68542f7861a820d219901d00831f6b46921f40ad66d2cd577879b623cdf64e2d

Sharing

Copy URL Twitter E-mail

General

Target

68542f7861a820d219901d00831f6b46921f40ad66d2cd577879b623cdf64e2d
Size

344KB
MD5

55b1c625e0ce495010925862030c0020
SHA1

7ab19d961c8536149e2b68d0ef2bc88e7aee4928
SHA256

68542f7861a820d219901d00831f6b46921f40ad66d2cd577879b623cdf64e2d
SHA512

c58b915490ea805aeb2ccbba2fb5cdab937c647c1905bef834eb6cd7fd10ee833ce680029c2e57ce5876b02dc07bb9d2f6166203601ed83e4a755585ef193da3
SSDEEP

6144:s4Zb4Xb5rNgT9+6phLqr2AChWnaGZ2zVoDnHsAoBAg+8k:EIT9vp9qr2bo2zVAHsFL

Score

N/A

Malware Config

Signatures

Files

68542f7861a820d219901d00831f6b46921f40ad66d2cd577879b623cdf64e2d
.exe windows x86

bdb8458f7fee42ec6816670ef9a2b8b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
FlushFileBuffers
GetCurrentProcess
HeapFree
HeapAlloc
VirtualAlloc
HeapReAlloc
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RaiseException
RtlUnwind
HeapSize
TerminateProcess
UnhandledExceptionFilter
WriteFile
HeapDestroy
HeapCreate
VirtualFree
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetTickCount
GetSystemTimeAsFileTime
Sleep
GetACP
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetOEMCP
GetCPInfo
GetLocaleInfoA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetThreadLocale
GlobalGetAtomNameA
GlobalFlags
lstrcmpA
GetCurrentThreadId
CloseHandle
InterlockedIncrement
FreeLibrary
InterlockedDecrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetCurrentProcessId
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
FindResourceA
LoadResource
SetLastError
GetSystemTime
GetVersion
TlsAlloc
GetVersionExA
QueryPerformanceFrequency
CompareStringA
GetModuleHandleA
FindNextFileA
GetModuleFileNameA
LockResource
LoadLibraryA
FindClose
GlobalFree
GetProcAddress
GetLastError
FindFirstFileA
InterlockedExchange
MultiByteToWideChar
SetSystemTimeAdjustment
SizeofResource
WideCharToMultiByte
GlobalAlloc
OpenProcess
GetDateFormatA
GetWindowsDirectoryA
IsBadReadPtr
QueryPerformanceCounter
SetUnhandledExceptionFilter
lstrlenA
CreateFileA
IsDebuggerPresent
ExitProcess

user32

GrayStringA
DrawTextExA
TabbedTextOutA
DestroyMenu
WinHelpA
GetCapture
GetClassLongA
SetPropA
RemovePropA
IsWindow
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
PostMessageA
CreateWindowExA
GetClassInfoA
AdjustWindowRectEx
CopyRect
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetFocus
ClientToScreen
GetWindow
GetWindowRect
GetClassNameA
PtInRect
SetWindowTextA
UnregisterClassA
SetWindowsHookExA
DispatchMessageA
GetKeyState
PeekMessageA
ValidateRect
LoadCursorA
GetSystemMetrics
GetDC
GetSysColor
GetSysColorBrush
UnhookWindowsHookEx
GetWindowThreadProcessId
SendMessageA
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
GetMenuState
RegisterClassA
PostQuitMessage
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetMessageA
CloseClipboard
GetSystemMenu
GetClassInfoExA
KillTimer
DrawTextA
GetPropA
LoadIconA
CallNextHookEx
CreateMenu
RegisterWindowMessageA
EnumWindows
TranslateMessage
LockWindowUpdate
OffsetRect
GetWindowTextA
GetWindowLongA
ReleaseDC
EndDialog
DefWindowProcA
GetMenuItemInfoA
DeferWindowPos
BeginDeferWindowPos
UnregisterHotKey
GetDlgCtrlID
GetMessageTime

gdi32

ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
GetStockObject
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutA
RectVisible
PtVisible
CreateCompatibleBitmap
SetMapMode
RestoreDC
SaveDC
ExtTextOutA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
DeleteObject
GetDeviceCaps
MoveToEx
PatBlt
GetTextExtentPoint32A
LineTo
StretchBlt
ExcludeClipRect
SetPixel
SetBkMode

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

usp10

ScriptStringGetLogicalWidths
ScriptStringOut
ScriptStringValidate
ScriptGetGlyphABCWidth
ScriptString_pSize
ScriptGetCMap
ScriptCPtoX
ScriptXtoCP
ScriptGetProperties
ScriptGetLogicalWidths
ScriptStringFree
ScriptStringXtoCP
ScriptIsComplex
ScriptCacheGetHeight
ScriptItemize
ScriptApplyLogicalWidth
ScriptFreeCache
ScriptBreak
ScriptStringCPtoX
ScriptStringGetOrder
ScriptString_pcOutChars
ScriptGetFontProperties
ScriptApplyDigitSubstitution
ScriptRecordDigitSubstitution
ScriptStringAnalyse
ScriptString_pLogAttr
ScriptTextOut
ScriptShape

Sections

.text
Size: 224KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bdb8458f7fee42ec6816670ef9a2b8b1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

usp10

Sections

.text Size: 224KB - Virtual size: 220KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 52KB - Virtual size: 5.1MB

.rsrc Size: 4KB - Virtual size: 960B

.text
Size: 224KB - Virtual size: 220KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 52KB - Virtual size: 5.1MB

.rsrc
Size: 4KB - Virtual size: 960B