a2bbda60b4655cbb12dcd15b6ac03eb69af262bfc37066575195a321a56f687a

Sharing

Copy URL Twitter E-mail

General

Target

a2bbda60b4655cbb12dcd15b6ac03eb69af262bfc37066575195a321a56f687a
Size

776KB
MD5

4d947ea69df3adbf2944ac0202fef5b1
SHA1

2c9568e5a6f85b90453b6ccdf2524a45b2bc15d0
SHA256

a2bbda60b4655cbb12dcd15b6ac03eb69af262bfc37066575195a321a56f687a
SHA512

f48e32185ec82b1da1cb3b99c0f6e7f55f173f107d31d91a2531e36e1d8bbf2d4a4266577c16658593d62b55cb3293e228ed6f643cb0dfbc297eaefd552c945f
SSDEEP

12288:lfpxkn9pizM3M6A3CoW7ye+9hlRwokk+w5WfwjVEPg2h:bxknyzRdyoWAfFkk+w5WYjE

Score

N/A

Malware Config

Signatures

Files

a2bbda60b4655cbb12dcd15b6ac03eb69af262bfc37066575195a321a56f687a
.exe windows x86

510480be23806e76223fb7390a93f105

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadCodePtr
IsBadReadPtr
GetStringTypeA
LCMapStringA
GetDateFormatA
GetTimeFormatA
GetSystemInfo
VirtualProtect
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
GetTickCount
VirtualFree
HeapCreate
HeapDestroy
GetUserDefaultLCID
GetFileType
SetHandleCount
GetCommandLineW
GetCommandLineA
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
GetOEMCP
HeapSize
TerminateProcess
GetSystemTimeAsFileTime
RaiseException
HeapReAlloc
RtlUnwind
HeapFree
HeapAlloc
ExitProcess
QueryPerformanceFrequency
QueryPerformanceCounter
Process32First
Process32Next
GetTimeZoneInformation
SystemTimeToTzSpecificLocalTime
EnumSystemLocalesA
IsValidLocale
SetStdHandle
SetEnvironmentVariableA
VirtualQuery
FlushInstructionCache
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
CompareStringA
GetFileTime
FileTimeToLocalFileTime
SetErrorMode
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GlobalFlags
FileTimeToSystemTime
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
GetCurrentThread
lstrcmpA
lstrcmpiA
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
GetCurrentThreadId
GlobalDeleteAtom
lstrlenA
GetModuleHandleA
LoadLibraryA
GetVersionExA
ReleaseMutex
SetLastError
GlobalFree
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
LocalFree
SetEvent
Sleep
CreateThread
WaitForSingleObject
CreateToolhelp32Snapshot
Thread32First
GetCurrentProcessId
Thread32Next
CloseHandle
LocalAlloc
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
GetLastError
LoadResource
InterlockedExchange
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
GetThreadLocale
GetLocaleInfoA
GetACP
GetStartupInfoA
CreateFileA

advapi32

RegCloseKey

user32

GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
GetWindow
PtInRect
CopyRect
GetSystemMetrics
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
SetWindowPos
GetDlgCtrlID
GetMenuCheckMarkDimensions
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
FillRect
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
PostQuitMessage
GetDesktopWindow
SetMenu
BringWindowToTop
SetRectEmpty
CreatePopupMenu
InvalidateRect
ReleaseCapture
UpdateWindow
ReuseDDElParam
UnpackDDElParam
GetActiveWindow
DestroyMenu
ValidateRect
GetCursorPos
TranslateMessage
ShowOwnedPopups
GetSysColorBrush
InflateRect
EndDialog
GetNextDlgTabItem
DeferWindowPos
EqualRect
GetCapture
CallNextHookEx
SendDlgItemMessageA
GetFocus
IsWindow
SetFocus
IsWindowEnabled
SetCursor
ShowWindow
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
GetKeyState
SetForegroundWindow
IsWindowVisible
GetClientRect
GetMenu
GetSysColor
AdjustWindowRectEx
GetParent
ScreenToClient

gdi32

SetTextColor
GetClipBox
GetDeviceCaps
BitBlt
GetPixel
PtVisible
RectVisible
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SetBkColor
DeleteDC
CreatePatternBrush
CreateCompatibleDC
GetStockObject
CreateSolidBrush
CreateCompatibleBitmap
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetMapMode
DeleteObject

shell32

DragFinish
SHGetFolderPathW

winspool.drv

ClosePrinter

oleacc

LresultFromObject
CreateStdAccessibleObject

ole32

CoRegisterMessageFilter
StringFromCLSID
OleRun
CLSIDFromString
StringFromGUID2
CoRegisterClassObject
CoRevokeClassObject
CoInitializeEx
CoUninitialize
CoCreateGuid
CoCreateInstance
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc

oleaut32

VariantTimeToSystemTime
VarUdateFromDate
VariantChangeType
SysAllocStringLen
DispCallFunc
RegisterTypeLi
UnRegisterTypeLi
SystemTimeToVariantTime
LoadTypeLi
LoadRegTypeLi
VariantInit
VarUI4FromStr
VariantCopy
VariantClear
VarBstrCmp
SysStringByteLen
SysAllocStringByteLen
SysStringLen
SysFreeString
SysAllocString
GetErrorInfo

comctl32

ImageList_Destroy
ImageList_GetImageInfo
ImageList_Draw
ord17

shlwapi

PathIsUNCW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW

Sections

.text
Size: 468KB - Virtual size: 465KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

510480be23806e76223fb7390a93f105

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

shell32

winspool.drv

oleacc

ole32

oleaut32

comctl32

shlwapi

Sections

.text Size: 468KB - Virtual size: 465KB

.rdata Size: 156KB - Virtual size: 153KB

.data Size: 16KB - Virtual size: 29KB

.rsrc Size: 132KB - Virtual size: 132KB

.text
Size: 468KB - Virtual size: 465KB

.rdata
Size: 156KB - Virtual size: 153KB

.data
Size: 16KB - Virtual size: 29KB

.rsrc
Size: 132KB - Virtual size: 132KB