3f84f1a5661aded90d6f75325727cbf20124789d2e1a7e70f2e5bb124b7e4e2f

Sharing

Copy URL Twitter E-mail

General

Target

3f84f1a5661aded90d6f75325727cbf20124789d2e1a7e70f2e5bb124b7e4e2f
Size

164KB
MD5

405ed783dec6a238722af00a2bc3e75b
SHA1

01a49f61d304f6b4e5851bb872324ec4b1ee04e9
SHA256

3f84f1a5661aded90d6f75325727cbf20124789d2e1a7e70f2e5bb124b7e4e2f
SHA512

d46861ba544331079e5d93ce0acf700a7e71944df81a8e63b18ef205cccc7fb3c86d3f1b9438a439d1bbfc8281aa5cccc30094ada1e6d3ee2cd91d35f63b00dc
SSDEEP

3072:jrsoeD75LCc3C4l2Wq90D2um7oVd4EHkeRe5VlEhFi:jAZD75LCcyfLWaum7Yd4md8gFi

Score

N/A

Malware Config

Signatures

Files

3f84f1a5661aded90d6f75325727cbf20124789d2e1a7e70f2e5bb124b7e4e2f
.exe windows x86

52876360693074b75228c103511bef13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupCopyOEMInfW

kernel32

GlobalFlags
InterlockedIncrement
LocalAlloc
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
FileTimeToSystemTime
SetErrorMode
WritePrivateProfileStringW
FileTimeToLocalFileTime
GetFileAttributesW
GetFileTime
RtlUnwind
ExitProcess
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
HeapReAlloc
TerminateProcess
SetStdHandle
GetFileType
HeapSize
VirtualProtect
VirtualAlloc
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
SetUnhandledExceptionFilter
IsBadWritePtr
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
CompareStringA
CompareStringW
SetEnvironmentVariableA
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
GetLocaleInfoW
WideCharToMultiByte
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetModuleHandleA
LoadLibraryA
lstrcatW
lstrcmpW
GetVersionExA
lstrcpyW
lstrlenW
GlobalAlloc
lstrcpynW
GlobalLock
GlobalUnlock
GlobalFree
GetModuleFileNameW
GetComputerNameW
GetCommandLineW
FormatMessageW
LocalFree
GetStartupInfoW
CreateProcessW
GetExitCodeProcess
Sleep
GetPrivateProfileStringW
GetProcAddress
FreeLibrary
LoadLibraryW
GetModuleHandleW
EnumResourceTypesW
EnumResourceNamesW
FreeResource
OutputDebugStringW
CreateFileW
WriteFile
SetFileTime
CloseHandle
SetFileAttributesW
FindFirstFileW
DeleteFileW
FindNextFileW
FindClose
RemoveDirectoryW
GetEnvironmentVariableW
GetCurrentDirectoryW
SetLastError
CreateDirectoryW
GetLastError
MultiByteToWideChar
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
FindResourceW
LoadResource
LockResource
SizeofResource
GetSystemInfo

user32

LoadCursorW
GetSysColorBrush
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
CharUpperW
PostQuitMessage
wsprintfW
SetMenuItemBitmaps
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapW
ShowWindow
SetWindowTextW
RegisterWindowMessageW
WinHelpW
GetCapture
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
GetClassInfoExW
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
LoadIconW
PeekMessageW
MapWindowPoints
MessageBoxW
GetKeyState
SetForegroundWindow
IsWindowVisible
GetClientRect
GetMenu
PostMessageW
GetSysColor
AdjustWindowRectEx
GetClassInfoW
RegisterClassW
UnregisterClassW
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
SetWindowPos
SetCursor
DestroyMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetWindow
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetActiveWindow
GetSystemMetrics
DestroyWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetParent
SendMessageW
EnableWindow

gdi32

DeleteDC
GetStockObject
ExtTextOutW
TextOutW
RectVisible
PtVisible
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
GetDeviceCaps
DeleteObject
SetMapMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
Escape

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegOpenKeyW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegCloseKey

comctl32

ord17

shlwapi

PathFindExtensionW
PathStripToRootW
PathIsUNCW
PathFindFileNameW

oleaut32

VariantClear
VariantChangeType
VariantInit

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

52876360693074b75228c103511bef13

Headers

File Characteristics

Imports

setupapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

oleaut32

Sections

.text Size: 120KB - Virtual size: 118KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 8KB - Virtual size: 22KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 120KB - Virtual size: 118KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 8KB - Virtual size: 22KB

.rsrc
Size: 4KB - Virtual size: 3KB