696df4ad98fb718164a52a75011a10398a4055a7d11f6554b39882abffc5150f

Sharing

Copy URL Twitter E-mail

General

Target

696df4ad98fb718164a52a75011a10398a4055a7d11f6554b39882abffc5150f
Size

212KB
MD5

6946dfb52f4c4abd6873d281f12cd4df
SHA1

3b75333f02be46ff24dac543b8c2cc51dbab6cfc
SHA256

696df4ad98fb718164a52a75011a10398a4055a7d11f6554b39882abffc5150f
SHA512

c9edbf00bb28c30778c293d5b63475ed1e57e3311475a0a01035f4f7f30ba348d47122baa936751676fce4b3c499f3ac4d15be2a9edeaffcb1b9650e585a5ae1
SSDEEP

3072:v8H1Zev0qSug1q2VGJmVPocDKoTO6DwMm7uovdPc+NugtciT/r2cFIraKI:v8H1ENSug1LGmdFwME3fyirQrlI

Score

N/A

Malware Config

Signatures

Files

696df4ad98fb718164a52a75011a10398a4055a7d11f6554b39882abffc5150f
.exe windows x86

5744afbb0a6523f048ee2f2433469d43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
FileTimeToLocalFileTime
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetVersion
FreeLibrary
GetProcessVersion
GetCPInfo
GetOEMCP
ExitProcess
TerminateProcess
HeapFree
RaiseException
HeapAlloc
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
RtlUnwind
IsBadReadPtr
GetFileTime
GetFileSize
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
Sleep
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetErrorMode
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
CreateDirectoryA
WritePrivateProfileStringA
TlsGetValue
GlobalFlags
EnterCriticalSection
LocalReAlloc
TlsSetValue
GlobalReAlloc
LeaveCriticalSection
GlobalFree
GlobalHandle
GlobalUnlock
InitializeCriticalSection
DeleteCriticalSection
TlsAlloc
LocalAlloc
SetHandleCount
GetWindowsDirectoryA
GetFileAttributesA
GetStdHandle
SetLastError
GetModuleHandleA
FindFirstFileA
GetFullPathNameA
GetVolumeInformationA
GetProcAddress
FindClose
LoadLibraryA
SetEndOfFile
CloseHandle
UnlockFile
LockFile
WriteFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
ReadFile
CreateFileA
DuplicateHandle
GetLastError
WideCharToMultiByte
LocalFree
MultiByteToWideChar
lstrlenA
InterlockedDecrement
InterlockedIncrement
lstrcpyA
lstrcpynA
GetModuleFileNameA
GetFileType
lstrcatA
GetStartupInfoA
GetEnvironmentStrings
GetEnvironmentStringsW
GetCommandLineA
InterlockedExchange

user32

GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
LoadIconA
ShowWindow
LoadCursorA
GetSysColorBrush
DestroyMenu
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetDlgItem
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
DefWindowProcA
SystemParametersInfoA
IsIconic
GetWindowPlacement
LoadStringA
GrayStringA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetMenuItemCount
UnhookWindowsHookEx
GetLastActivePopup
IsWindowEnabled
MessageBoxA
EnableWindow
GetWindowTextA
SetWindowTextA
GetWindow
GetDlgCtrlID
GetWindowLongA
GetClassNameA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
SetCursor
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
SendMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetForegroundWindow
SetForegroundWindow
GetSystemMetrics
CharUpperA
wsprintfA
PostMessageA
PostQuitMessage
GetWindowRect
PtInRect
ClientToScreen

gdi32

DeleteObject
SaveDC
RestoreDC
GetStockObject
SelectObject
SetBkColor
SetTextColor
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
GetObjectA
CreateBitmap
DeleteDC

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
GetUserNameA
RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA

comctl32

ord17

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5744afbb0a6523f048ee2f2433469d43

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 16KB - Virtual size: 29KB

.rsrc Size: 76KB - Virtual size: 76KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 16KB - Virtual size: 29KB

.rsrc
Size: 76KB - Virtual size: 76KB