362e2a76a5a851dde0dd6f29a07846343170a7a36cf5305e1b4cd4973278b60e

Sharing

Copy URL

Twitter E-mail

General

Target

362e2a76a5a851dde0dd6f29a07846343170a7a36cf5305e1b4cd4973278b60e
Size

736KB
MD5

a09aac1c1901f88e3bc87430d028718d
SHA1

5a63efde486b7f6d8c78b606bd02a07769a7b3b3
SHA256

362e2a76a5a851dde0dd6f29a07846343170a7a36cf5305e1b4cd4973278b60e
SHA512

b1f11873196dbb49a55ad41fd54bc342e93b0185bff30bd03c6bd10dbad930a0cda30c69c34df03fecba34e08a2854675f8adb49c6ab58f05e6a769a16de315b
SSDEEP

12288:cFOCGlc1srI4hLyfoWA5o8nvwla94iQNES0GkoKf9L:cmWic40QWA+8vwW4iQN10H

Score

N/A

Malware Config

Signatures

Files

362e2a76a5a851dde0dd6f29a07846343170a7a36cf5305e1b4cd4973278b60e
.exe windows x86

13c9523df3f3dda334026f8756bdc143

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
FlushFileBuffers
GetCurrentProcess
HeapFree
GetStartupInfoW
HeapAlloc
ExitProcess
RtlUnwind
HeapReAlloc
HeapSize
VirtualProtect
GetSystemInfo
VirtualQuery
TerminateProcess
HeapDestroy
IsBadWritePtr
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
GetTickCount
GetCurrentProcessId
SetUnhandledExceptionFilter
GetOEMCP
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
GlobalFlags
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetModuleHandleA
LoadLibraryA
FreeLibrary
lstrcatW
lstrcmpW
GetProcAddress
GetVersionExA
GetVersion
InterlockedIncrement
MultiByteToWideChar
GetCurrentThreadId
lstrcpyW
InterlockedDecrement
TlsFree
GlobalFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
EnterCriticalSection
GlobalAlloc
GlobalHandle
GlobalUnlock
GlobalReAlloc
GlobalLock
LeaveCriticalSection
LocalFree
LocalAlloc
lstrlenW
WideCharToMultiByte
GetModuleFileNameW
FindResourceW
LoadResource
GetLastError
SetLastError
lstrcpynW
GetSystemTime
DeleteFileW
GetWindowsDirectoryW
CloseHandle
DeleteCriticalSection
LockResource
ResetEvent
VirtualAlloc
InterlockedExchange
RaiseException
GetACP
CreateFileW
ReadFile
SetSystemPowerState
GetVersionExW
FormatMessageW
SetSystemTimeAdjustment
SizeofResource
OpenProcess
InitializeCriticalSection
GetSystemTimeAsFileTime
VirtualFree
GetModuleHandleW
CreateDirectoryW
QueryPerformanceCounter
GetCPInfo
GetDriveTypeW
GetLocaleInfoA
SetFilePointer
GetFileSize
HeapCreate
GetDateFormatW

user32

PostQuitMessage
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
DestroyMenu
ClientToScreen
SetWindowTextW
RegisterWindowMessageW
WinHelpW
GetCapture
CreateWindowExW
GetClassInfoExW
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetWindowTextW
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconW
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
PostMessageW
AdjustWindowRectEx
GetClassInfoW
RegisterClassW
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetWindow
SetMenuItemBitmaps
GetFocus
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapW
LoadCursorW
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
SetWindowsHookExW
CallNextHookEx
DispatchMessageW
GetKeyState
PeekMessageW
ValidateRect
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
UnhookWindowsHookEx
SendMessageW
MessageBoxW
GetParent
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
EnableWindow
UnregisterClassW

gdi32

DeleteDC
GetStockObject
TextOutW
RectVisible
PtVisible
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
GetDeviceCaps
SetMapMode
RestoreDC
SaveDC
ExtTextOutW
DeleteObject
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
Escape

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

comctl32

ord17

oleaut32

VariantClear
VariantChangeType
VariantInit

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 372KB - Virtual size: 368KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 222KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13c9523df3f3dda334026f8756bdc143

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comctl32

oleaut32

oleacc

Sections

.text Size: 372KB - Virtual size: 368KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 136KB - Virtual size: 222KB

.rsrc Size: 184KB - Virtual size: 182KB

.reloc Size: 20KB - Virtual size: 16KB

.text
Size: 372KB - Virtual size: 368KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 136KB - Virtual size: 222KB

.rsrc
Size: 184KB - Virtual size: 182KB

.reloc
Size: 20KB - Virtual size: 16KB