6ab1adee6718c91d07e6cc35d4d86c8942c83ea69ca9f882e9ad39b949e8b9a6

Sharing

Copy URL Twitter E-mail

General

Target

6ab1adee6718c91d07e6cc35d4d86c8942c83ea69ca9f882e9ad39b949e8b9a6
Size

848KB
MD5

2e379eeb22b28e4e5b2cbe72cf63dc80
SHA1

b8f5811e4964d0609f38bf8314e5dd89847b3952
SHA256

6ab1adee6718c91d07e6cc35d4d86c8942c83ea69ca9f882e9ad39b949e8b9a6
SHA512

4dae05ae05e4bbfaa53575f2491718a2ac096e3f8ff2a9f010c77baee94beeedcedb223e7148d6d4cc6db2852eefb0703d161113ce909c73ae96b5a783e19fa5
SSDEEP

24576:Bf7/F+dtcsGrbOupQ4lB87s22enJc+apvPelLDR:RQzepQno22enAut

Score

N/A

Malware Config

Signatures

Files

6ab1adee6718c91d07e6cc35d4d86c8942c83ea69ca9f882e9ad39b949e8b9a6
.exe windows x86

92a117d9a37e366d22944927f80833be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragMove
ImageList_Add
ImageList_DragLeave
ImageList_SetBkColor
ImageList_Create
ImageList_Draw
_TrackMouseEvent
ImageList_GetIcon
ImageList_LoadImageA
ImageList_DragEnter
ImageList_BeginDrag
ImageList_Replace
ImageList_Destroy
ImageList_Remove
ImageList_DragShowNolock
ord17
PropertySheetA
ImageList_GetIconSize
ImageList_AddMasked
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_EndDrag
ImageList_GetImageInfo
ImageList_GetImageCount
DestroyPropertySheetPage
CreatePropertySheetPageA

gdi32

CreateCompatibleDC
GetTextAlign
OffsetViewportOrgEx
GetBoundsRect
Arc
CreateBitmap
GetCharABCWidthsA
CreateEllipticRgnIndirect
DeleteDC
GetTextFaceA
CloseMetaFile
CreateHalftonePalette
RealizePalette
OffsetClipRgn
SetAbortProc
CreateFontIndirectA
ScaleViewportExtEx
GetBkColor
ScaleWindowExtEx
PathToRegion
TextOutA
GetTextExtentPointA
BeginPath
FlattenPath
FillPath
BitBlt
StretchBlt
CreateRoundRectRgn
ResizePalette
CopyMetaFileA
GetTextCharacterExtra
Ellipse
CreateSolidBrush
PaintRgn
UnrealizeObject
GetNearestPaletteIndex
CreateCompatibleBitmap
CreateEllipticRgn
GetOutlineTextMetricsA
ResetDCA
CreateMetaFileA
Chord
SetWindowOrgEx
GetROP2
GetStockObject
GetBitmapDimensionEx
GetPath
SetWindowExtEx
IntersectClipRect
SetPolyFillMode
GetRgnBox
StretchDIBits
PolyBezier
SetPaletteEntries
CreatePalette
PlayEnhMetaFile
MoveToEx
GetWindowExtEx
SetBitmapDimensionEx
Pie
SelectClipPath
InvertRgn
RectInRegion
SetViewportOrgEx
OffsetWindowOrgEx
SetTextJustification
ExtFloodFill
PtInRegion
GetDeviceCaps
GetGlyphOutlineA
StrokeAndFillPath
GetCharWidthA
SelectClipRgn
CreateBitmapIndirect
GetTextExtentPoint32A
SetTextCharacterExtra
EqualRgn
CombineRgn
EndPath
StrokePath
SetBitmapBits
SetBrushOrgEx

user32

SendMessageA
DestroyCursor
FillRect
ShowCaret
CopyIcon
SetClipboardData
BeginDeferWindowPos
SetWindowPos
GetSystemMenu
LoadBitmapA
OffsetRect
EnableWindow
ShowWindow
CreateWindowExA
SetCaretPos
IsChild
DrawTextA
WindowFromPoint
EnableMenuItem
GetDlgCtrlID
CharUpperA
GetClassInfoExA
InvalidateRect
DrawFocusRect
MessageBeep
CheckMenuItem
DrawIconEx
DrawMenuBar
GetMessageA
RegisterClassA
CloseClipboard
CharNextA
GetWindowTextA
IsWindowVisible
GetPropA
EndDeferWindowPos
LoadCursorA
DispatchMessageA
GetSysColor
AdjustWindowRectEx
MapWindowPoints
SetMenuItemBitmaps
LockWindowUpdate
DestroyAcceleratorTable
CreateMenu
SetTimer
CallNextHookEx
TranslateMessage
ReleaseDC
GetCapture
GetCursorPos
GetMessagePos
GetWindowLongA
ScreenToClient
GetFocus
WinHelpA
GetWindowRect
GetMessageTime
DrawEdge
PtInRect
InflateRect
ClientToScreen
AppendMenuA
GetWindow
LoadStringA
IsWindowEnabled
ReuseDDElParam
SetForegroundWindow
TabbedTextOutA
IntersectRect
DestroyWindow
GetClientRect
ReleaseCapture
GetParent
LoadIconA
SetPropA
RemovePropA
GetForegroundWindow
GetClassNameA
SetActiveWindow
RegisterClassExA
GetClassInfoA
UpdateWindow
CreateCaret
SystemParametersInfoA
DestroyIcon
GetMenuCheckMarkDimensions
SetWindowContextHelpId
SetWindowTextA
FrameRect
RegisterWindowMessageA
SetCursor
GetDC
GetWindowThreadProcessId
GetSubMenu
ModifyMenuA
DefWindowProcA
MessageBoxA

winmm

waveInOpen
waveInReset
waveInClose
waveInStart
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader

advapi32

OpenProcessToken
RegCreateKeyA
SetSecurityDescriptorDacl
GetUserNameA
InitializeSecurityDescriptor
RegSetValueExA
RegEnumKeyA
CloseServiceHandle
RegOpenKeyExA
RegQueryValueExA
OpenSCManagerA
RegQueryInfoKeyA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
CreateServiceA
RegQueryValueA
RegEnumKeyExA
RegEnumValueA
StartServiceA
RegOpenKeyA
SetFileSecurityA
RegDeleteKeyA
OpenServiceA
RegSetValueA

wininet

FtpRemoveDirectoryA
FtpDeleteFileA
InternetCanonicalizeUrlA
InternetCloseHandle
InternetGetLastResponseInfoA
InternetOpenA
FtpRenameFileA

kernel32

GetTickCount
IsValidLocale
CloseHandle
QueryPerformanceCounter
GetProcAddress
ExitProcess
HeapAlloc
InterlockedIncrement
MultiByteToWideChar
LCMapStringW
OutputDebugStringA
TlsAlloc
GetStringTypeW
VirtualQuery
GetConsoleMode
GetCurrentProcess
SetEnvironmentVariableA
GetStartupInfoA
GetDateFormatA
GetCurrentProcessId
SetHandleCount
WriteConsoleA
GetLastError
LoadLibraryA
GetACP
GetFileType
EnumSystemLocalesA
GetCommandLineA
GetCPInfo
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
WriteConsoleW
HeapSize
WriteFile
GetModuleHandleW
GetModuleFileNameW
EnterCriticalSection
GetConsoleOutputCP
TerminateProcess
GetEnvironmentStringsW
HeapCreate
HeapReAlloc
GetStringTypeA
GetSystemTimeAsFileTime
SetConsoleCtrlHandler
LoadLibraryW
FreeLibrary
FreeEnvironmentStringsA
DeleteCriticalSection
GetLocaleInfoA
RtlUnwind
InitializeCriticalSectionAndSpinCount
GetCurrentThread
GetLocaleInfoW
OutputDebugStringW
TlsGetValue
HeapDestroy
DebugBreak
LCMapStringA
VirtualFree
HeapValidate
GetStdHandle
TlsFree
IsValidCodePage
SetFilePointer
HeapFree
RaiseException
CompareStringA
CreateFileA
TlsSetValue
GetProcessHeap
InterlockedExchange
LeaveCriticalSection
InterlockedDecrement
WideCharToMultiByte
VirtualAlloc
GetTimeFormatA
FatalAppExitA
GetCurrentThreadId
lstrlenA
GetModuleFileNameA
SetLastError
GetUserDefaultLCID
ReadFile
IsBadReadPtr
CompareStringW
GetModuleHandleA
GetTimeZoneInformation
FreeEnvironmentStringsW
CreateMutexA
Sleep
SetStdHandle
GetOEMCP
GetEnvironmentStrings
GetConsoleCP
FlushFileBuffers

winspool.drv

ord204
DocumentPropertiesA

Sections

.text
Size: 216KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 492KB - Virtual size: 490KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

92a117d9a37e366d22944927f80833be

Headers

File Characteristics

Imports

comctl32

gdi32

user32

winmm

advapi32

wininet

kernel32

winspool.drv

Sections

.text Size: 216KB - Virtual size: 214KB

.rdata Size: 492KB - Virtual size: 490KB

.data Size: 100KB - Virtual size: 105KB

.rsrc Size: 36KB - Virtual size: 32KB

.text
Size: 216KB - Virtual size: 214KB

.rdata
Size: 492KB - Virtual size: 490KB

.data
Size: 100KB - Virtual size: 105KB

.rsrc
Size: 36KB - Virtual size: 32KB