350c5925118711333c14320730ec606ba3856916800f597e67a97c149131b359

Sharing

Copy URL Twitter E-mail

General

Target

350c5925118711333c14320730ec606ba3856916800f597e67a97c149131b359
Size

96KB
MD5

4c425fae0f57fc645482349631449430
SHA1

bc404458949764ed75d1f649d1570a87813d3895
SHA256

350c5925118711333c14320730ec606ba3856916800f597e67a97c149131b359
SHA512

58073d86995ec97b5213a15590be9c6ad1518c6b05ab5fe358bf2dcbdeaaf2c82af3c1a3c835611e697b8c427a749a14968d22c4953c0632a43556ef446b2751
SSDEEP

1536:r0JA7Se8N3k7TQw+Htz1NQdozGZP7K5/rTRoaiSwrX0L9kZardQ:obvw+vcwksvRoaifj0L9IG

Score

N/A

Malware Config

Signatures

Files

350c5925118711333c14320730ec606ba3856916800f597e67a97c149131b359
.exe windows x86

520ed89eacfb9345c80da53dda72889e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathFileExistsA
PathCombineA
PathFindFileNameA

kernel32

HeapAlloc
HeapFree
RtlUnwind
GetCommandLineA
ExitProcess
TerminateProcess
RaiseException
HeapReAlloc
HeapSize
GetACP
LCMapStringA
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
DeleteFileA
GetWindowsDirectoryA
SetFileAttributesA
CopyFileA
WriteFile
GetCurrentProcess
SetErrorMode
GetOEMCP
GetCPInfo
GetProcessVersion
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
WritePrivateProfileStringA
GlobalFlags
lstrlenA
lstrcpynA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
TlsFree
LeaveCriticalSection
GetLastError
TlsAlloc
GlobalHandle
DeleteCriticalSection
LocalAlloc
InitializeCriticalSection
LocalFree
InterlockedDecrement
SetLastError
GetVersion
LoadLibraryA
FreeLibrary
GlobalAddAtomA
lstrcatA
GlobalGetAtomNameA
GetModuleHandleA
GlobalFindAtomA
lstrcpyA
GlobalFree
GetProcAddress
GlobalUnlock
IsBadWritePtr
CloseHandle
UnhandledExceptionFilter
LCMapStringW

user32

SetFocus
GetSysColor
AdjustWindowRectEx
MapWindowPoints
SetWindowTextA
ShowWindow
GetDC
ReleaseDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
ClientToScreen
GetClassNameA
PtInRect
LoadStringA
DestroyMenu
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetSysColorBrush
CopyRect
GetMenuItemID
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
GetSubMenu
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
EndDialog
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
SetCursor
PostQuitMessage
PostMessageA
EnableWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA
wsprintfA
GetMenu
GetMenuItemCount
SetWindowLongA
UnregisterClassA

gdi32

SetBkColor
GetObjectA
SetTextColor
SaveDC
DeleteDC
SelectObject
GetStockObject
RestoreDC
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
DeleteObject
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateBitmap
GetClipBox

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

CreateServiceA
RegSetValueExA
RegQueryValueExA
CloseServiceHandle
RegCreateKeyExA
OpenSCManagerA
OpenServiceA
RegOpenKeyExA
DeleteService
RegCloseKey

comctl32

ord17

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

520ed89eacfb9345c80da53dda72889e

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 16KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 16KB

.rsrc
Size: 16KB - Virtual size: 15KB