769c9ec0cf4ab6f2bef6317282dd6934de980b1b418dee1cb5e30bc9f24e344d

Sharing

Copy URL Twitter E-mail

General

Target

769c9ec0cf4ab6f2bef6317282dd6934de980b1b418dee1cb5e30bc9f24e344d
Size

516KB
MD5

66eef41c0ab058931b9f0532d5663aab
SHA1

37ad586320e7035a62787d2b7ef329f46539b70e
SHA256

769c9ec0cf4ab6f2bef6317282dd6934de980b1b418dee1cb5e30bc9f24e344d
SHA512

468236ad973c26afd05e974862e78d2258bbcde74a4601e668db4caff945891f4246e240a39edf91a4b7f8ac64bf1d00b1e5bcb5c9dbe37420b2ecb8e7bbdc29
SSDEEP

12288:lhEllWHQMfAHrUraw8FYS02nURRcYlIa:liWHBfAHoeriS0UUMYlI

Score

N/A

Malware Config

Signatures

Files

769c9ec0cf4ab6f2bef6317282dd6934de980b1b418dee1cb5e30bc9f24e344d
.exe windows x86

b4b99d973e8c6f4329cd9b27f3387bc7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
RegisterClassExW
DefMDIChildProcW
EnableMenuItem
DrawTextExW
CloseClipboard
SetCursor
CreateWindowExW
DestroyWindow
MessageBoxW
GetMessagePos
DrawMenuBar
GetDC
RegisterClipboardFormatW
TabbedTextOutW
DispatchMessageW
GetWindowDC
RegisterClassW
GetMenuState
GetMenu
FrameRect
GetSysColorBrush
DefWindowProcW
EnableScrollBar
GetAsyncKeyState
ReleaseDC
UnpackDDElParam
GrayStringW
CallWindowProcW
ReuseDDElParam
LoadIconW
EmptyClipboard
CreateDialogIndirectParamW

advapi32

RegEnumValueA
RegSetValueExA
InitializeSecurityDescriptor
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyA
RegDeleteValueA
RegQueryValueA
CreateServiceA
RegEnumKeyExA
GetUserNameA
RegOpenKeyA
QueryServiceConfigA
OpenSCManagerA
RegCreateKeyExA
RegDeleteKeyA
RegCreateKeyA
RegCloseKey
AdjustTokenPrivileges
DeleteService
CloseServiceHandle
ControlService
RegSetValueA
RegQueryInfoKeyA
OpenServiceA
OpenProcessToken

comctl32

CreatePropertySheetPageA
ImageList_ReplaceIcon
ImageList_Add
ord17

kernel32

GetDateFormatA
InterlockedDecrement
GetTimeFormatA
TerminateProcess
HeapSize
ExitProcess
CompareStringA
GetConsoleMode
HeapDestroy
VirtualAlloc
GetCurrentThread
GetTickCount
IsDebuggerPresent
GetModuleHandleA
InitializeCriticalSection
FatalAppExitA
SetConsoleCtrlHandler
SetUnhandledExceptionFilter
IsValidLocale
TlsGetValue
FreeEnvironmentStringsA
Sleep
GetConsoleOutputCP
TlsFree
GetStringTypeA
GetLocaleInfoW
GetCurrentThreadId
WideCharToMultiByte
MultiByteToWideChar
CreateFileA
LoadLibraryA
GetTimeZoneInformation
GetLocaleInfoA
GetLastError
GetStringTypeW
QueryPerformanceCounter
GetCommandLineW
SetLastError
GetEnvironmentStringsW
ReadFile
GetConsoleCP
FreeLibrary
VirtualFree
SetStdHandle
WriteConsoleW
IsValidCodePage
GetEnvironmentStrings
HeapFree
GetUserDefaultLCID
CloseHandle
InterlockedExchange
LCMapStringW
CreateMutexW
FreeEnvironmentStringsW
GetCurrentProcess
HeapCreate
GetProcAddress
GetVersionExA
GetCommandLineA
GetModuleHandleW
GetCurrentProcessId
VirtualQuery
GetModuleFileNameA
WriteConsoleA
GetSystemTimeAsFileTime
GetProcessHeap
GetStartupInfoW
GetStartupInfoA
GetOEMCP
EnterCriticalSection
InterlockedIncrement
WriteFile
GetStdHandle
SetFilePointer
GetACP
SetHandleCount
GetFileType
LCMapStringA
TlsAlloc
FlushFileBuffers
TlsSetValue
HeapAlloc
SetEnvironmentVariableA
CompareStringW
GetModuleFileNameW
RtlUnwind
UnhandledExceptionFilter
RaiseException
HeapReAlloc
LeaveCriticalSection
GetCPInfo
DeleteCriticalSection

winspool.drv

OpenPrinterA
GetPrinterA
ClosePrinter
ord204
GetJobA
DocumentPropertiesA

ole32

OleGetClipboard
CreateILockBytesOnHGlobal
StringFromCLSID
OleRun
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
CoLockObjectExternal
CoTaskMemFree

Sections

.text
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b4b99d973e8c6f4329cd9b27f3387bc7

Headers

File Characteristics

Imports

user32

advapi32

comctl32

kernel32

winspool.drv

ole32

Sections

.text Size: 116KB - Virtual size: 114KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 68KB - Virtual size: 85KB

.rsrc Size: 68KB - Virtual size: 67KB

.text
Size: 116KB - Virtual size: 114KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 68KB - Virtual size: 85KB

.rsrc
Size: 68KB - Virtual size: 67KB