55fe01f86a9d44197e50409426b6178380577a678f653cd766734e8c4e1a675f

Sharing

Copy URL Twitter E-mail

General

Target

55fe01f86a9d44197e50409426b6178380577a678f653cd766734e8c4e1a675f
Size

1.6MB
MD5

6b2d33bde2864b97a11bf2f6a9828615
SHA1

9fc702ddc7850aecb4510e63680f41c99c2bc0a0
SHA256

55fe01f86a9d44197e50409426b6178380577a678f653cd766734e8c4e1a675f
SHA512

cf461784ca14afeda07af1bd24eb8b7771566599b2df5eac3a8a86ccf3aab87e93e65798f950d8c822845b2ce07576edad5f327df8bcd2a990c494b7173cd728
SSDEEP

12288:wjQ5KLaVJNhbJz99wtCenlFIoDcAsBscSa/:ILaVJN7TwtCcDcAsBLSU

Score

N/A

Malware Config

Signatures

Files

55fe01f86a9d44197e50409426b6178380577a678f653cd766734e8c4e1a675f
.exe windows x86

eb4e1384692f83d65e390555bf98eb68

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GetSystemTimeAsFileTime
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
HeapFree
HeapAlloc
ExitProcess
ExitThread
CreateThread
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetStartupInfoA
GetTickCount
VirtualFree
QueryPerformanceCounter
GetTimeZoneInformation
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
SetErrorMode
lstrlenA
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GlobalFlags
WritePrivateProfileStringW
GlobalGetAtomNameW
GetFileTime
GetFileSizeEx
FileTimeToLocalFileTime
CreateFileW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
InterlockedDecrement
GetThreadLocale
InterlockedIncrement
GetModuleHandleA
GlobalFree
GlobalUnlock
lstrlenW
MulDiv
FreeResource
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
GetCurrentProcessId
GlobalAddAtomW
CreateEventW
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
CloseHandle
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
LoadLibraryExW
CompareStringA
WideCharToMultiByte
InterlockedExchange
GlobalLock
lstrcmpW
GlobalAlloc
FreeLibrary
CopyFileW
MoveFileW
DeleteFileW
GetVersionExW
lstrcmpiW
GetLocalTime
SystemTimeToFileTime
FileTimeToSystemTime
SetLastError
GetProcAddress
GetModuleHandleW
LoadLibraryW
GetCurrentDirectoryW
Sleep
FormatMessageW
LocalFree
FindFirstFileW
FindNextFileW
FindClose
RemoveDirectoryW
SetFileAttributesW
CreateDirectoryW
MultiByteToWideChar
GetFileAttributesW
SetCurrentDirectoryW
FindResourceW
LoadResource
LockResource
SizeofResource
CreateMutexW
GetLastError
WaitForSingleObject
HeapCreate
GetModuleFileNameW

user32

IsRectEmpty
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
UnregisterClassW
RegisterClipboardFormatW
PostThreadMessageW
CreatePopupMenu
BringWindowToTop
TranslateAcceleratorW
SetRectEmpty
CharUpperW
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
InflateRect
CharNextW
SetWindowContextHelpId
MapDialogRect
GetDesktopWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
LoadMenuW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
FillRect
RegisterWindowMessageW
LoadIconW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
CopyAcceleratorTableW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
SetMenu
SetForegroundWindow
GetSubMenu
GetMenuItemID
GetMenuItemCount
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
CopyRect
GetMenu
SetWindowLongW
EnableWindow
SendMessageW
PtInRect
LoadBitmapW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
MessageBoxW
ShowOwnedPopups
SetWindowsHookExW
GetSysColorBrush
SetCapture
UnpackDDElParam
ReuseDDElParam
ReleaseCapture
LoadAcceleratorsW
GetClassLongW
InsertMenuItemW
DrawIcon
EnableMenuItem
GetSystemMenu
IsIconic
SetWindowRgn
GetWindowRect
GetClientRect
SetTimer
KillTimer
ShowScrollBar
GetSystemMetrics
SetRect
EqualRect
InvalidateRect
IsWindowVisible
GetParent
LoadCursorW
IsWindow
UpdateWindow
SetCursor
GetCursorPos
wvsprintfW
PostQuitMessage
PostMessageW
CheckMenuItem
GetMenuState
ModifyMenuW
GetFocus
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
PeekMessageW
GetKeyState
GetActiveWindow
DispatchMessageW
TranslateMessage
GetMessageW
CallNextHookEx

gdi32

SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
SelectObject
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetMapMode
GetRgnBox
ExtTextOutW
Escape
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
CreateSolidBrush
SetMapMode
SetStretchBltMode
SetBkMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetDeviceCaps
CreateDIBitmap
DeleteObject
GetTextExtentPoint32W
SetPixel
GetPixel
StretchBlt
CreateCompatibleBitmap
GetBitmapBits
CreateBitmapIndirect
CreateRoundRectRgn
GetStockObject
BitBlt
CreateCompatibleDC
GetObjectW
CreateFontIndirectW

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueExW
RegCreateKeyExW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegQueryValueW
RegCloseKey
RegOpenKeyExW
RegQueryValueExW

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc
DragFinish
ShellExecuteW
DragQueryFileW

shlwapi

PathFindExtensionW
PathStripToRootW
PathIsUNCW
PathFindFileNameW

oledlg

OleUIBusyW

ole32

CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleIsCurrentClipboard
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

VariantClear
VariantChangeType
VariantInit
SysStringLen
SysFreeString
OleCreateFontIndirect
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocString
SysAllocStringLen

Sections

.text
Size: 286KB - Virtual size: 286KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb4e1384692f83d65e390555bf98eb68

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 286KB - Virtual size: 286KB

.rdata Size: 71KB - Virtual size: 70KB

.data Size: 22KB - Virtual size: 101KB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.text
Size: 286KB - Virtual size: 286KB

.rdata
Size: 71KB - Virtual size: 70KB

.data
Size: 22KB - Virtual size: 101KB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB