c02aab9b0247d6d3859bcbf224c320d99b6f8d7acabc6175e8b60511383ad142

Sharing

Copy URL

Twitter E-mail

General

Target

c02aab9b0247d6d3859bcbf224c320d99b6f8d7acabc6175e8b60511383ad142
Size

272KB
MD5

668d6fa47db842865b3d6fa1e8b74db0
SHA1

316963fda22619dab6342e7ac49942c43f14783a
SHA256

c02aab9b0247d6d3859bcbf224c320d99b6f8d7acabc6175e8b60511383ad142
SHA512

f53e35e5ae40d22df33e9c29ae2e0544ad0b5a5a6048425adbb9f7e76a57b93a5691b9145747a442bf8e878a6e1b2025ead6adfa5fdc3bfacd4c12499ce4feb5
SSDEEP

3072:cHBCw1uGHlalM2R5/jbxYVwt33y0tSlrTQDryvHG1E0odNYgG2vhaPqqTBGRWxlV:M1Da3R53D3y0thyvHZ1/pQqq2aQ

Score

N/A

Malware Config

Signatures

Files

c02aab9b0247d6d3859bcbf224c320d99b6f8d7acabc6175e8b60511383ad142
.exe windows x86

9a3cabdf89d3044e76d4a5856b7391a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
SetErrorMode
RtlUnwind
ExitProcess
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
ExitThread
CreateThread
TerminateProcess
HeapReAlloc
HeapSize
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
HeapDestroy
GetCPInfo
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetStringTypeA
GetStringTypeW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetTimeZoneInformation
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetLocaleInfoW
SetEnvironmentVariableA
GetFullPathNameA
GetCurrentProcess
SetEndOfFile
FlushFileBuffers
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
RaiseException
GlobalFlags
InterlockedIncrement
FindFirstFileA
FileTimeToLocalFileTime
FindNextFileA
FindClose
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
SetLastError
MulDiv
FormatMessageA
lstrcpynA
WritePrivateProfileStringA
GlobalUnlock
GlobalFree
FreeResource
GlobalAddAtomA
GetCurrentThread
GetCurrentThreadId
GlobalLock
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetModuleHandleA
GetProcAddress
ConvertDefaultLocale
EnumResourceLanguagesA
LoadLibraryA
LocalAlloc
lstrcatA
OutputDebugStringA
lstrcpyA
LocalFree
GetModuleFileNameA
ReleaseSemaphore
DeleteCriticalSection
CreateSemaphoreA
InitializeCriticalSection
WaitForSingleObject
WaitForMultipleObjects
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
GlobalMemoryStatus
GetTickCount
UnmapViewOfFile
GetLocalTime
CreateFileMappingA
MapViewOfFile
GetFileInformationByHandle
GetFileSize
FileTimeToSystemTime
WriteFile
GetCurrentDirectoryA
SystemTimeToFileTime
ReadFile
CloseHandle
CreateFileA
SetFilePointer
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
GetLastError
MultiByteToWideChar
DeleteFileA
GetCommandLineA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
HeapCreate
InterlockedExchange

user32

DestroyMenu
GetSysColorBrush
LoadCursorA
EndPaint
BeginPaint
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ShowWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetTopWindow
GetMessageTime
MapWindowPoints
SetForegroundWindow
UpdateWindow
GetMenu
GetSysColor
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
UnregisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
DrawIcon
SendMessageA
IsIconic
GetClientRect
InvalidateRect
SetTimer
KillTimer
EnableWindow
LoadIconA
GetSystemMetrics
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetWindow
UnhookWindowsHookEx
GetMenuItemID
GetMenuItemCount
GetSubMenu
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetFocus
ModifyMenuA
GetMessagePos
wsprintfA
GetDesktopWindow
PostMessageA
PostQuitMessage
SetCursor
IsWindowEnabled
GetLastActivePopup
GetWindowLongA
GetParent
MessageBoxA
ValidateRect
GetCursorPos
PeekMessageA
GetKeyState
IsWindowVisible
GetActiveWindow
DispatchMessageA
TranslateMessage
GetMessageA
CallNextHookEx
SetWindowsHookExA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
WinHelpA

gdi32

GetStockObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
SelectObject
OffsetViewportOrgEx
CreateBitmap
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
DeleteObject
SetMapMode
RestoreDC
SaveDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
SetViewportOrgEx

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

comctl32

ord17

shlwapi

PathFindFileNameA
PathFindExtensionA

ole32

CoUninitialize
CoSetProxyBlanket
CoCreateInstance
CoInitializeSecurity
CoInitialize

oleaut32

SysAllocString
SysFreeString
VariantInit
VariantCopy
VariantChangeType
VariantClear

wininet

InternetCloseHandle
InternetReadFile
InternetWriteFile
FtpFindFirstFileA
FtpPutFileA
FtpOpenFileA
FtpGetFileSize
FtpGetFileA
FtpSetCurrentDirectoryA
InternetGetLastResponseInfoA
FtpCreateDirectoryA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
InternetOpenUrlA
HttpQueryInfoA
InternetOpenA
InternetQueryDataAvailable

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 172KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

�c��u�
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9a3cabdf89d3044e76d4a5856b7391a1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

shlwapi

ole32

oleaut32

wininet

version

Sections

.text Size: 172KB - Virtual size: 170KB

.rdata Size: 48KB - Virtual size: 44KB

.data Size: 8KB - Virtual size: 21KB

.rsrc Size: 20KB - Virtual size: 18KB

�c��u� Size: 20KB - Virtual size: 20KB

.text
Size: 172KB - Virtual size: 170KB

.rdata
Size: 48KB - Virtual size: 44KB

.data
Size: 8KB - Virtual size: 21KB

.rsrc
Size: 20KB - Virtual size: 18KB

�c��u�
Size: 20KB - Virtual size: 20KB