e407a010eee59138c8e4d7c9fb3925eec4f089fbd397fae6ae7d921c5899978a

Sharing

Copy URL Twitter E-mail

General

Target

e407a010eee59138c8e4d7c9fb3925eec4f089fbd397fae6ae7d921c5899978a
Size

420KB
MD5

500fef7daaf13f3458a46fe8094337b0
SHA1

ad3618448e29fa7fd5a8771e3b6e52d3c379efe1
SHA256

e407a010eee59138c8e4d7c9fb3925eec4f089fbd397fae6ae7d921c5899978a
SHA512

e55a64bea54f24155b3a76f7e1b0d9521797d810d85672e9becf6dccbade7965f8cb710005a1898e1e203d55b814a754f36e53ad136fa5fadcb328e213d14fe8
SSDEEP

6144:t2dpgwhxnpeXv6VUFoJtbWt3b/46GXm9c:tegwhxnAwtbWh/4ZUc

Score

N/A

Malware Config

Signatures

Files

e407a010eee59138c8e4d7c9fb3925eec4f089fbd397fae6ae7d921c5899978a
.exe windows x86

a3fce853c8c5359c747f6f1d0ce7a669

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiRemoveDevice

kernel32

ExitProcess
HeapAlloc
HeapFree
GetACP
TerminateProcess
HeapSize
GetStartupInfoA
RaiseException
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
RtlUnwind
HeapReAlloc
UnhandledExceptionFilter
GlobalGetAtomNameA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
WriteFile
FlushFileBuffers
SetFilePointer
SetErrorMode
ReadFile
WritePrivateProfileStringA
GetCPInfo
GetOEMCP
TlsGetValue
GetProcessVersion
GlobalFlags
EnterCriticalSection
LocalReAlloc
TlsSetValue
TlsFree
GlobalReAlloc
LeaveCriticalSection
TlsAlloc
GlobalHandle
DeleteCriticalSection
InitializeCriticalSection
lstrcpynA
GlobalAlloc
lstrcmpA
GetCurrentThread
WideCharToMultiByte
MultiByteToWideChar
HeapDestroy
HeapCreate
MulDiv
CreateFileA
SetFileTime
InterlockedDecrement
InterlockedIncrement
GlobalUnlock
GetModuleFileNameA
GlobalLock
VirtualFree
GetCurrentThreadId
GlobalFree
LoadLibraryA
GetVersion
SetUnhandledExceptionFilter
lstrcmpiA
GlobalAddAtomA
GetTimeZoneInformation
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GetCurrentProcess
FindFirstFileA
FindClose
GetVersionExA
LocalAlloc
DeleteFileA
CopyFileA
IsBadWritePtr
VirtualAlloc
SystemTimeToFileTime
GetTempPathA
LockResource
FormatMessageA
FatalAppExitA
GetProfileStringA
CloseHandle
FindResourceA
SizeofResource
DebugBreak
lstrlenA
lstrcatA
GetLocalTime
LocalFree
LoadResource
GetCommandLineA
SetLastError
FreeLibrary
GetSystemDirectoryA
GetLastError
GetProcAddress

user32

GrayStringA
LoadStringA
DrawTextA
TabbedTextOutA
PostQuitMessage
SetCursor
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
GetClassNameA
PtInRect
GetSysColorBrush
DestroyMenu
InflateRect
LoadCursorA
PostMessageA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
CheckMenuItem
GetTopWindow
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
BeginPaint
EndPaint
GetDlgItem
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
LoadIconA
ExitWindowsEx
GetWindowRect
InvalidateRect
UpdateWindow
EnableWindow
SendMessageA
wsprintfA
MessageBoxA
wvsprintfA
ClientToScreen
ShowWindow
IsDialogMessageA
IsDlgButtonChecked
CheckRadioButton
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
IsWindowEnabled
GetDC
ReleaseDC
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
GetWindowTextA
SetWindowTextA
GetWindowDC
GetSubMenu
GetMenuItemID
EnableMenuItem
GetNextDlgTabItem
GetCapture
GetParent
DrawFocusRect
ExcludeUpdateRgn
DefDlgProcA
HideCaret
IsWindowUnicode
CharNextA
UnregisterClassA
ShowCaret

gdi32

BitBlt
CreateSolidBrush
CreateFontA
GetClipBox
SetTextColor
SetBkColor
GetObjectA
CreateBitmap
PatBlt
DeleteDC
SaveDC
RestoreDC
GetStockObject
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
PtVisible
TextOutA
ExtTextOutA
RectVisible
Escape
CreateCompatibleDC
CreateDIBitmap
GetTextExtentPointA
SetViewportExtEx
ScaleViewportExtEx
SetBkMode

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteKeyA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
DeleteService
OpenSCManagerA
CreateServiceA
OpenServiceA
ControlService
StartServiceA
CloseServiceHandle
RegCreateKeyExA
RegSetValueExA

comctl32

ord17

Sections

.text
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 268KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a3fce853c8c5359c747f6f1d0ce7a669

Headers

File Characteristics

Imports

version

setupapi

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

Sections

.text Size: 108KB - Virtual size: 105KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 16KB - Virtual size: 32KB

.rsrc Size: 268KB - Virtual size: 268KB

.text
Size: 108KB - Virtual size: 105KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 16KB - Virtual size: 32KB

.rsrc
Size: 268KB - Virtual size: 268KB