dfaa125697571ab0e441e408b4d9a5b4b95105627d5305ebe2d61d3572c6e07d

Sharing

Copy URL Twitter E-mail

General

Target

dfaa125697571ab0e441e408b4d9a5b4b95105627d5305ebe2d61d3572c6e07d
Size

184KB
MD5

4d19a0d4eef308c49bc24def883b4de9
SHA1

47a3701e94629c1a210a36f2b1b8b029af70edb0
SHA256

dfaa125697571ab0e441e408b4d9a5b4b95105627d5305ebe2d61d3572c6e07d
SHA512

33b2219e111ce9e734b136aaa6695dd100288a133f4902f0b72b6d332a1e344f9e7803469817aed6222dc17fe97ff328dda43130b71dfe1183f7f735870ad0ec
SSDEEP

3072:Njbf8290HVx99QDhQgA7qQUo5KRExKrZUkx3SJP2S7TpScDeHEIgi:NjkHVX9QWP7qpoMREZkxiJPr71SAPIgi

Score

N/A

Malware Config

Signatures

Files

dfaa125697571ab0e441e408b4d9a5b4b95105627d5305ebe2d61d3572c6e07d
.exe windows x86

987a222570f0fafa9c1f5974df7315e9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow
IsRectEmpty
SetForegroundWindow
GetNextDlgGroupItem
IsIconic
GetTopWindow
RegisterClassW
GetMenu
LoadIconW
EqualRect
CreateWindowExW
GetClassLongW
CharNextW
CharUpperW
OffsetRect
GetClassInfoExW
WinHelpW
GetClientRect
CallWindowProcW
CopyAcceleratorTableW
RemovePropW
GetWindowPlacement
IsChild
SetRect
SendDlgItemMessageA
GetNextDlgTabItem
DefWindowProcW
IntersectRect
GetClassInfoW
GetMessageTime
RegisterWindowMessageW
MapWindowPoints
SetActiveWindow
MessageBeep
InvalidateRect
GetPropW
AdjustWindowRectEx
GetMessagePos
UpdateWindow
InvalidateRgn
IsWindow
SetPropW
DestroyMenu

kernel32

LocalFileTimeToFileTime
CreateFileW
lstrcpyW
DeleteFileW
GetProcAddress
GetCurrentDirectoryW
GetThreadLocale
GetSystemDefaultLangID
MoveFileW
GetCalendarInfoA
GetVersionExW
SizeofResource
GetACP
GetCurrentProcessId
SystemTimeToFileTime
LockResource
FindResourceW
SetThreadContext
CreateMutexW
InterlockedDecrement
FindClose
WriteFile
WaitForSingleObject
EnumResourceNamesA
GetVersion
LoadResource
GetModuleFileNameW
lstrcmpiA
InterlockedExchange
CreateDirectoryW
GetLocaleInfoW
SetFilePointer
ExitProcess
GetModuleHandleW
VirtualFree
InitializeCriticalSection
CloseHandle
WideCharToMultiByte
ReleaseMutex
LoadLibraryW
DeleteCriticalSection
GetLocaleInfoA
FindFirstFileW
EnumResourceLanguagesW
SetFileTime
RaiseException
RemoveDirectoryW
FreeLibrary
MultiByteToWideChar
FindNextFileW
ConvertDefaultLocale
ReadFile
GetFileAttributesW
lstrcmpA

shlwapi

PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathRemoveFileSpecW
PathFileExistsW
PathFindExtensionW
PathAppendW

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

advapi32

RegOpenKeyW
RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyW
RegCloseKey
RegQueryInfoKeyW
RegQueryValueW
RegCreateKeyExW
RegQueryValueExW

ole32

CoCreateInstance
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
CoTaskMemFree
CoUninitialize
CoTaskMemAlloc
CoInitialize
OleFlushClipboard
CoGetClassObject
CoFreeUnusedLibraries
StgOpenStorageOnILockBytes
OleInitialize
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CoRevokeClassObject
OleUninitialize
CLSIDFromString

comdlg32

GetFileTitleW

gdi32

GetViewportExtEx
GetStockObject
GetDeviceCaps
SetBkColor
SaveDC
GetClipBox
GetObjectW
ExtSelectClipRgn
GetRgnBox
SetWindowExtEx
DeleteObject
CreateBitmap
SelectObject
RestoreDC
SetTextColor
GetTextColor
Escape
DeleteDC
SetMapMode
PtVisible
SetViewportExtEx
GetMapMode
RectVisible
GetWindowExtEx
ExtTextOutW
TextOutW
SetViewportOrgEx
ScaleWindowExtEx
ScaleViewportExtEx
GetBkColor
OffsetViewportOrgEx
CreateRectRgnIndirect

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

oledlg

OleUIBusyW

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

987a222570f0fafa9c1f5974df7315e9

Headers

File Characteristics

Imports

user32

kernel32

shlwapi

shell32

advapi32

ole32

comdlg32

gdi32

winspool.drv

oledlg

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 77KB - Virtual size: 76KB

.edata Size: 1024B - Virtual size: 236KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 77KB - Virtual size: 76KB

.edata
Size: 1024B - Virtual size: 236KB