2318f9cfed5cfcca8b4ae396730f3f12d2f4ac6c08485afeeda97071715ab115

Sharing

Copy URL Twitter E-mail

General

Target

2318f9cfed5cfcca8b4ae396730f3f12d2f4ac6c08485afeeda97071715ab115
Size

395KB
MD5

836e6891cacc48d50d914de45d7dbf67
SHA1

0b2fdfbfeae15a68f96e7b163f36b1e32302b0c0
SHA256

2318f9cfed5cfcca8b4ae396730f3f12d2f4ac6c08485afeeda97071715ab115
SHA512

1c76b3ea787f8edb15561a585cdd36ac059e6560358e3ca6bb08e56400012868133a4616adaba7fe842f1db362a332639bd5cac2173f08fec33a1885601c6169
SSDEEP

6144:oLcUk7ybiozE1uGPpLNbFlMIcRksIRiVMC5Pc2O:oLmymozE1u+xFV+ksIIVMd

Score

N/A

Malware Config

Signatures

Files

2318f9cfed5cfcca8b4ae396730f3f12d2f4ac6c08485afeeda97071715ab115
.exe windows x86

faa502c63c2f114cb586faebbf43fec6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_NET_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM

Imports

kernel32

GetLastError
GetVersion
FreeLibrary
GetModuleFileNameA
SetLastError
CompareStringW
SetEndOfFile
CreateFileW
SetFilePointer
WriteConsoleW
FlushFileBuffers
HeapReAlloc
HeapSize
GetStringTypeW
MultiByteToWideChar
GetSystemTimeAsFileTime
QueryPerformanceCounter
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetConsoleMode
GetConsoleCP
GetFileType
SetStdHandle
GetModuleFileNameW
GetConsoleTitleA
WriteFile
LoadLibraryW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
CloseHandle
LCMapStringW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
GetCurrentProcessId
GetTickCount
SetConsoleTitleA
Sleep
lstrcpyW
lstrcatW
SetErrorMode
GetVolumeInformationA
ExitProcess
HeapCreate
GetProcessHeap
GetUserDefaultLangID
FindResourceExA
LoadResource
FindResourceA
InterlockedDecrement
SetEnvironmentVariableA
LockResource
FreeResource
SizeofResource
FindResourceExW
HeapAlloc
CreateFileA
ReadFile
GetCurrentThreadId
InterlockedIncrement
GetCPInfo
GetTimeZoneInformation
GetCurrentProcess
TerminateProcess
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
CreateThread
GetModuleHandleA
GetStdHandle
LoadLibraryA
UnhandledExceptionFilter
IsProcessorFeaturePresent
GetStartupInfoW
HeapSetInformation
RaiseException
RtlUnwind
WideCharToMultiByte
GetTimeFormatA
GetDateFormatA
DeleteFileA
HeapFree
GetProcAddress
GetModuleHandleW
DecodePointer
GetCommandLineA

user32

SetWindowLongA
GetSysColor
CloseClipboard
OpenClipboard
GetDC
PostThreadMessageA
PostQuitMessage
UnregisterClassA
DispatchMessageA
TranslateMessage
UpdateWindow
SendMessageA
GetFocus
SetWindowTextA
wsprintfA
FindWindowExW
FindWindowA
KillTimer
GetLastInputInfo
GetWindowDC
ReleaseDC
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
EnableWindow
SetDlgItemTextW
SendDlgItemMessageA
ShowWindow
GetClientRect
BeginPaint
DrawTextA
EndPaint
LookupIconIdFromDirectory
CreateIconFromResource
LoadStringA
DialogBoxParamA
DestroyWindow
InvalidateRect
DefWindowProcA
LoadIconA
LoadCursorA
GetSysColorBrush
RegisterClassExA
CreateWindowExA
GetMessageA

gdi32

SaveDC
CreateDCA
EnumFontsA
MoveToEx
LineTo
RestoreDC
DeleteObject
GetStockObject
GetObjectA
CreateFontIndirectA
CreatePen
SelectObject
Polyline
SetTextColor

winspool.drv

EnumPrintersA

comdlg32

GetOpenFileNameA

advapi32

RegEnumKeyExA
RegDeleteKeyA
RegCloseKey
RegOpenKeyExA
RegSetValueExA

ole32

CoCreateInstance
StringFromCLSID
CoGetInterfaceAndReleaseStream
CoInitializeEx
CoUninitialize
CoMarshalInterThreadInterfaceInStream
CoTaskMemFree

avicap32

capCreateCaptureWindowA

iphlpapi

GetAdaptersInfo

shlwapi

StrRChrA

msi

ord40

Sections

.text
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flash
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

faa502c63c2f114cb586faebbf43fec6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

ole32

avicap32

iphlpapi

shlwapi

msi

Sections

.text Size: 71KB - Virtual size: 71KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 4KB - Virtual size: 12KB

.flash Size: 166KB - Virtual size: 166KB

.rsrc Size: 91KB - Virtual size: 91KB

.text
Size: 71KB - Virtual size: 71KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 4KB - Virtual size: 12KB

.flash
Size: 166KB - Virtual size: 166KB

.rsrc
Size: 91KB - Virtual size: 91KB