f181fa2e6d0f9e0803d78c0dfda2c3e1444e281c28f9bd74077ed6b600671c51

Sharing

Copy URL

Twitter E-mail

General

Target

f181fa2e6d0f9e0803d78c0dfda2c3e1444e281c28f9bd74077ed6b600671c51
Size

272KB
MD5

43020af4a9ec1dc0438e7a2d9dce9c40
SHA1

1dbb6ee840baa6b98474e53768f83c5775ffc860
SHA256

f181fa2e6d0f9e0803d78c0dfda2c3e1444e281c28f9bd74077ed6b600671c51
SHA512

6e8ed6da7844b8036d9199c3a41b3dbd3089d670a1f8c8a17ca2639b653dadccee539249e4f2fedc893fd333f4a8d60884daa7276957779d1d1b51cf8e2b2285
SSDEEP

3072:J8msdFdDen+FnFUFsYc6M29bcwzkGt62082E8J46B9D8Vq/92YUmLl9Mn2cSW1Ca:1eFdkKJ20SmDskUQQSW1KjqsDd2

Score

N/A

Malware Config

Signatures

Files

f181fa2e6d0f9e0803d78c0dfda2c3e1444e281c28f9bd74077ed6b600671c51
.exe windows x86

dfc1d56b6e9bfb1a6475d2cb9871ca20

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiOpenDevRegKey
SetupDiGetDeviceInstanceIdA
SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

ReadFile
Sleep
GetTickCount
lstrlenA
GetWindowsDirectoryA
lstrcmpiA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetACP
GetProcAddress
GetModuleHandleA
IsValidCodePage
GetLocaleInfoA
FindClose
FindFirstFileA
GetModuleFileNameA
LockResource
LoadResource
FindResourceA
CreateMutexA
ReleaseMutex
GetSystemInfo
GetCurrentProcess
GetVersionExA
lstrcpyA
MulDiv
lstrcmpA
lstrcpynA
lstrcatA
FreeLibrary
LoadLibraryA
GetFileAttributesA
LCMapStringW
LCMapStringA
RtlUnwind
GetConsoleCP
WriteFile
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
GetOEMCP
GetCPInfo
RaiseException
ExitProcess
HeapSize
InterlockedDecrement
GetCurrentThreadId
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
GetProcessHeap
HeapAlloc
HeapFree
GetCommandLineA
GetConsoleMode
SetStdHandle
ClearCommError
CloseHandle
CreateFileA
SetupComm
SetCommTimeouts
SetLastError
GetLastError
GlobalUnlock
GlobalFree
HeapReAlloc
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
InitializeCriticalSection

user32

SetWindowTextA
GetDesktopWindow
MoveWindow
GetClientRect
GetWindowRect
SetWindowPos
UpdateWindow
DestroyWindow
UnregisterClassA
PostQuitMessage
CallWindowProcA
DefWindowProcA
CharUpperA
LoadImageA
SetPropA
GetDoubleClickTime
SetTimer
GetClassLongA
GetPropA
PostMessageA
ReleaseCapture
RemovePropA
SendMessageA
SetForegroundWindow
GetSystemMetrics
InvalidateRect
DestroyCursor
GetMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
CreateDialogParamA
LoadStringA
LoadCursorA
SetCursor
GetDlgItem
ScreenToClient
GetWindowLongA
SetWindowLongA
SetCapture
KillTimer

gdi32

StartDocA
EndDoc
StartPage
TextOutA
EndPage
SelectObject
GetTextMetricsA
GetDeviceCaps
CreateFontIndirectA
DeleteDC
DeleteObject

winspool.drv

EnumPrintersA

comdlg32

PrintDlgA
CommDlgExtendedError

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA

shell32

DoEnvironmentSubstA

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dfc1d56b6e9bfb1a6475d2cb9871ca20

Headers

File Characteristics

Imports

comctl32

setupapi

version

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

Sections

.text Size: 128KB - Virtual size: 127KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 92KB - Virtual size: 92KB

.text
Size: 128KB - Virtual size: 127KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 92KB - Virtual size: 92KB