75f7107844155fe39e4ea38f8d9b480f03237e48ac7ca86629370b0d46a70b9b

Sharing

Copy URL Twitter E-mail

General

Target

75f7107844155fe39e4ea38f8d9b480f03237e48ac7ca86629370b0d46a70b9b
Size

304KB
MD5

905a5a6cf8789f0b5e9525f7fdab96c0
SHA1

6e52a6da3ef718917e0b9745b9801df4a7f0b627
SHA256

75f7107844155fe39e4ea38f8d9b480f03237e48ac7ca86629370b0d46a70b9b
SHA512

c6895f59dc34e684587b46062045403119000324f81a9a01642d00ffa0779d89390f4300aec962d6901ff3b42997506608751f8354a8cb85affff73f1ca1bb26
SSDEEP

6144:MfGiGxmQtIE+x4sTCOxZAEMNQYTV76EdKq/8GKvYSsQLH5AdZ:MSxtyvTCOjAEMNPerLvYSsPdZ

Score

N/A

Malware Config

Signatures

Files

75f7107844155fe39e4ea38f8d9b480f03237e48ac7ca86629370b0d46a70b9b
.exe windows x86

dbd6ccfc1f718aa8414e4c36b0f0a108

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoCreateInstance
CoUninitialize
CoGetMalloc
CoInitialize

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GetVolumeInformationA
GetFullPathNameA
SetErrorMode
GlobalAddAtomA
GlobalGetAtomNameA
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA
RaiseException
HeapAlloc
HeapFree
ExitProcess
LocalReAlloc
GetProcessVersion
lstrlenA
TlsSetValue
GetOEMCP
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStdHandle
HeapCreate
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
Sleep
OutputDebugStringA
GetDriveTypeA
GetModuleFileNameA
GetCommandLineA
GetLogicalDriveStringsA
CreateDirectoryA
TlsGetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
lstrcmpiA
lstrcpyA
SizeofResource
lstrcpynA
SetLastError
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
ReleaseMutex
CreateMutexA
MulDiv
lstrcatA
GetCurrentThreadId
GlobalLock
GlobalUnlock
GlobalFree
FindResourceA
LockResource
GetProfileStringA
LocalFree
LoadResource
HeapSize
InterlockedDecrement
InterlockedIncrement
GetWindowsDirectoryA
WritePrivateProfileStringA
CreateThread
GetVersion
DeleteFileA
RemoveDirectoryA
WideCharToMultiByte
MultiByteToWideChar
FindNextFileA
WaitForSingleObject
GetLastError
OpenProcess
TerminateProcess
GetFileAttributesA
SetFileAttributesA
CopyFileA
FindFirstFileA
FindClose
GetExitCodeProcess
CreateProcessA
CloseHandle
FreeLibrary
LoadLibraryA
GetProcAddress
GetPrivateProfileStringA
GetCPInfo
HeapReAlloc
GetACP

user32

GetTopWindow
GetCapture
ScreenToClient
IsWindowVisible
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
DeferWindowPos
EqualRect
SetFocus
GetFocus
GetSysColor
MapWindowPoints
SystemParametersInfoA
SendDlgItemMessageA
IsDialogMessageA
SetWindowTextA
AdjustWindowRectEx
EnableMenuItem
ShowWindow
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
ReleaseDC
GetWindowDC
ShowOwnedPopups
MessageBoxA
PostQuitMessage
SetMessageQueue
GetCursorPos
ValidateRect
GetMessageA
GetClassNameA
PtInRect
ClientToScreen
GetDesktopWindow
DestroyMenu
ReleaseCapture
WindowFromPoint
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
RegisterClassA
CheckMenuItem
BringWindowToTop
GetSubMenu
WinHelpA
GetMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
SetPropA
GetLastActivePopup
GetForegroundWindow
GetPropA
RemovePropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
GetNextDlgTabItem
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
CharUpperA
LoadStringA
PostMessageA
DdeInitializeA
DdeCreateStringHandleA
DdeConnectList
DdeQueryNextServer
DdeQueryConvInfo
DdeClientTransaction
DdeGetLastError
DdeDisconnectList
DdeUninitialize
DdeQueryStringA
FindWindowA
GetWindowThreadProcessId
ExitWindowsEx
LoadCursorA
SetCursor
PeekMessageA
TranslateMessage
DispatchMessageA
SetForegroundWindow
wsprintfA
GrayStringA
DrawTextA
TabbedTextOutA
LoadBitmapA
SetTimer
FillRect
InflateRect
BeginPaint
EndPaint
KillTimer
GetDC
UpdateWindow
IsIconic
GetClassInfoA
UnpackDDElParam
InvalidateRect
GetMenuItemCount
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA
RegisterWindowMessageA
EnableWindow
GetMenuItemID
GetActiveWindow
IsWindowEnabled
GetWindowRect
OffsetRect
ShowCaret
ExcludeUpdateRgn
IntersectRect
DrawFocusRect
DefDlgProcA
IsWindowUnicode
UnregisterClassA
HideCaret
CharNextA

gdi32

PatBlt
CreateCompatibleDC
CreateFontIndirectA
GetDeviceCaps
CreateICA
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetTextColor
SetBkColor
CreateBitmap
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
GetObjectA
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
BitBlt
SetWindowExtEx
ScaleWindowExtEx
CreateDIBitmap
GetClipBox
IntersectClipRect
DeleteObject
CreatePen
CreateSolidBrush
GetTextExtentPointA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegCreateKeyA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegEnumKeyA

shell32

DragQueryFileA
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
DragFinish

comctl32

ord17

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dbd6ccfc1f718aa8414e4c36b0f0a108

Headers

File Characteristics

Imports

ole32

version

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 158KB - Virtual size: 158KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 23KB - Virtual size: 42KB

.idata Size: 8KB - Virtual size: 8KB

.rsrc Size: 30KB - Virtual size: 30KB

.reloc Size: 58KB - Virtual size: 58KB

.text
Size: 158KB - Virtual size: 158KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 23KB - Virtual size: 42KB

.idata
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 30KB - Virtual size: 30KB

.reloc
Size: 58KB - Virtual size: 58KB