f7f815cf24e0d8c5b8f3d8db0df2a134e936894020c738672ece9437ddc7b4d6

Sharing

Copy URL Twitter E-mail

General

Target

f7f815cf24e0d8c5b8f3d8db0df2a134e936894020c738672ece9437ddc7b4d6
Size

312KB
MD5

7a8b7e686339e37039ed466eeef1d9ec
SHA1

b160d3eb4baedf25e0a0fb94921011162b3f011d
SHA256

f7f815cf24e0d8c5b8f3d8db0df2a134e936894020c738672ece9437ddc7b4d6
SHA512

4222bf4fb6deae309a2e7adfcda6cfa9f81ff7dd3fbb8d81e04d84bf4a441fb4265a123e787e9f3bce87b764bf22c31bf68286a2a8f9be5e0959c8a7711edea7
SSDEEP

6144:uKbmyVAQNrWdiB2Q24NhqdtrODdhJ3P8J3qOuaqH9Ik0W:uKbaQdWU26DqzMG9Unuk

Score

N/A

Malware Config

Signatures

Files

f7f815cf24e0d8c5b8f3d8db0df2a134e936894020c738672ece9437ddc7b4d6
.exe windows x86

bf827d2a4897bcb5a437b0afc777e4b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapDimensionEx
DeleteObject
SetWindowExtEx
DeleteDC
StretchDIBits
SetMapMode
CreateFontA
ScaleViewportExtEx
SetBitmapDimensionEx
OffsetViewportOrgEx
GetObjectA
CloseFigure
SetPolyFillMode
CombineRgn
SelectClipRgn
UnrealizeObject
ScaleWindowExtEx
FillRgn

user32

SetTimer
LoadBitmapW
DestroyIcon
SetWindowPos
ReleaseDC
GetMenuItemCount
IsZoomed
CreatePopupMenu
LoadAcceleratorsW
FindWindowW
OffsetRect
GetParent
GetWindowRect
GetCursorPos
SetForegroundWindow
EmptyClipboard
LoadIconW
GetWindowTextLengthW
DispatchMessageW
DestroyWindow
WindowFromPoint
KillTimer
ChildWindowFromPoint
PtInRect
SetFocus
GetCapture
DestroyMenu
GetSystemMenu
GetDlgCtrlID
LoadStringW
EnumChildWindows
SystemParametersInfoW
GetSysColorBrush
GetDesktopWindow
CallNextHookEx
CreateWindowExW
PostQuitMessage
MoveWindow
GetSystemMetrics
GetDC
ShowWindow
MessageBoxW
SetWindowsHookExW
SetWindowTextW
InflateRect
MapVirtualKeyW
DrawStateW
DestroyAcceleratorTable
RegisterClassExW
IsWindow
RegisterClassW
TranslateMessage
GetForegroundWindow
IsDialogMessageW
IntersectRect
DefWindowProcW
ModifyMenuW

shell32

ExtractIconA
ShellExecuteA
DragFinish
DragQueryFileA

winmm

waveOutReset
mixerGetDevCapsA
waveOutGetDevCapsA
waveOutUnprepareHeader

comctl32

ImageList_LoadImageA
DestroyPropertySheetPage
ImageList_GetIcon
ImageList_Create
ImageList_Draw

ole32

GetHGlobalFromILockBytes
ReadClassStg
WriteFmtUserTypeStg
CoTreatAsClass
ReadFmtUserTypeStg
SetConvertStg
CreateBindCtx
CoTaskMemAlloc
CoFreeUnusedLibraries
OleCreateFromData
StgOpenStorageOnILockBytes

kernel32

SetUnhandledExceptionFilter
GetModuleHandleA
GetStdHandle
GetProcessHeap
WriteFile
GetLastError
ExitProcess
GetFileType
TlsFree
WriteConsoleW
CreateFileA
GetStringTypeW
GetProcAddress
EnterCriticalSection
InterlockedIncrement
GetVersionExA
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
GetModuleFileNameA
MultiByteToWideChar
InitializeCriticalSection
GetCurrentProcess
GetConsoleOutputCP
LCMapStringW
GetStartupInfoW
SetLastError
FlushFileBuffers
GetModuleFileNameW
TerminateProcess
HeapAlloc
Sleep
GetCPInfo
WideCharToMultiByte
IsDebuggerPresent
GetTickCount
LeaveCriticalSection
GetCurrentProcessId
VirtualQuery
GetModuleHandleW
RtlUnwind
TlsGetValue
TlsSetValue
GetLocaleInfoA
UnhandledExceptionFilter
IsValidCodePage
GetOEMCP
HeapDestroy
SetEnvironmentVariableA
CompareStringW
FreeEnvironmentStringsA
GetACP
HeapSize
CompareStringA
GetStringTypeA
LoadLibraryW
GetCommandLineA
GetEnvironmentStrings
GetTimeFormatA
RaiseException
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
SetStdHandle
VirtualFree
VirtualAlloc
CreateMutexW
SetHandleCount
CloseHandle
ReadFile
GetCommandLineW
SetFilePointer
GetCurrentThreadId
InterlockedDecrement
WriteConsoleA
LoadLibraryA
DeleteCriticalSection
GetDateFormatA
HeapCreate
InterlockedExchange
GetStartupInfoA
TlsAlloc
HeapReAlloc
LCMapStringA
HeapFree
GetSystemTimeAsFileTime

winspool.drv

ord204
ClosePrinter

shlwapi

UrlUnescapeA
PathRemoveExtensionA
PathSkipRootA
PathAddBackslashA
PathFindFileNameA
PathIsRelativeA
PathAppendA

Sections

.text
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf827d2a4897bcb5a437b0afc777e4b0

Headers

File Characteristics

Imports

gdi32

user32

shell32

winmm

comctl32

ole32

kernel32

winspool.drv

shlwapi

Sections

.text Size: 100KB - Virtual size: 96KB

.rdata Size: 108KB - Virtual size: 104KB

.data Size: 60KB - Virtual size: 83KB

.rsrc Size: 40KB - Virtual size: 38KB

.text
Size: 100KB - Virtual size: 96KB

.rdata
Size: 108KB - Virtual size: 104KB

.data
Size: 60KB - Virtual size: 83KB

.rsrc
Size: 40KB - Virtual size: 38KB