b35cb9c4b990b0b4efa69d6dde4b8fde70b9d3a396bfe9218eb8a658fe51f800

Sharing

Copy URL Twitter E-mail

General

Target

b35cb9c4b990b0b4efa69d6dde4b8fde70b9d3a396bfe9218eb8a658fe51f800
Size

928KB
MD5

6e6991a3af5fe5268c60eec5b0277fe0
SHA1

9b68b9bc99cd35fa75018aa3659bdb4bb51b5952
SHA256

b35cb9c4b990b0b4efa69d6dde4b8fde70b9d3a396bfe9218eb8a658fe51f800
SHA512

6dcb9b3551909879d8f7427e805dcfb8dbacee3eb04e991c4e7c4ee00fef1320ebaff6ae7d6e20bef4507cbed2a161fbbda2200a7bda1efabcdb024a11fbdfc3
SSDEEP

24576:abv90zjnMc0/E9SsbkgMtjZXKqVNqqKaxYAzC:abv9ajnM7M9SsbknjR3xYAzC

Score

N/A

Malware Config

Signatures

Files

b35cb9c4b990b0b4efa69d6dde4b8fde70b9d3a396bfe9218eb8a658fe51f800
.exe windows x86

dcc6af5c277ee1baffb198c960e9c19f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
LoadLibraryA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
CompareStringA
GetProcessHeap
HeapFree
InterlockedDecrement
GetLastError
FreeLibrary
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
SetEnvironmentVariableA
EnumResourceLanguagesW
GetVersion
ConvertDefaultLocale
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
GlobalLock
GetCurrentThreadId
GetCurrentThread
LocalFree
GlobalUnlock
MulDiv
GlobalFree
CloseHandle
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FreeResource
GetTickCount
SetFileTime
GetFileTime
GetVersionExA
lstrlenA
InterlockedIncrement
GlobalFlags
LocalAlloc
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
SystemTimeToFileTime
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
LocalFileTimeToFileTime
SetErrorMode
ExitProcess
RtlUnwind
HeapAlloc
TerminateProcess
HeapReAlloc
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
IsBadWritePtr
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetOEMCP
GetStringTypeA
IsBadReadPtr
IsBadCodePtr
GetDriveTypeA
LCMapStringA
SetStdHandle

user32

SetWindowRgn
ClientToScreen
SetTimer
KillTimer
SetCapture
PtInRect
GetSystemMetrics
ReleaseCapture
ScreenToClient
GetWindowDC
BeginPaint
EndPaint
GetSysColor
CopyRect
GetWindowPlacement
SystemParametersInfoA
IntersectRect
SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
GetMenu
ShowScrollBar
SetForegroundWindow
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
TrackPopupMenu
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
DestroyWindow
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
SetActiveWindow
GetForegroundWindow
SendDlgItemMessageA
GetCapture
GetDesktopWindow
SetMenu
BringWindowToTop
SetRectEmpty
CreatePopupMenu
ReuseDDElParam
UnpackDDElParam
DestroyMenu
IsZoomed
DeleteMenu
GetSysColorBrush
DestroyIcon
SetRect
GetWindow
DrawIcon
GetNextDlgTabItem
MessageBeep
EndDialog
InflateRect
WindowFromPoint
GetDCEx
LockWindowUpdate
SetParent
SetWindowContextHelpId
MapDialogRect
SetWindowPos
SetFocus
ShowWindow
MoveWindow
GetDlgCtrlID
GetDlgItem
SetMenuItemBitmaps
GetFocus
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
CallNextHookEx
TranslateMessage
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
GetParent
GetLastActivePopup
IsWindowEnabled
ShowOwnedPopups
SetCursor
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
PostQuitMessage
OffsetRect
IsRectEmpty
UpdateWindow
FillRect
GetWindowRect
GetClientRect
GetDC
ReleaseDC
IsWindow
IsChild
InvalidateRect
IsIconic
GetNextDlgGroupItem
AdjustWindowRectEx
InvalidateRgn

comctl32

ImageList_Destroy
ImageList_GetImageInfo
ImageList_Draw
ord17

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoUninitialize
CoCreateInstance
OleInitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CLSIDFromProgID
CLSIDFromString
CoFreeUnusedLibraries
OleUninitialize

oleaut32

OleCreateFontIndirect
SysAllocString
VariantClear
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysStringLen
SysAllocStringLen
VariantChangeType
VariantInit
VariantCopy
SafeArrayDestroy
SystemTimeToVariantTime

advapi32

SetFileSecurityW
GetFileSecurityW
RegCloseKey

gdi32

SetTextColor
SetMapMode
GetClipBox
ExcludeClipRect
PatBlt
SetBkMode
SetBkColor
RestoreDC
SaveDC
Ellipse
LPtoDP
CreateEllipticRgn
CreateBitmap
GetDeviceCaps
IntersectClipRect
GetMapMode
CombineRgn
SetRectRgn
GetRgnBox
CreateRectRgnIndirect
GetTextColor
GetBkColor
StretchDIBits
CreateCompatibleBitmap
CreateSolidBrush
GetStockObject
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
RectVisible
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
DeleteObject

shell32

DragFinish

winspool.drv

ClosePrinter

Sections

.text
Size: 236KB - Virtual size: 234KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 616KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dcc6af5c277ee1baffb198c960e9c19f

Headers

File Characteristics

Imports

kernel32

user32

comctl32

shlwapi

ole32

oleaut32

advapi32

gdi32

shell32

winspool.drv

Sections

.text Size: 236KB - Virtual size: 234KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 12KB - Virtual size: 25KB

.rsrc Size: 616KB - Virtual size: 1.8MB

.text
Size: 236KB - Virtual size: 234KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 616KB - Virtual size: 1.8MB