be2aafe0d0147ca6cd93127b679b3a21ed138cbca4ee00edb9b78eb4a60a464f

Sharing

Copy URL Twitter E-mail

General

Target

be2aafe0d0147ca6cd93127b679b3a21ed138cbca4ee00edb9b78eb4a60a464f
Size

624KB
MD5

0676fac9157600e9862d04a3fac21fd1
SHA1

6a281a7800fcb7054266f3579b7a35a7451f04be
SHA256

be2aafe0d0147ca6cd93127b679b3a21ed138cbca4ee00edb9b78eb4a60a464f
SHA512

ed1445e2c7c4f8c5fd52a7bd4487205377b2704cc23901f2ec9cff93884bff2a42783d96745eef2cd832eef5c0ef3f044045850cd37a2fbdc07cd097305e5a52
SSDEEP

12288:R+bmiN9Qg4oKvpPIkEem20RQrGoOtt0FPSk1WjtlEdvGrxT:biN9A7pP8oOtt0FPB1slEdvGrR

Score

N/A

Malware Config

Signatures

Files

be2aafe0d0147ca6cd93127b679b3a21ed138cbca4ee00edb9b78eb4a60a464f
.exe windows x86

2cc5ad621a721251bec21e655dc5ad47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
RaiseException
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
GetSystemTime
GetLocalTime
SetStdHandle
GetFileType
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStartupInfoA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
Sleep
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
GetWindowsDirectoryA
DeviceIoControl
GetSystemDefaultLangID
TerminateProcess
ExitProcess
HeapAlloc
HeapFree
RtlUnwind
SizeofResource
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDriveTypeA
FindResourceExA
InterlockedExchange
GetFileSize
lstrlenW
GetOEMCP
GetCPInfo
GetFullPathNameA
FindFirstFileA
FindClose
SetEndOfFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
SetErrorMode
GetProcessVersion
FindResourceA
LoadResource
LockResource
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
GetCurrentDirectoryA
GetModuleFileNameA
GlobalFlags
MulDiv
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
TlsAlloc
LocalAlloc
lstrcpynA
GetLastError
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetTickCount
WritePrivateProfileStringA
GetPrivateProfileStringA
CreateEventA
WaitForSingleObject
CloseHandle
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
FormatMessageA
LocalFree
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
SetCurrentDirectoryA
SetEnvironmentVariableA
lstrcpyA
lstrcatA
lstrlenA
WinExec
LoadLibraryA
GetProcAddress
GetVersionExA
FreeLibrary
LCMapStringA

user32

DestroyCursor
MessageBeep
RedrawWindow
InflateRect
CopyIcon
SetTimer
KillTimer
MapDialogRect
EnumChildWindows
IsChild
WinHelpA
RegisterClassA
GetMenu
GetSubMenu
GetMenuItemID
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
OffsetRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
MoveWindow
SetWindowLongA
GetWindowTextLengthA
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
SetRect
GetMenuItemCount
IsWindowEnabled
MessageBoxA
EnableWindow
GetWindowTextA
SetWindowTextA
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameA
ScreenToClient
ClientToScreen
GetWindowLongA
WindowFromPoint
GetDesktopWindow
ReleaseCapture
GetClassInfoA
PostMessageA
PostQuitMessage
SendMessageA
SetCursor
SetCapture
LoadCursorA
GetCapture
GetLastActivePopup
LoadStringA
RegisterClipboardFormatA
wsprintfA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
GetMessageA
TranslateMessage
AdjustWindowRect
EndDialog
CreateDialogIndirectParamA
DispatchMessageA
GetActiveWindow
SetWindowsHookExA
GetCursorPos
UnregisterClassA
GetAsyncKeyState
PeekMessageA
IsWindowVisible
ValidateRect
CallNextHookEx
GetKeyState
InvalidateRect
DestroyMenu
PostThreadMessageA
GetSysColorBrush
LoadIconA
UpdateWindow
MapWindowPoints
GetSysColor
SetActiveWindow
IsWindow
AdjustWindowRectEx
GetClientRect
CopyRect
GetDC
GetTopWindow

gdi32

SetTextJustification
GetDeviceCaps
GetClipBox
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
GetTextExtentPoint32A
CreateFontIndirectA
CreateFontA
GetTextFaceA
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetBkMode
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
EnumFontFamiliesExA
DeleteObject
CreateBitmap

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegEnumValueA
AllocateAndInitializeSid
SetEntriesInAclA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
FreeSid
RegEnumKeyExA
RegCloseKey
RegOpenKeyA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA

shell32

ShellExecuteA

comctl32

PropertySheetA
ord17

oledlg

ord8

ole32

OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoCreateInstance
CoInitializeEx
CoInitialize
CoUninitialize

oleaut32

SysAllocStringLen
SysFreeString

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

wininet

InternetCanonicalizeUrlA

Sections

.text
Size: 288KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 80KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2cc5ad621a721251bec21e655dc5ad47

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

oleaut32

version

wininet

Sections

.text Size: 288KB - Virtual size: 284KB

.rdata Size: 56KB - Virtual size: 53KB

.data Size: 80KB - Virtual size: 95KB

.rsrc Size: 196KB - Virtual size: 196KB

.text
Size: 288KB - Virtual size: 284KB

.rdata
Size: 56KB - Virtual size: 53KB

.data
Size: 80KB - Virtual size: 95KB

.rsrc
Size: 196KB - Virtual size: 196KB