362f1773db8cc43db83ba92f3a146405f5fa80f797515849d4fbd3451b3c8c92

Sharing

Copy URL

Twitter E-mail

General

Target

362f1773db8cc43db83ba92f3a146405f5fa80f797515849d4fbd3451b3c8c92
Size

216KB
MD5

a0d245d98297913097ab9861d183ad67
SHA1

bf72c150d0f789a81ae4e0ca9ff440411a660142
SHA256

362f1773db8cc43db83ba92f3a146405f5fa80f797515849d4fbd3451b3c8c92
SHA512

0d2d3d505be29afdf1f062d750067fe6caf8f2a41dda5ac630c5250fa2a949f8a596dd4572c0f39e534bc48cade022a616efeacb65303a2cc4df046451ca446b
SSDEEP

3072:Owf0JXVvsbotwDat21SknMMo5y2gk5oQJLpX2+FoLzMhFnH9PZz2fo:OOudCat2SkMTvFLEohFH9PZzd

Score

N/A

Malware Config

Signatures

Files

362f1773db8cc43db83ba92f3a146405f5fa80f797515849d4fbd3451b3c8c92
.exe windows x86

04b4ddfc7d49be0a82edd16a14b86d9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalReAlloc
CloseHandle
GlobalAlloc
GlobalLock
GlobalReAlloc
GlobalDeleteAtom
lstrcpyA
lstrcmpiA
GlobalGetAtomNameA
lstrcatA
FreeLibrary
GetProcessVersion
GlobalFindAtomA
lstrcmpA
GlobalFlags
GlobalFree
GlobalAddAtomA
GlobalHandle
GetCurrentProcess
SetFilePointer
FlushFileBuffers
GlobalUnlock
LocalAlloc
lstrcpynA
InterlockedDecrement
LocalFree
lstrlenA
GetProcAddress
LoadLibraryA
VirtualAlloc
IsBadWritePtr
HeapReAlloc
LCMapStringW
GetStringTypeW
GetStringTypeA
HeapAlloc
LCMapStringA
MultiByteToWideChar
HeapFree
WriteFile
RtlUnwind
HeapDestroy
VirtualFree
HeapCreate
TlsGetValue
GetLastError
TlsAlloc
SetLastError
GetFileType
TlsSetValue
GetCurrentThreadId
GetEnvironmentStringsW
GetStdHandle
SetHandleCount
FreeEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetModuleFileNameA
TerminateProcess
GetVersionExA
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
Sleep
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
HeapSize
RaiseException
SetStdHandle

user32

LoadIconA
SetWindowTextA
LoadCursorA
GetSysColorBrush
ReleaseDC
GetDC
PtInRect
ClientToScreen
PostQuitMessage
DestroyMenu
TabbedTextOutA
DrawTextA
GrayStringA
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
GetClientRect
GetPropA
GetSysColor
MapWindowPoints
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
DispatchMessageA
GetKeyState
CallNextHookEx
PeekMessageA
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
SendMessageA
MessageBoxA
EnableWindow
UnhookWindowsHookEx
LoadStringA
FindWindowExA
SetFocus
AdjustWindowRectEx
GetWindowLongA
GetDesktopWindow
GetWindow
GetClassNameA
PostMessageA
CallWindowProcA
RemovePropA
CopyRect
GetTopWindow
CreateWindowExA
GetClassLongA
GetMessageTime
SetPropA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

comctl32

ord17

gdi32

Escape
CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
GetDeviceCaps
DeleteObject
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetMapMode
SetViewportOrgEx
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
RectVisible
TextOutA
PtVisible
OffsetViewportOrgEx
ExtTextOutA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

qshgfhd
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.drdata
Size: 68KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xlfmbri
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

nzpisjz
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

04b4ddfc7d49be0a82edd16a14b86d9b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

comctl32

gdi32

winspool.drv

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 84KB - Virtual size: 84KB

qshgfhd Size: - Virtual size: 4KB

.drdata Size: 68KB - Virtual size: 96KB

xlfmbri Size: - Virtual size: 32KB

nzpisjz Size: - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 84KB - Virtual size: 84KB

qshgfhd
Size: - Virtual size: 4KB

.drdata
Size: 68KB - Virtual size: 96KB

xlfmbri
Size: - Virtual size: 32KB

nzpisjz
Size: - Virtual size: 4KB