732016b87d3c750ed3b8435c8f7d33d2501aaac0b2f0b23b05b3aac46f541b78

Sharing

Copy URL Twitter E-mail

General

Target

732016b87d3c750ed3b8435c8f7d33d2501aaac0b2f0b23b05b3aac46f541b78
Size

345KB
MD5

718be8c45a9717cce67be703d94502d0
SHA1

1a4650f12536353a51f2575d2dbb4944258682cf
SHA256

732016b87d3c750ed3b8435c8f7d33d2501aaac0b2f0b23b05b3aac46f541b78
SHA512

70093364d2cdfe87e1708991af36f88d591984c6c2a7855988efe591fb025757771dfe4e9b25ae70cee7a2fef94e04936d2d2a491fa257ed50f71facdd16a9b3
SSDEEP

6144:F+ykeZN7Jo9a4is+oLJLm5LRtkYvQx3x7iB2PyYBjGmm1gLIjgcTjW2BXtkPv+:F+3eZN7Jo9Cs+ogxR629YFGmMXTjnB9T

Score

N/A

Malware Config

Signatures

Files

732016b87d3c750ed3b8435c8f7d33d2501aaac0b2f0b23b05b3aac46f541b78
.exe windows x86

c71eea03579a795ac2ab05ea657a9108

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM

Imports

kernel32

OpenFileMappingA
GetSystemTime
CreateFileW
FlushFileBuffers
HeapReAlloc
GetStringTypeW
LCMapStringW
WriteConsoleW
SetStdHandle
HeapSize
RtlUnwind
IsValidCodePage
GetACP
GetCPInfo
GetConsoleMode
GetConsoleCP
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
FileTimeToLocalFileTime
GlobalLock
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
LoadLibraryW
lstrcmpA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
GetModuleHandleA
GetOEMCP
OpenEventA
GlobalFree
GetProcAddress
GetLastError
SetCurrentDirectoryA
GlobalUnlock
MultiByteToWideChar
FileTimeToSystemTime
HeapCreate
Sleep
GlobalAlloc
FindResourceExA
GetUserDefaultLangID
GetProcessHeap
GetTickCount
WaitForSingleObject
TlsAlloc
GetModuleFileNameW
HeapFree
HeapAlloc
LoadResource
QueryPerformanceCounter
MapViewOfFile
GetStdHandle
WriteFile
GetCurrentProcess
CloseHandle
TerminateProcess
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsProcessorFeaturePresent
RaiseException
GetStartupInfoW
HeapSetInformation
GetCommandLineA
DecodePointer
ExitProcess
GetModuleHandleW
FindResourceA
GetCommandLineW

user32

SendMessageW
GetSystemMetrics
FindWindowA
GetDlgItemTextA
OpenClipboard
DispatchMessageA
WindowFromDC
SetMenu
ShowWindow
DefWindowProcA
ReleaseDC
GetClassNameW
CreateWindowExA
GetClipboardData
InvalidateRect
DrawFrameControl
SetDlgItemTextA
RegisterClassA
GetWindow
LoadCursorA
MessageBoxA
GetWindowTextA
EndPaint
ClientToScreen
DestroyWindow
GetMessageA
CloseClipboard
GetWindowRect
SetActiveWindow
PostQuitMessage
GetWindowDC
DrawTextA
GetFocus
LoadBitmapA
IsClipboardFormatAvailable
LoadIconA
IsWindowEnabled
FindWindowExA
GetClientRect
SendMessageA
BeginPaint
GetDC
TranslateMessage
GetMenu
OffsetRect

gdi32

SetTextColor
DeleteDC
CreateFontIndirectA
ExcludeClipRect
CreateDCW
DeleteObject
SelectObject
CreateCompatibleDC
CombineRgn
CreateCompatibleBitmap
Rectangle
EnumFontFamiliesA
CreateRectRgn
CreatePen
GetFontData
GetPixel
GetObjectA
GetStockObject
CreateSolidBrush
BitBlt

winspool.drv

GetJobA

comdlg32

ChooseFontA
FindTextA
ReplaceTextA
GetSaveFileNameW

shell32

SHGetFolderPathA
SHGetFolderLocation
SHGetMalloc
SHGetDesktopFolder
CommandLineToArgvW

ole32

CoUnmarshalInterface
OleFlushClipboard
CoInitialize
OleUninitialize
OleInitialize
CreateStreamOnHGlobal
CoUninitialize

ws2_32

WSCEnumProtocols

netapi32

NetWkstaUserGetInfo

msacm32

acmMetrics
acmFormatChooseA

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

shlwapi

StrRetToBufA

comctl32

ord17
ImageList_LoadImageA

rpcrt4

UuidToStringA
UuidCreate
RpcStringFreeA

opengl32

wglGetCurrentDC

uxtheme

DrawThemeBackground

dxva2

GetTimingReport
SetMonitorRedGreenOrBlueDrive

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 235KB - Virtual size: 235KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c71eea03579a795ac2ab05ea657a9108

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

shell32

ole32

ws2_32

netapi32

msacm32

version

shlwapi

comctl32

rpcrt4

opengl32

uxtheme

dxva2

Sections

.text Size: 68KB - Virtual size: 67KB

.rdata Size: 235KB - Virtual size: 235KB

.data Size: 24KB - Virtual size: 32KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 68KB - Virtual size: 67KB

.rdata
Size: 235KB - Virtual size: 235KB

.data
Size: 24KB - Virtual size: 32KB

.rsrc
Size: 17KB - Virtual size: 16KB