8a8ca4ff4555cb0ca00991a25cf4995c9cb80faf62eacaae5f548411168df618

Sharing

Copy URL

Twitter E-mail

General

Target

8a8ca4ff4555cb0ca00991a25cf4995c9cb80faf62eacaae5f548411168df618
Size

444KB
MD5

488a375d837dbdc8b5066036a3d02530
SHA1

99662f73dd39de6e86216f1c8b3eeac4daccaf87
SHA256

8a8ca4ff4555cb0ca00991a25cf4995c9cb80faf62eacaae5f548411168df618
SHA512

b3890a1593ad3368677b2818751dfcda967e9b137681959b530d221fb555fda5fc408487f31004ac4b9a18c200b1c0fab6aeae6b52cde4c91e636cdc213310b3
SSDEEP

6144:qumfrAHPxeQJb4OhwX9byBtKqO5Dxa3U0FrgrBvMYqYTJB:q5rAHhJ839e85oU0FErBE14B

Score

N/A

Malware Config

Signatures

Files

8a8ca4ff4555cb0ca00991a25cf4995c9cb80faf62eacaae5f548411168df618
.exe windows x86

091efd8024e24b7efe1c54f123282315

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
WinExec
LoadLibraryA
CopyFileA
OpenProcess
GetTickCount
WideCharToMultiByte
SetLastError
CreateEventA
ResetEvent
SetThreadPriority
GetModuleHandleA
MultiByteToWideChar
DeviceIoControl
CreateProcessA
GetTimeZoneInformation
GetUserDefaultLangID
QueryDosDeviceA
DefineDosDeviceA
GetCurrentThreadId
GetSystemDefaultLangID
GetExitCodeThread
DeleteFileA
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetFileSize
SetFilePointer
WriteFile
GetVolumeInformationA
GetSystemDirectoryA
GlobalFree
WaitForSingleObject
CreateThread
ReadFile
Sleep
GetVersionExA
GetComputerNameA
GlobalAlloc
FindResourceA
LoadResource
LockResource
GetModuleFileNameA
CreateMutexA
ReleaseMutex
GetProcAddress
GetLastError
MulDiv
GetWindowsDirectoryA
CreateFileA
GetFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcatA
TlsSetValue
LocalReAlloc
TlsGetValue
TerminateThread
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
UnhandledExceptionFilter
GetFileType
GetOEMCP
GetCPInfo
SetHandleCount
LCMapStringW
LCMapStringA
InterlockedIncrement
InterlockedDecrement
lstrlenA
LocalFree
lstrcmpA
lstrcpynA
GlobalUnlock
GlobalLock
GetVersion
LocalAlloc
TlsAlloc
GlobalHandle
GlobalReAlloc
GetStdHandle
lstrcmpiA
GlobalFlags
lstrcpyA
ResumeThread
GetProcessVersion
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
CloseHandle
GetCurrentProcess
FlushFileBuffers
HeapSize
TerminateProcess
SetEndOfFile
ExitThread
GetLocalTime
RtlUnwind
GetSystemTime
GetACP
RaiseException
HeapAlloc
HeapFree
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapReAlloc

user32

GetDesktopWindow
GetClassInfoA
DrawTextA
SetWindowTextA
ShowWindow
DefWindowProcA
KillTimer
CreateCursor
EndDialog
DestroyCursor
SetWindowLongA
GetWindowLongA
DialogBoxParamA
SendMessageA
LoadAcceleratorsA
LoadIconA
GetDC
SetWindowPos
GetWindowRect
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
DispatchMessageA
TranslateMessage
GetMessageA
CreateDialogParamA
LoadStringA
ClientToScreen
TabbedTextOutA
SetFocus
GrayStringA
UnhookWindowsHookEx
IsWindowEnabled
GetLastActivePopup
GetParent
GetClassNameA
PtInRect
GetDlgCtrlID
GetWindow
GetFocus
SetWindowsHookExA
PeekMessageA
CallNextHookEx
GetKeyState
GetWindowPlacement
IsIconic
SystemParametersInfoA
GetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
SetTimer
RegisterWindowMessageA
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
WinHelpA
GetCapture
GetTopWindow
SetClassLongA
ModifyMenuA
MessageBoxA
CopyRect
GetClientRect
AdjustWindowRectEx
MapWindowPoints
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
AppendMenuA
CreatePopupMenu
ReleaseDC
DestroyMenu
GetWindowTextA
GetDlgItem
PostQuitMessage
DestroyWindow
RegisterClassA
CreateWindowExA
LoadCursorA
wsprintfA
LoadImageA
GetUserObjectInformationA
EnableWindow
SetThreadDesktop
GetCursorPos
SetForegroundWindow
TrackPopupMenu
DestroyIcon
GetThreadDesktop
OpenInputDesktop
CloseDesktop
GetSystemMetrics
GetSysColor
GetSysColorBrush
EnumWindows
IsDialogMessageA
PostMessageA

advapi32

CreateServiceA
DeleteService
QueryServiceStatus
CloseServiceHandle
OpenServiceA
OpenSCManagerA
RegCloseKey
RegFlushKey
CreateProcessAsUserA
OpenProcessToken
ChangeServiceConfigA
RegSetValueExA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA

shell32

ExtractIconExA
Shell_NotifyIconA

wsock32

connect
inet_ntoa
WSAGetLastError
WSACleanup
send
recv
select
htonl
setsockopt
gethostbyname
getpeername
listen
accept
WSAStartup
htons
bind
ntohl
sendto
closesocket
socket
ioctlsocket
WSAAsyncGetHostByAddr
WSACancelAsyncRequest
ntohs

comctl32

InitCommonControlsEx
ord17

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

gdi32

SetBkColor
SetTextColor
CreateSolidBrush
DeleteObject
GetDeviceCaps
CreateFontIndirectA
SetDIBitsToDevice
DeleteDC
SaveDC
RestoreDC
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
CreateBitmap
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetObjectA
GetStockObject
SetWindowExtEx
GetClipBox
ScaleWindowExtEx

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

Sections

.text
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 475KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 264B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

091efd8024e24b7efe1c54f123282315

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

wsock32

comctl32

version

gdi32

winspool.drv

Sections

.text Size: 192KB - Virtual size: 190KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 64KB - Virtual size: 475KB

.tls Size: 4KB - Virtual size: 264B

.rsrc Size: 96KB - Virtual size: 93KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 192KB - Virtual size: 190KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 64KB - Virtual size: 475KB

.tls
Size: 4KB - Virtual size: 264B

.rsrc
Size: 96KB - Virtual size: 93KB

.rmnet
Size: 60KB - Virtual size: 60KB