3210f45a7b34ee7e720bcf7f80a0b206113c4f80b8cc29911d1695150a653ef5

Sharing

Copy URL

Twitter E-mail

General

Target

3210f45a7b34ee7e720bcf7f80a0b206113c4f80b8cc29911d1695150a653ef5
Size

374KB
MD5

527f230e01a2e7b344dd0239c9c55120
SHA1

798703d2ff0d64c6bb11dfea77c43b04881089f4
SHA256

3210f45a7b34ee7e720bcf7f80a0b206113c4f80b8cc29911d1695150a653ef5
SHA512

0846f651530d6683c962cad6eef063a1f24f915d24847da8e1cf23d24238e062eb94a390c44824eb1007e847d1cb73d58b91576be9017943d17d350a246348b1
SSDEEP

6144:+3JYtNslcUZFxyKOqF/FAr5h4LmSPZUDYGjxr5+ymXTfP:+5YtNslcW3ydG+5WmSPSXxr5+fP

Score

N/A

Malware Config

Signatures

Files

3210f45a7b34ee7e720bcf7f80a0b206113c4f80b8cc29911d1695150a653ef5
.exe windows x86

c532b20e5b869680e193d6d716a47d4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

WritePrivateProfileStringA
SetErrorMode
InterlockedExchange
RaiseException
RtlUnwind
HeapAlloc
GetCommandLineA
ExitProcess
TerminateProcess
HeapReAlloc
HeapSize
HeapFree
GetStartupInfoA
HeapDestroy
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
lstrcpyW
GetThreadLocale
GetStringTypeExA
lstrlenA
InterlockedIncrement
GetACP
GetVersionExA
CompareStringA
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GlobalFlags
GetModuleFileNameA
GlobalAlloc
lstrcmpA
GetCurrentThread
lstrcpynA
FormatMessageA
GetLastError
GetVersion
MulDiv
SetLastError
HeapCreate
GlobalGetAtomNameA
CompareStringW
lstrcatA
GetCurrentThreadId
GlobalDeleteAtom
GlobalAddAtomA
GlobalFindAtomA
GlobalUnlock
lstrcpyA
GlobalLock
GetSystemDefaultLangID
GlobalFree
LoadLibraryW
WaitForSingleObject
CreateProcessA
CloseHandle
lstrcmpiA
OpenProcess
LoadResource
FreeLibrary
FindResourceA
OutputDebugStringA
LockResource
GetModuleHandleA
VirtualFree
lstrcmpW
VirtualAlloc
LCMapStringA
LCMapStringW
GetProcAddress
InterlockedDecrement
LocalAlloc
WideCharToMultiByte
lstrlenW
LocalFree
LoadLibraryA
GetSystemDirectoryA
MultiByteToWideChar

user32

PtInRect
SendDlgItemMessageA
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
ClientToScreen
BeginPaint
EndPaint
TabbedTextOutA
GrayStringA
PostQuitMessage
GetCursorPos
ValidateRect
TranslateMessage
LoadStringA
PeekMessageA
MapWindowPoints
GetSysColorBrush
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
DestroyMenu
UnhookWindowsHookEx
GetPropA
AdjustWindowRectEx
DispatchMessageA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetWindowPos
RegisterWindowMessageA
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
GetSystemMenu
RemoveMenu
LoadBitmapA
DrawTextA
DrawIcon
GetSystemMetrics
LoadImageA
DefWindowProcA
FindWindowA
IsIconic
WaitForInputIdle
SetCursor
LoadCursorA
SetForegroundWindow
SendMessageTimeoutA
GetClassNameA
IsWindowVisible
GetWindowThreadProcessId
GetWindow
GetKeyState
BringWindowToTop
CharLowerA
wsprintfA
ScreenToClient
GetFocus
GetParent
PostMessageA
FillRect
InvalidateRect
UpdateWindow
GetDC
GetClientRect
ReleaseDC
SetWindowLongA
InflateRect
SetRectEmpty
CopyRect
GetSysColor
DrawFrameControl
FrameRect
DrawFocusRect
EnableWindow
GetMessageA
GetWindowLongA
SetFocus
SystemParametersInfoA
GetWindowRect
GetTopWindow
MessageBoxA
CallWindowProcA
RemovePropA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
LoadIconA
SendMessageA
IsWindow
SetPropA
UnregisterClassA

gdi32

BitBlt
CreateFontIndirectA
SetTextColor
GetObjectA
GetClipBox
SetBkMode
CreateBitmap
DeleteDC
SetBkColor
SaveDC
RestoreDC
GetStockObject
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
SetTextAlign
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextMetricsA
CreateCompatibleDC

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegSetValueExA
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA

comctl32

ImageList_Destroy
ord17
ord8

ole32

OleInitialize
OleUninitialize

Sections

.text
Size: 276KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c532b20e5b869680e193d6d716a47d4a

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

ole32

Sections

.text Size: 276KB - Virtual size: 274KB

.data Size: 12KB - Virtual size: 23KB

.rsrc Size: 76KB - Virtual size: 76KB

.text
Size: 276KB - Virtual size: 274KB

.data
Size: 12KB - Virtual size: 23KB

.rsrc
Size: 76KB - Virtual size: 76KB