3f45a820da86481bfc7ce07974a0608f0a45ce3e9ba356d6fb236b70ea258007

Sharing

Copy URL Twitter E-mail

General

Target

3f45a820da86481bfc7ce07974a0608f0a45ce3e9ba356d6fb236b70ea258007
Size

716KB
MD5

6b91e4300f24ff878fdf4d005d72b01e
SHA1

d216072ec618739bf126b7d5b20ebd6bf6399297
SHA256

3f45a820da86481bfc7ce07974a0608f0a45ce3e9ba356d6fb236b70ea258007
SHA512

1ab0ac4a410a20e04c0cb8e17da6210b88ed0debd0977c78cfb609ff5443ceb61e91010291755a41dc1e909594685acf57ed98beb765a19f90fa4a723772c306
SSDEEP

12288:4bbMs6qGouQYPI22wyopVlxJO2up0t6EAo9hIDU9QhIks6VxTItDAtY58IPeOd:4RQFh2I7Jx6mH9CIks60ajrO

Score

N/A

Malware Config

Signatures

Files

3f45a820da86481bfc7ce07974a0608f0a45ce3e9ba356d6fb236b70ea258007
.exe windows x86

edb3ffed62bb76b20b1b9844d938f0c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

ord204
StartPagePrinter
ClosePrinter
EndPagePrinter
EndDocPrinter
WritePrinter

advapi32

GetLengthSid
OpenProcessToken
RegSetValueExA
InitializeSecurityDescriptor
OpenThreadToken
RegCreateKeyExA

gdi32

GetRegionData
ScaleViewportExtEx
GetTextAlign
SetRectRgn
GetTextColor
MoveToEx
SetPixel
StretchBlt
GetNearestPaletteIndex
CreateDIBSection
GetBkMode
DeleteObject
GetCurrentObject
SetBrushOrgEx
Polyline
SetStretchBltMode
PolyBezier
OffsetClipRgn
CreateSolidBrush
CreatePatternBrush
LineTo
RectVisible
SetBkMode
GetObjectA
CreateEllipticRgn
AbortDoc
ExcludeClipRect
SelectClipRgn
SetPolyFillMode
FrameRgn
SetTextJustification
ScaleWindowExtEx
SetROP2
GetTextExtentPoint32W
SetPixelV
OffsetRgn
DeleteMetaFile
CreateCompatibleBitmap
GetCharABCWidthsA
SetBkColor
Rectangle
SetMapMode
GetWindowExtEx
CreateRectRgnIndirect
RealizePalette
PolyBezierTo
StartDocA
StretchDIBits
GetPaletteEntries
CreateHatchBrush
SelectObject
CreateBitmap
Polygon
SetViewportExtEx
CreateBrushIndirect
CreatePolygonRgn
SetTextColor

shell32

SHGetSpecialFolderPathA
DragAcceptFiles
SHBrowseForFolderA
SHGetPathFromIDListA

comctl32

ImageList_AddMasked
ImageList_Destroy
InitCommonControlsEx

winmm

waveInPrepareHeader
waveInClose
waveInReset
waveInStart
waveInAddBuffer
waveInUnprepareHeader
waveInOpen
waveInGetErrorTextA

ole32

CoCreateInstance
CreateStreamOnHGlobal
CoRegisterClassObject
StringFromCLSID
StgOpenStorage
CoRevokeClassObject
CoLockObjectExternal
StringFromGUID2
CoCreateGuid
ReleaseStgMedium
CLSIDFromString
StgCreateDocfile
OleDestroyMenuDescriptor
RevokeDragDrop
StgOpenStorageOnILockBytes
OleUninitialize
CoTaskMemFree
CoGetClassObject
OleInitialize
IsAccelerator
CLSIDFromProgID
OleCreateMenuDescriptor
RegisterDragDrop
OleLockRunning
OleIsCurrentClipboard
CoTaskMemAlloc
CoRegisterMessageFilter
DoDragDrop
CoUninitialize
OleTranslateAccelerator

kernel32

SetFilePointer
TlsAlloc
GetConsoleCP
GetSystemTimeAsFileTime
GetOEMCP
GetLocaleInfoA
EnumSystemLocalesA
HeapCreate
LeaveCriticalSection
GetConsoleOutputCP
IsValidCodePage
GetConsoleMode
HeapAlloc
VirtualAlloc
GetCurrentProcessId
ReadFile
CompareStringA
SetConsoleCtrlHandler
IsDebuggerPresent
HeapReAlloc
FlushFileBuffers
LCMapStringW
GetLocaleInfoW
RaiseException
GetTimeFormatA
DeleteCriticalSection
GetStartupInfoA
LCMapStringA
GetCurrentProcess
SetStdHandle
CloseHandle
GetLastError
FreeEnvironmentStringsW
RtlUnwind
GetFileType
SetLastError
VirtualFree
WriteFile
CompareStringW
GetACP
CreateFileA
GetDateFormatA
VirtualQuery
SetUnhandledExceptionFilter
MultiByteToWideChar
Sleep
InterlockedIncrement
QueryPerformanceCounter
GetEnvironmentStringsW
GetTickCount
GetModuleFileNameA
GetUserDefaultLCID
ExitProcess
GetCurrentThread
TerminateProcess
GetModuleHandleA
GetProcAddress
UnhandledExceptionFilter
TlsFree
GetStdHandle
GetCurrentThreadId
SetEnvironmentVariableA
FreeLibrary
GetCPInfo
EnterCriticalSection
FreeEnvironmentStringsA
GetModuleHandleW
TlsSetValue
HeapSize
GetStringTypeW
SetHandleCount
GetStringTypeA
FatalAppExitA
CreateMutexA
WideCharToMultiByte
InterlockedExchange
HeapDestroy
LoadLibraryA
GetCommandLineA
TlsGetValue
InterlockedDecrement
HeapFree
IsValidLocale
InitializeCriticalSectionAndSpinCount
WriteConsoleW
GetTimeZoneInformation
WriteConsoleA
GetEnvironmentStrings

user32

OpenClipboard
EqualRect
CopyRect
GetMessageA
InsertMenuA
SystemParametersInfoA
TabbedTextOutA
MessageBeep
EndPaint
DestroyAcceleratorTable
DrawFrameControl
MapDialogRect
DispatchMessageA
RegisterClassA
EnumChildWindows
GetParent
SetCursor
GetActiveWindow
HideCaret
SetWindowLongA
GetMenuState
wsprintfA
LoadCursorA
InvalidateRgn
IsChild
GetMessagePos
MsgWaitForMultipleObjects
RegisterWindowMessageA
EnableWindow
SendMessageA
RedrawWindow
IntersectRect
GetSysColor
WaitMessage
GetWindow
LoadBitmapA
BeginDeferWindowPos
SendDlgItemMessageA
GetKeyState
DestroyWindow
CreatePopupMenu
SetParent
SetForegroundWindow
GetCursorPos
GetIconInfo
GetClientRect
AdjustWindowRectEx
IsIconic
IsRectEmpty
DestroyIcon
MessageBoxA
EndDeferWindowPos
GetFocus
LoadImageA
TrackPopupMenu
DefWindowProcA
LoadIconA
GetLastActivePopup
PeekMessageA
RemoveMenu
IsWindow
GetForegroundWindow
CreateWindowExA
RegisterClassExA
LoadAcceleratorsA
CallNextHookEx
DestroyMenu
CreateAcceleratorTableA
ShowWindow
MapVirtualKeyA
GetSubMenu
SetTimer
GetDC
ReleaseDC
BeginPaint
PostQuitMessage
IsWindowVisible
PostMessageA
SetWindowPos
WinHelpA
InflateRect
LoadMenuA
FrameRect
GetDlgCtrlID
GetKeyboardState
UpdateWindow
GetWindowLongA
GetDlgItem
DrawFocusRect
OffsetRect

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA
CommDlgExtendedError

Sections

.text
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 460KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

edb3ffed62bb76b20b1b9844d938f0c6

Headers

File Characteristics

Imports

winspool.drv

advapi32

gdi32

shell32

comctl32

winmm

ole32

kernel32

user32

comdlg32

Sections

.text Size: 116KB - Virtual size: 114KB

.rdata Size: 464KB - Virtual size: 460KB

.data Size: 104KB - Virtual size: 100KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 116KB - Virtual size: 114KB

.rdata
Size: 464KB - Virtual size: 460KB

.data
Size: 104KB - Virtual size: 100KB

.rsrc
Size: 28KB - Virtual size: 25KB