2f317ed8da6d8e1211f29883ffde4383a3bd698993a49d07e4c21621d74df293

Sharing

Copy URL

Twitter E-mail

General

Target

2f317ed8da6d8e1211f29883ffde4383a3bd698993a49d07e4c21621d74df293
Size

634KB
MD5

64a501b427ab2c29a3cba7216d24e1e8
SHA1

1174cea1fbfb9a4a4c4f42982fa0d61c431fea41
SHA256

2f317ed8da6d8e1211f29883ffde4383a3bd698993a49d07e4c21621d74df293
SHA512

caa496dfd949386ef452c72c3e3793a77fec8f26a0ff20acc2bbffb5bc6f12679c819e5664a1ff15974cfa2446efa5b32d08288f382c726fc930e2edda78751f
SSDEEP

12288:3XeFWhgkJ7pr4G/l+iuTUk5JaVwRyYb9lDSirCmaGJLilyhhdwA:neFXA7pDlcTU+0wRJbbDSirCm/RAedwA

Score

N/A

Malware Config

Signatures

Files

2f317ed8da6d8e1211f29883ffde4383a3bd698993a49d07e4c21621d74df293
.exe windows x86

1bfeff51c3cea9a4885001dbff949022

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FileTimeToLocalFileTime
RtlUnwind
RaiseException
GetStartupInfoA
SetErrorMode
FileTimeToSystemTime
HeapAlloc
HeapFree
TerminateProcess
GetCommandLineA
HeapReAlloc
GetTimeZoneInformation
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetACP
HeapSize
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetModuleHandleA
GetProcAddress
LockResource
FindResourceA
LoadResource
lstrlenA
lstrcpynA
GlobalAlloc
GetFileTime
GetFileSize
GetFileAttributesA
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetProcessVersion
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
SetLastError
HeapDestroy
LocalFree
GlobalReAlloc
GlobalLock
MulDiv
HeapCreate
GlobalFree
lstrcmpA
CloseHandle
GetModuleFileNameA
WideCharToMultiByte
GetCurrentThread
MultiByteToWideChar
LoadLibraryA
InterlockedDecrement
InterlockedIncrement
lstrcatA
FreeLibrary
GetVersion
lstrcmpiA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalDeleteAtom
GlobalAddAtomA
GlobalFindAtomA
VirtualFree
lstrcpyA
VirtualAlloc
GetFileType
GlobalUnlock

user32

GetMessageA
AdjustWindowRectEx
DispatchMessageA
PeekMessageA
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
PostMessageA
IsDialogMessageA
SetWindowTextA
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
PostQuitMessage
SetCursor
GetCursorPos
ValidateRect
LoadStringA
DestroyMenu
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
LoadCursorA
GetSysColorBrush
PtInRect
TranslateMessage
IsWindowVisible
GetTopWindow
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
GetParent
GetFocus
IsWindowEnabled
IsWindow
SetFocus
RegisterWindowMessageA
UnregisterHotKey
GetClassNameA
IsRectEmpty
GetDC
ReleaseDC
ClientToScreen
EnumWindows
GetWindowTextA
MessageBoxA
FindWindowExA
ShowWindow
SetForegroundWindow
OpenIcon
EmptyClipboard
OpenClipboard
SetClipboardData
CloseClipboard
IsIconic
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
LoadMenuA
SetMenu
CopyRect
GetCapture
RegisterHotKey
GetWindowRect
GetSystemMetrics
MoveWindow
LoadIconA
EnableWindow
GetMessageTime
RemovePropA
GetClassLongA
UnregisterClassA

gdi32

DeleteObject
SelectPalette
GetStockObject
RealizePalette
GetDeviceCaps
CreatePalette
GetObjectA
DeleteDC
BitBlt
GetSystemPaletteEntries
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
GetClipBox
CreateDCA
SetBkColor
CreateBitmap
SetTextColor
SaveDC
RestoreDC
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportExtEx
GetDIBits

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA

comctl32

ord17

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 520KB - Virtual size: 679KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 336.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1bfeff51c3cea9a4885001dbff949022

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

Sections

.text Size: 72KB - Virtual size: 71KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 520KB - Virtual size: 679KB

.rsrc Size: 12KB - Virtual size: 336.0MB

.text
Size: 72KB - Virtual size: 71KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 520KB - Virtual size: 679KB

.rsrc
Size: 12KB - Virtual size: 336.0MB