7422bf7fbd0b7f600e38777b61846d3788242e86a7927a7c7275b683b0a91af0

Sharing

Copy URL Twitter E-mail

General

Target

7422bf7fbd0b7f600e38777b61846d3788242e86a7927a7c7275b683b0a91af0
Size

420KB
MD5

476c2797b8c7620f9580de207de919b9
SHA1

87bfe9a05f0f29693ab47f737452eeeec2b93716
SHA256

7422bf7fbd0b7f600e38777b61846d3788242e86a7927a7c7275b683b0a91af0
SHA512

98b9f681c149ab90d7de7ff6b326bbc12b4777d945cfb0e1b1b8d6d4566e6a6c5357d7fb057140c1311712ca534b7715b1120679affd97bc28c8af74339d837b
SSDEEP

6144:cAfwOBydt+970Gsunx0bLYnkmGR0bUjQ4Wa5vSrYgiGdM+D4b4:cGwJD+x0hunxo8nqRIUki5vwYl0D4

Score

N/A

Malware Config

Signatures

Files

7422bf7fbd0b7f600e38777b61846d3788242e86a7927a7c7275b683b0a91af0
.exe windows x86

8c70667fc2faa9efad0ba284a7a76b8e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
GetEnvironmentStringsW
ReadFile
GetStdHandle
GetProcessHeap
SetLastError
SetConsoleCtrlHandler
LCMapStringA
WaitForSingleObject
SetEnvironmentVariableA
InterlockedExchange
GetDateFormatA
WideCharToMultiByte
CloseHandle
GetCurrentProcessId
GetEnvironmentStrings
InterlockedIncrement
QueryPerformanceCounter
DeleteCriticalSection
TlsGetValue
GetModuleHandleA
GetCPInfo
GetConsoleMode
InitializeCriticalSectionAndSpinCount
FatalAppExitA
DebugBreak
HeapValidate
GetStringTypeA
VirtualFree
GetProcAddress
GetUserDefaultLCID
FreeEnvironmentStringsW
EnumSystemLocalesA
InterlockedDecrement
SetUnhandledExceptionFilter
GetACP
GetCurrentThreadId
TlsFree
GetSystemTimeAsFileTime
UnhandledExceptionFilter
HeapReAlloc
FlushFileBuffers
LCMapStringW
FreeLibrary
lstrlenA
GetCurrentThread
HeapAlloc
OutputDebugStringA
OutputDebugStringW
GetTickCount
GetConsoleCP
HeapFree
EnterCriticalSection
GetStartupInfoA
GetModuleHandleW
GetLastError
GetModuleFileNameA
ExitProcess
HeapCreate
GetFileType
RaiseException
WriteConsoleW
TlsAlloc
GetTimeFormatA
VirtualAlloc
GetConsoleOutputCP
VirtualQuery
LocalFree
CreateMutexA
SetHandleCount
HeapDestroy
HeapSize
TlsSetValue
TerminateProcess
WriteFile
LoadLibraryW
GetLocaleInfoW
GetLocaleInfoA
IsDebuggerPresent
IsValidLocale
FreeEnvironmentStringsA
GetCommandLineA
SetFilePointer
GetTimeZoneInformation
LeaveCriticalSection
CreateFileA
GetOEMCP
SetStdHandle
Sleep
GetCurrentProcess
CompareStringA
IsValidCodePage
RtlUnwind
CompareStringW
MultiByteToWideChar
LoadLibraryA
GetStringTypeW
GetModuleFileNameW
WriteConsoleA

advapi32

AddAce
GetSidSubAuthorityCount
InitializeSecurityDescriptor
CopySid
RegQueryValueExA
RegGetKeySecurity
SetSecurityDescriptorDacl
FreeSid
RegOpenKeyExA
InitializeAcl
RegCloseKey
RegDeleteValueA
GetUserNameA
RegSetKeySecurity
GetSidSubAuthority
AllocateAndInitializeSid
GetLengthSid
OpenProcessToken

winmm

waveOutClose
waveOutPrepareHeader
waveOutOpen
waveOutWrite
waveOutUnprepareHeader

winspool.drv

ClosePrinter
DeviceCapabilitiesA
OpenPrinterA
EnumJobsA
GetPrinterDriverDirectoryA
AddPrinterDriverA
EnumPrintersA
EnumPrinterDriversA
GetPrinterA
AddPrinterA

oleaut32

LoadTypeLi

comdlg32

ChooseColorA
PageSetupDlgA

shell32

ord155
Shell_NotifyIconA
ShellExecuteExA
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
DragAcceptFiles
SHGetFileInfoA
ExtractIconA
SHGetDesktopFolder
SHFileOperationA
SHChangeNotify
SHGetMalloc

user32

LoadCursorA
CopyIcon
DestroyCursor
RegisterClipboardFormatA
GetSysColorBrush
UnionRect
GetWindowDC
MapVirtualKeyA
GetClassInfoA
CopyRect
DestroyIcon
ShowScrollBar
FindWindowA
InvalidateRgn
GetDlgCtrlID
GetCapture
GetTabbedTextExtentA
DeleteMenu
DispatchMessageA
GetMenuItemInfoA
OpenClipboard
MessageBoxA
WindowFromPoint
DefWindowProcA
SetCursor
EnableMenuItem
KillTimer
RegisterHotKey
GetCursorPos
ScreenToClient
mouse_event
GetSubMenu
BeginDeferWindowPos
GetMenu
ValidateRect
GetForegroundWindow
EndDeferWindowPos
UnhookWindowsHookEx
AdjustWindowRectEx
GetParent
SetPropA
GetWindowTextA
SetWindowTextA
ReleaseCapture
DestroyMenu
IntersectRect
CreatePopupMenu
SetRect
CharUpperBuffA
IsClipboardFormatAvailable
GetPropA
IsWindowVisible
CreateWindowExA
SetTimer
GetSystemMetrics
GetSysColor
GetMenuItemID
SetWindowsHookExA
RegisterClassExA
GetMessagePos
DrawFocusRect
SetDlgItemTextA
WinHelpA
CreateDialogIndirectParamA
RegisterClassA
DrawFrameControl
ShowWindow
TranslateMessage
SetMenuItemBitmaps
CharUpperA
MapDialogRect
UnregisterHotKey
SetScrollRange
DrawIconEx
GetWindowTextLengthA
ReleaseDC
DestroyWindow

Sections

.text
Size: 208KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c70667fc2faa9efad0ba284a7a76b8e

Headers

File Characteristics

Imports

kernel32

advapi32

winmm

winspool.drv

oleaut32

comdlg32

shell32

user32

Sections

.text Size: 208KB - Virtual size: 206KB

.rdata Size: 104KB - Virtual size: 103KB

.data Size: 56KB - Virtual size: 65KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 208KB - Virtual size: 206KB

.rdata
Size: 104KB - Virtual size: 103KB

.data
Size: 56KB - Virtual size: 65KB

.rsrc
Size: 48KB - Virtual size: 47KB