11db70327f2468e070f1fa0e6665acfa00ed250fe8b6cf10e6bdf67f7c6f3b11

Sharing

Copy URL

Twitter E-mail

General

Target

11db70327f2468e070f1fa0e6665acfa00ed250fe8b6cf10e6bdf67f7c6f3b11
Size

180KB
MD5

3305d0e73cea156edb0054fb0e4922af
SHA1

304ca88cf6bf77fcafd2f63ef4fd423d64ccc0cb
SHA256

11db70327f2468e070f1fa0e6665acfa00ed250fe8b6cf10e6bdf67f7c6f3b11
SHA512

af6f3e55b19953e0338d461ad6e8f58774896a9ec0ea4c05bff10ff1e1fe86b6fe0ff5bbce32fed316febec3b215a99708f01840b55a6cc268dac9c473868ec5
SSDEEP

3072:sebJzLgB54gNTzfMgRclpFPujNi0kK0AAZBbJ12jJrbZ8UQiogg7jS57x:LaB54gNTzfb2pFC5BAYJ3ZQi57x

Score

N/A

Malware Config

Signatures

Files

11db70327f2468e070f1fa0e6665acfa00ed250fe8b6cf10e6bdf67f7c6f3b11
.exe windows x86

fc04cec742848b2aa8b8294bd185c5f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAddAtomA
GlobalGetAtomNameA
GetVersion
LoadResource
FindResourceA
GlobalFindAtomA
FreeLibrary
GetProcessVersion
GetFileAttributesA
GetFileSize
GetFileTime
SetErrorMode
GetCPInfo
GetOEMCP
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
ExitProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapFree
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
GetACP
lstrcatA
GetModuleHandleA
CreateFileA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
WritePrivateProfileStringA
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
LoadLibraryA
GetProcAddress
SetEndOfFile
UnlockFile
FlushFileBuffers
LockFile
GetWindowsDirectoryA
ReadFile
SetFilePointer
WriteFile
GetTimeZoneInformation
DuplicateHandle
GetCurrentProcess
GetProfileStringA
GetCurrentThreadId
SetLastError
lstrcpynA
GetLastError
MultiByteToWideChar
LocalFree
InterlockedDecrement
WideCharToMultiByte
lstrlenA
InterlockedIncrement
GetModuleFileNameA
CloseHandle
GlobalDeleteAtom
GlobalLock
GlobalAlloc
GetCurrentThread
lstrcmpA
lstrcmpiA
SizeofResource
GetVersionExA
GetCurrentDirectoryA
Sleep
WinExec
CopyFileA

user32

ShowWindow
SetFocus
GetWindowPlacement
SetWindowPos
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
RegisterWindowMessageA
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
DefWindowProcA
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconA
GetSysColorBrush
LoadStringA
DestroyMenu
InvalidateRect
GetWindowTextLengthA
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GetMenuItemCount
UnhookWindowsHookEx
GetWindowTextA
SetWindowTextA
GetWindow
GetDlgCtrlID
SetWindowLongA
PtInRect
GetClassNameA
ScreenToClient
ClientToScreen
LoadCursorA
GetCapture
wsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
EnableWindow
SetCursor
SendMessageA
PostQuitMessage
PostMessageA
ExitWindowsEx
MessageBoxA
GetSystemMetrics
CharUpperA
GetWindowRect
CharNextA
ShowCaret
IsWindowUnicode
UnregisterClassA
HideCaret
DefDlgProcA
ExcludeUpdateRgn
DrawFocusRect
InflateRect

gdi32

GetTextExtentPointA
BitBlt
PatBlt
CreateDIBitmap
DeleteObject
DeleteDC
CreateBitmap
SaveDC
RestoreDC
GetStockObject
SelectObject
SetBkMode
SetBkColor
SetTextColor
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
IntersectClipRect
CreateCompatibleDC
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA

comctl32

ord17

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fc04cec742848b2aa8b8294bd185c5f4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 8KB - Virtual size: 22KB

.rsrc Size: 72KB - Virtual size: 72KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 8KB - Virtual size: 22KB

.rsrc
Size: 72KB - Virtual size: 72KB