindowTextW
GetWindowTextW
GetWindowLongW
SetWindowLongW
IsDialogMessageW
DestroyWindow
CreateDialogIndirectParamW
GetSysColorBrush
EndDialog
GetNextDlgTabItem
GetActiveWindow
SetActiveWindow
GetMessageTime
GetMessagePos
RegisterWindowMessageW
CopyRect
GetSysColor
DestroyMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
UnhookWindowsHookEx
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxW
SetCursor
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
IsWindowVisible
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
GetDesktopWindow

gdi32

TextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetMapMode
GetRgnBox
SetTextColor
SetMapMode
SelectObject
ExtSelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetClipBox
Escape
DeleteObject
DeleteDC
CreateBitmap
GetDeviceCaps
GetObjectW
ExtTextOutW
SetBkColor

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

ShellExecuteW

shlwapi

PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW

ole32

OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoCreateGuid
OleUninitialize
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromProgID
CoUninitialize
CoCreateInstance
CLSIDFromString
CoInitialize
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter

oleaut32

SysAllocString
SafeArrayDestroy
VariantInit
VariantClear
VariantChangeType
OleCreateFontIndirect
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringLen
VariantCopy
SysFreeString

oledlg

OleUIBusyW

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8eb4b58e3fbb2c5e94efa345eb32dfd0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

oledlg

oleacc

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 78KB - Virtual size: 78KB

.data Size: 9KB - Virtual size: 20KB

.rsrc Size: 80KB - Virtual size: 79KB

.reloc Size: 51KB - Virtual size: 50KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 78KB - Virtual size: 78KB

.data
Size: 9KB - Virtual size: 20KB

.rsrc
Size: 80KB - Virtual size: 79KB

.reloc
Size: 51KB - Virtual size: 50KB