ec4173b32d61ef488ea53e1ae460e4ad44192b999c1304b43662d5357692536c

Sharing

Copy URL Twitter E-mail

General

Target

ec4173b32d61ef488ea53e1ae460e4ad44192b999c1304b43662d5357692536c
Size

239KB
MD5

91aed6263e237be4fbb51f5622cf028c
SHA1

88f0b6f61024bb3de53bf1ce89b5ed795e115ca6
SHA256

ec4173b32d61ef488ea53e1ae460e4ad44192b999c1304b43662d5357692536c
SHA512

9b7016c1142dd6be955b9561511e21e1a73f877f5f90445ed9129ddb72ef0cc36fa963722710a0b6ce903aae8db05c072fb1697b3e562aee775c171bbf3eeb2c
SSDEEP

6144:vcrYLXmRUyYzf8nste+cXfuGlMUf3FRYc6b0CDxu5JoN:XjVBzf8nMe+4fuG6uafD0

Score

N/A

Malware Config

Signatures

Files

ec4173b32d61ef488ea53e1ae460e4ad44192b999c1304b43662d5357692536c
.exe windows x86

5d12253d36e1b3c0d133c290e0357069

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetSystemTime
mixerOpen
mmioAdvance
waveOutGetPitch

comdlg32

GetFileTitleA
dwOKSubclass

gdi32

GetClipBox
EnumEnhMetaFile
SetTextColor
SetViewportExtEx
SelectObject
SetMapMode
PtInRegion
GetDeviceCaps
CreateDIBitmap
CreateBitmap
GetObjectA
GetDCPenColor
SelectClipRgn
ExtTextOutA
CreateEllipticRgn
DeleteDC
TextOutA
SaveDC
RoundRect
ScaleViewportExtEx
GetRelAbs
SetWindowExtEx
DeleteObject

advapi32

SetSecurityDescriptorControl
LsaEnumeratePrivileges
SystemFunction030
OpenThreadToken
AddAccessDeniedAceEx
MSChapSrvChangePassword
LockServiceDatabase
GetAclInformation
RegCloseKey
RegCreateKeyExA
LsaICLookupNamesWithCreds
SystemFunction016
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
AddUsersToEncryptedFile

winspool.drv

ClosePrinter
QueryRemoteFonts
DeletePrinterIC
ExtDeviceMode
EndDocPrinter
DocumentPropertiesA
PlayGdiScriptOnPrinterIC
QuerySpoolMode
OpenPrinterA

user32

IsWindow
GetDC
SetWindowLongA
SetMenuItemBitmaps
ClientToScreen
GetSystemMetrics
GetFocus
DestroyMenu
SetPropA
GetWindowLongA
IsIconic
PostMessageA
GetTopWindow
CopyRect
CheckMenuItem
GrayStringA
SendDlgItemMessageA
SetForegroundWindow
IsWindowEnabled
UnregisterClassA
GetParent
UpdateWindow
GetActiveWindow
EnableMenuItem
SetActiveWindow
SetWindowTextA
LoadBitmapA
GetMenu
MessageBoxA
DrawIcon
GetWindowRect
GetKeyState
CreateWindowExA
CallWindowProcA
MapWindowPoints
GetClassInfoA
GetMenuItemID
PostQuitMessage
EndDialog
PeekMessageA
GetMenuState
BeginPaint
GetMenuCheckMarkDimensions
GetForegroundWindow
wsprintfA
GetMenuItemCount
DdeEnableCallback
GetMessageA
UnhookWindowsHookEx
EndPaint
GetMessagePos
GetLastActivePopup
GetPropA
DispatchMessageA
DestroyWindow
GetWindow
CreateDialogIndirectParamA
GetCapture
GetSysColorBrush
SetWindowPos
GetClientRect
GetDlgItem
SetWindowsHookExA
RemovePropA
ModifyMenuA
ExitWindowsEx
RegisterClassA
GetDlgCtrlID
DrawTextA
IsWindowVisible
LoadIconA
GetWindowPlacement
ShowWindow
TranslateMessage
GetSysColor
LoadStringA
ValidateRect
ReleaseDC
CallNextHookEx
IsDialogMessageA
CharUpperA
GetWindowTextLengthA
TabbedTextOutA
GetCursorPos
GetSubMenu
LoadCursorA
EnableWindow
GetWindowTextA
SendMessageA
WinHelpA
PtInRect
DefWindowProcA
GetClassNameA

kernel32

GetLastError
GetCommandLineA
lstrcpyA
lstrcmpA
GlobalFindAtomA
FreeLibrary
HeapDestroy
VirtualFree
GlobalAddAtomA
GetCurrentThreadId
GetCurrentDirectoryA
GetFileSize
LockResource
FileTimeToLocalFileTime
RaiseException
SetConsoleCursorPosition
HeapAlloc
GetFileAttributesA
SetFileAttributesA
Toolhelp32ReadProcessMemory
GlobalUnlock
TerminateProcess
TlsGetValue
CompareStringA
lstrcatA
LCMapStringW
lstrcpynA
GetStringTypeA
FlushFileBuffers
LocalFree
GetStartupInfoA
InterlockedIncrement
FileTimeToSystemTime
SetConsoleTextAttribute
ClearCommError
CloseHandle
GetCurrentProcess
SystemTimeToFileTime
GetFileType
GlobalGetAtomNameA
Sleep
SetUnhandledExceptionFilter
LeaveCriticalSection
GetDriveTypeA
LocalReAlloc
UnhandledExceptionFilter
GlobalFlags
LoadResource
SetEnvironmentVariableA
IsBadCodePtr
FindNextFileA
SetCurrentDirectoryA
IsValidLocale
GetThreadLocale
ReadFile
TlsFree
SystemTimeToTzSpecificLocalTime
IsBadReadPtr
DeleteFileA
SetConsoleCursorInfo
ReleaseActCtx
SetSystemTime
GetCurrentThread
SetTimeZoneInformation
SetErrorMode
GlobalLock
FatalExit
GetFullPathNameA
InitializeSListHead
FreeEnvironmentStringsW
GetModuleHandleA
FindFirstFileA
GetProcessVersion
GetCPInfo
GlobalDeleteAtom
HeapCreate
CompareStringW
IsBadWritePtr
IsDebuggerPresent
GetSystemDirectoryA
GlobalFree
GetVolumeInformationA
VirtualAlloc
DosDateTimeToFileTime
GlobalAlloc
LocalUnlock
SetStdHandle
ExitProcess
SetLastError
LocalFileTimeToFileTime
GetVersionExA
HeapReAlloc
SetHandleCount
GetFileTime
Beep
DuplicateHandle
LoadLibraryA
GetModuleFileNameA
MultiByteToWideChar
UnlockFile
WritePrivateProfileStringA
FreeEnvironmentStringsA
lstrcmpiA
SetFilePointer
CreateFileA
lstrlenA
GetWindowsDirectoryA
InitializeCriticalSection
FindResourceA
SetEndOfFile
TlsSetValue
GetEnvironmentVariableA
GetEnvironmentStringsA
DeleteCriticalSection
TlsAlloc
SetConsoleScreenBufferSize
WriteFile
HeapSize
GlobalHandle
HeapFree
FindClose
RtlUnwind
LCMapStringA
EnterCriticalSection
GetEnvironmentStringsW
WideCharToMultiByte
GetProcAddress
GetVersion
LockFile
MulDiv
GetACP
GetTimeZoneInformation
GetStdHandle
FlushInstructionCache
LocalAlloc
GetOEMCP
InterlockedDecrement
GetStringTypeW

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d12253d36e1b3c0d133c290e0357069

Headers

File Characteristics

Imports

winmm

comdlg32

gdi32

advapi32

winspool.drv

user32

kernel32

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 18KB - Virtual size: 17KB

.data Size: 26KB - Virtual size: 26KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 18KB - Virtual size: 17KB

.data
Size: 26KB - Virtual size: 26KB

.rsrc
Size: 2KB - Virtual size: 2KB