f0efe20da649cc9c7544a7faf061cb97dc1228c9c741214d660133270ba9f649

Sharing

Copy URL Twitter E-mail

General

Target

f0efe20da649cc9c7544a7faf061cb97dc1228c9c741214d660133270ba9f649
Size

229KB
MD5

67212068e63ac186b4864fc1ad5a39b0
SHA1

71edd8ef7d6b2bb48a8473e355dcf2e854f94d97
SHA256

f0efe20da649cc9c7544a7faf061cb97dc1228c9c741214d660133270ba9f649
SHA512

266a8042226d96b0ba3ced5771e53c2ccc429e5a2a018e53c8c0525913b0d22ce0c4c09ec9298a9d45d20653fb4bede919ca651cc03436b327d76fab1a52f27a
SSDEEP

6144:8V3HNX7X4wplU6+/iDkSvHFE6DgE5+4NAzX/Ck54kMcK:8V5D4sGXm5vH26DgE+Dq9T

Score

N/A

Malware Config

Signatures

Files

f0efe20da649cc9c7544a7faf061cb97dc1228c9c741214d660133270ba9f649
.exe windows x86

be8a9bac6d07a8fa8a5c9106282289cf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SignalObjectAndWait
TransactNamedPipe
GetThreadContext
GetNamedPipeHandleStateA
GetHandleInformation
TransactNamedPipe
IsValidCodePage
GlobalAddAtomA
WaitForMultipleObjects
SetProcessAffinityMask
CloseHandle
MapViewOfFile
lstrcpynA
DeviceIoControl
CreateDirectoryW
GetProcessPriorityBoost
LocalSize
SetProcessPriorityBoost
GetNumberFormatA
DefineDosDeviceW
SetProcessShutdownParameters
GetVersionExA
TransactNamedPipe
FormatMessageA
EnumDateFormatsExA
ReleaseSemaphore
LCMapStringW
GetSystemDefaultLCID
TransactNamedPipe
ContinueDebugEvent
TransactNamedPipe
DeleteVolumeMountPointW
SetHandleInformation
_llseek
RemoveDirectoryA

winspool.drv

ClosePrinter
AddPortW

ole32

OleCreateEmbeddingHelper
HMENU_UserUnmarshal
OleDraw

user32

FlashWindow
SetSysColors
SetWindowPos
SetFocus
OpenDesktopA
SetWindowsHookW
DdeKeepStringHandle
IsRectEmpty
CharLowerW
VkKeyScanW
GetMessageW
GetMenuItemID
VkKeyScanExA
GetWindowRgn
SetActiveWindow
SetClassWord
DdeAccessData
CharNextExA
PeekMessageW
IsZoomed
GetWindowPlacement
GetKeyboardState
GetMessageA
CreateIconFromResourceEx
SetMenuInfo
InvertRect
EnumDisplayDevicesA
VkKeyScanA
UnregisterDeviceNotification
DispatchMessageA
DialogBoxParamA
LoadAcceleratorsA
BeginDeferWindowPos
SetPropA
GetCursor
FindWindowExW
LoadCursorA
SendMessageTimeoutW
RegisterWindowMessageA
GetDlgItemTextW
IsWindowEnabled
SetMenu
GetLastInputInfo
ModifyMenuW
OpenInputDesktop
CreateAcceleratorTableA
WaitForInputIdle
DestroyWindow
MapVirtualKeyW
GetDlgItem
TrackPopupMenuEx
SetCaretPos
CreateCursor
UpdateWindow
EnumClipboardFormats
SetSystemCursor
ToAsciiEx
SetDeskWallpaper
SetWindowLongA
SetWindowContextHelpId
GetMessageExtraInfo
FindWindowW
CallMsgFilterA
GetNextDlgTabItem
OemToCharBuffA
CascadeChildWindows
LockSetForegroundWindow
RemoveMenu
LoadCursorW
CheckMenuItem
GetUserObjectSecurity
ClientToScreen
IntersectRect
MenuItemFromPoint
BroadcastSystemMessageW
GetKeyboardLayoutNameA
EditWndProc
MessageBoxIndirectA
UserHandleGrantAccess
ScrollWindowEx
MapVirtualKeyA
ChangeClipboardChain
InsertMenuA
WaitMessage
ExcludeUpdateRgn
IsClipboardFormatAvailable
PostQuitMessage
DrawAnimatedRects
LoadBitmapW
DialogBoxIndirectParamW
DdeQueryStringA
ImpersonateDdeClientWindow
GetWindowModuleFileNameA
OemToCharBuffW

Sections

.text
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 410B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 512B - Virtual size: 490B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be8a9bac6d07a8fa8a5c9106282289cf

Headers

File Characteristics

Imports

kernel32

winspool.drv

ole32

user32

Sections

.text Size: 141KB - Virtual size: 140KB

.rdata Size: 4KB - Virtual size: 3KB

.reloc Size: 512B - Virtual size: 410B

.data Size: 75KB - Virtual size: 135KB

.xdata Size: 512B - Virtual size: 490B

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 141KB - Virtual size: 140KB

.rdata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 410B

.data
Size: 75KB - Virtual size: 135KB

.xdata
Size: 512B - Virtual size: 490B

.rsrc
Size: 6KB - Virtual size: 5KB