c3a3ac98bcb367c087ff2d33a342734511e28337a24eae9a1576a84bdb545905

Sharing

Copy URL

Twitter E-mail

General

Target

c3a3ac98bcb367c087ff2d33a342734511e28337a24eae9a1576a84bdb545905
Size

308KB
MD5

19199c438ffba9bb8653cf3ac4609c40
SHA1

d8865deec6f8cc05588340c2c335300b4c78b558
SHA256

c3a3ac98bcb367c087ff2d33a342734511e28337a24eae9a1576a84bdb545905
SHA512

cf7a9002ded435c7c4710be8f6a3e92d47b1eafde90ae179ab30b5ed7e898091731cc98fb991a41c9ac3c86ad806626016032b624039692883e9589414b551eb
SSDEEP

3072:wdqqq+kWy802qhU26hrT3IcK2DCyh9bstWMAxfuOeMyrQUpnxWc4nHBwKCRIIY9I:DSy802IKrA22yh9bcQ6CJEwFa

Score

N/A

Malware Config

Signatures

Files

c3a3ac98bcb367c087ff2d33a342734511e28337a24eae9a1576a84bdb545905
.exe windows x86

6c44757dbda85495c21b270edf22b750

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

setupapi

SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInstanceIdW
SetupDiOpenDevRegKey

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

kernel32

WriteFile
ReadFile
Sleep
GetTickCount
lstrlenA
GetWindowsDirectoryW
lstrcmpiW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrlenW
GetACP
GetProcAddress
GetModuleHandleW
IsValidCodePage
GetLocaleInfoW
FindClose
FindFirstFileW
GetModuleFileNameW
LockResource
LoadResource
FindResourceW
CreateMutexW
ReleaseMutex
GetSystemInfo
GetCurrentProcess
GetVersionExW
lstrcpyW
MulDiv
MultiByteToWideChar
WideCharToMultiByte
lstrcmpW
lstrcpynW
lstrcatW
lstrcpyA
lstrcpynA
FreeLibrary
LoadLibraryW
GetCurrentThreadId
GetFileAttributesW
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetConsoleCP
SetFilePointer
ClearCommError
InitializeCriticalSection
LoadLibraryA
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
GetOEMCP
GetCPInfo
RaiseException
ExitProcess
HeapSize
InterlockedDecrement
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoW
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CloseHandle
CreateFileW
SetupComm
SetCommTimeouts
SetLastError
GetLastError
GlobalUnlock
GlobalFree
RtlUnwind
GetLocaleInfoA
CreateFileA
FlushFileBuffers
GetConsoleMode

user32

UpdateWindow
AttachThreadInput
SetWindowTextW
GetDesktopWindow
MoveWindow
GetClientRect
GetWindowRect
SetForegroundWindow
SetWindowPos
UnregisterClassW
PostQuitMessage
CallWindowProcW
DefWindowProcW
CharUpperW
LoadImageW
GetWindowThreadProcessId
SetPropW
GetDoubleClickTime
SetTimer
SetCapture
GetPropW
PostMessageW
ReleaseCapture
KillTimer
RemovePropW
SendMessageW
DestroyWindow
GetSystemMetrics
InvalidateRect
DestroyCursor
GetMessageW
IsDialogMessageW
TranslateMessage
DispatchMessageW
CreateDialogParamW
LoadStringW
LoadCursorW
SetCursor
GetDlgItem
ScreenToClient
GetWindowLongW
SetWindowLongW
SetProcessDefaultLayout
GetForegroundWindow
DrawTextW
GetClassLongW

gdi32

StartDocW
EndDoc
StartPage
EndPage
SelectObject
GetTextMetricsW
GetDeviceCaps
CreateFontIndirectW
DeleteDC
DeleteObject

winspool.drv

EnumPrintersW

comdlg32

PrintDlgW
CommDlgExtendedError

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW

shell32

DoEnvironmentSubstW

oleaut32

SysFreeString

Sections

.text
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6c44757dbda85495c21b270edf22b750

Headers

File Characteristics

Imports

comctl32

setupapi

version

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 140KB - Virtual size: 136KB

.rdata Size: 64KB - Virtual size: 61KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 92KB - Virtual size: 112KB

.text
Size: 140KB - Virtual size: 136KB

.rdata
Size: 64KB - Virtual size: 61KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 92KB - Virtual size: 112KB