1658ad6e9f1c926ffe21819bdeb588c8f48480443d63e928a24994f9e6f61d5b

Sharing

Copy URL Twitter E-mail

General

Target

1658ad6e9f1c926ffe21819bdeb588c8f48480443d63e928a24994f9e6f61d5b
Size

280KB
MD5

66d54651b8a717d8e1a88f021a0a4200
SHA1

8117bc1efe905992bd500ce3fccac09f6db56c09
SHA256

1658ad6e9f1c926ffe21819bdeb588c8f48480443d63e928a24994f9e6f61d5b
SHA512

0f2043c4816f23d2b25cc9500d900b722b3582bea69bc0f81ee8f458030ef42b1af8599912e62e3a5c4e08e9a3c161a7c163abd4e8f5aa64b0df5cd181983016
SSDEEP

6144:S3CqOAPQLZRmCfYfvQVfyEQbsmtc0oUdJ:S3aOCfm0xQDTFd

Score

N/A

Malware Config

Signatures

Files

1658ad6e9f1c926ffe21819bdeb588c8f48480443d63e928a24994f9e6f61d5b
.exe windows x86

c0d6a867c6d6f6ab195bc36651643381

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHAppBarMessage
ord155

comdlg32

GetSaveFileNameA
PrintDlgA
GetFileTitleA
ChooseFontA
GetOpenFileNameA
PageSetupDlgA
ChooseColorA

user32

GetSubMenu
CreatePopupMenu
InflateRect
LoadCursorA
TranslateMessage
SetDlgItemTextW
SetDlgItemInt
KillTimer
GetDoubleClickTime
RegisterClassExW
GetCapture
ScreenToClient
SendMessageA
BeginPaint
DestroyWindow
SetWindowRgn
IsWindow
GetWindowRect
wsprintfA
PostQuitMessage
GetSystemMetrics
ReleaseCapture
SetWindowTextW
SendDlgItemMessageA
EqualRect
RegisterClassW
GetSysColor
GetActiveWindow
SetRectEmpty
ShowScrollBar
SetActiveWindow
CopyRect
GetMenuItemCount
MessageBeep
EndPaint
EndDialog
IsZoomed
CreateWindowExW
MessageBoxW
DispatchMessageW
GetWindowThreadProcessId
GetIconInfo
IsMenu
DefWindowProcW
InsertMenuW
EnumChildWindows
SetWindowPos
ReuseDDElParam
LoadStringW
SendMessageW
SetParent
ShowWindow

comctl32

ImageList_SetDragCursorImage
ImageList_Create
ImageList_GetImageCount
ImageList_DragLeave
ImageList_Destroy

advapi32

RegSetValueExA
RegQueryInfoKeyA
SetFileSecurityA
RegEnumKeyExA
CryptDestroyKey
RegEnumKeyA
RegOpenKeyExA
RegDeleteValueA
CryptDecrypt
RegQueryValueExA
RegQueryValueA
CryptDeriveKey
RegDeleteKeyA
CryptReleaseContext
CryptHashData
RegOpenKeyA
GetUserNameA
CryptEncrypt
RegSetValueA
CryptDestroyHash
RegCreateKeyA
RegEnumValueA
CryptCreateHash
RegCloseKey
CryptAcquireContextA

winspool.drv

ClosePrinter
OpenPrinterA
ord204

kernel32

HeapReAlloc
HeapAlloc
VirtualFree
WriteConsoleW
CreateFileA
GetConsoleMode
GetCurrentProcess
SetHandleCount
TerminateProcess
QueryPerformanceCounter
GetTimeFormatA
GetModuleHandleW
LoadLibraryA
IsValidLocale
RaiseException
GetOEMCP
IsValidCodePage
GetACP
GetCurrentThreadId
InterlockedExchange
CloseHandle
InterlockedDecrement
ExitProcess
GetLocaleInfoA
GetSystemTimeAsFileTime
IsDebuggerPresent
GetTickCount
GetStringTypeA
GetLastError
InitializeCriticalSectionAndSpinCount
GetStringTypeW
GetCurrentThread
LeaveCriticalSection
TlsFree
TlsSetValue
FreeEnvironmentStringsW
GetProcAddress
GetStartupInfoW
GetModuleFileNameA
GetConsoleOutputCP
GetTimeZoneInformation
WriteConsoleA
SetStdHandle
SetEnvironmentVariableA
CompareStringA
GetCurrentProcessId
LCMapStringA
FreeLibrary
FatalAppExitA
SetFilePointer
RtlUnwind
DeleteCriticalSection
GetModuleFileNameW
ReadFile
VirtualQuery
HeapDestroy
InterlockedIncrement
WideCharToMultiByte
GetDateFormatA
SetConsoleCtrlHandler
WriteFile
GetCPInfo
GetCommandLineW
MultiByteToWideChar
UnhandledExceptionFilter
HeapSize
SetUnhandledExceptionFilter
GetFileType
EnterCriticalSection
CreateMutexW
TlsGetValue
GetModuleHandleA
GetLocaleInfoW
GetEnvironmentStringsW
FlushFileBuffers
LCMapStringW
GetConsoleCP
HeapFree
HeapCreate
TlsAlloc
GetStartupInfoA
GetUserDefaultLCID
Sleep
GetStdHandle
CompareStringW
VirtualAlloc
SetLastError

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0d6a867c6d6f6ab195bc36651643381

Headers

File Characteristics

Imports

shell32

comdlg32

user32

comctl32

advapi32

winspool.drv

kernel32

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 52KB - Virtual size: 79KB

.rsrc Size: 40KB - Virtual size: 38KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 52KB - Virtual size: 79KB

.rsrc
Size: 40KB - Virtual size: 38KB