191e410d1018bc9c427423b11780856955880ee9a28c22cc13fc7ac5e5df430b

Sharing

Copy URL Twitter E-mail

General

Target

191e410d1018bc9c427423b11780856955880ee9a28c22cc13fc7ac5e5df430b
Size

756KB
MD5

586291de42a1ed7b2a90dd1b196479f0
SHA1

48cde9f928c59ff9f4b437205d42fc3683d8495e
SHA256

191e410d1018bc9c427423b11780856955880ee9a28c22cc13fc7ac5e5df430b
SHA512

c177c63aa1374b3611ba82e0671c65d76fbc442143025d713fedef1356a780d45308d6635c73f9f8789c0f0f88987a01c159488bb112dee9955a8aba5e5c8a52
SSDEEP

12288:0IeSgqQoxn5VCdUASvlEbT4D0w30H9WeruIKpWqvcNlK8MuwS:0wDQol5VCQvWIEbK1vyVMu

Score

N/A

Malware Config

Signatures

Files

191e410d1018bc9c427423b11780856955880ee9a28c22cc13fc7ac5e5df430b
.exe windows x86

96df20d996c60902a3a7039b6d0e6ba5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

LoadTypeLi

advapi32

OpenProcessToken
RegQueryValueA
RegQueryValueExA
CloseServiceHandle
RegOpenKeyA
RegSetValueA
ChangeServiceConfigA
RegCloseKey

gdi32

GetTextMetricsW
CreateDIBitmap
GetNearestPaletteIndex
SetWindowExtEx
ExtTextOutA
OffsetViewportOrgEx
GetDeviceCaps
GetMapMode
CombineRgn
SetBkMode
SetPolyFillMode
DeleteObject
Arc
CreatePolygonRgn
OffsetWindowOrgEx
SetMapMode
RectInRegion
GetStockObject
DeleteDC
SetTextAlign
GetTextExtentPointA
SetTextColor
SetROP2
CreateRoundRectRgn
CreateFontIndirectA
PolyBezier
PtVisible
SetViewportOrgEx
PaintRgn
Rectangle
GetObjectA
GetBkColor
GetCurrentObject
CreatePalette
FillRgn
MoveToEx
StretchDIBits
PolyPolygon
GetClipRgn
EnumFontFamiliesExA
PatBlt
GetTextColor
SetBrushOrgEx
CreateCompatibleBitmap
CreateSolidBrush
TextOutA

user32

LoadIconW
LoadImageW
LoadCursorW
GetWindowTextW
EqualRect
DestroyWindow
RegisterClassW
DestroyIcon
DefWindowProcW
MessageBoxW
GetWindowPlacement
WaitMessage
LoadBitmapW
RegisterClassExW
CreateWindowExW
ShowWindow
GetSystemMetrics

ole32

CoUninitialize
OleIsCurrentClipboard
ReleaseStgMedium
CoTaskMemFree
DoDragDrop
OleInitialize
RevokeDragDrop
CLSIDFromProgID
OleLockRunning
CreateStreamOnHGlobal

kernel32

QueryPerformanceCounter
FlushFileBuffers
GetLastError
GetModuleFileNameW
GetVersionExA
SetLastError
GetProcAddress
HeapAlloc
CloseHandle
GetLocaleInfoA
GetStringTypeA
WideCharToMultiByte
FreeEnvironmentStringsA
LCMapStringA
GetCurrentProcess
CompareStringA
SetHandleCount
GetCurrentThreadId
TerminateProcess
TlsSetValue
GetStartupInfoA
SetEnvironmentVariableA
GetModuleHandleW
CreateMutexW
VirtualQuery
GetModuleFileNameA
VirtualAlloc
GetSystemTimeAsFileTime
HeapFree
GetCommandLineA
FreeEnvironmentStringsW
GetEnvironmentStrings
VirtualFree
TlsAlloc
GetModuleHandleA
HeapSize
GetDateFormatA
GetOEMCP
TlsGetValue
GetSystemInfo
SetStdHandle
GetStringTypeW
LeaveCriticalSection
GetTimeFormatA
GetACP
IsBadCodePtr
DeleteCriticalSection
InitializeCriticalSection
WriteFile
GetTimeZoneInformation
RtlUnwind
GetTickCount
GetCPInfo
SetFilePointer
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LoadLibraryW
HeapReAlloc
MultiByteToWideChar
VirtualProtect
GetStartupInfoW
GetFileType
CompareStringW
HeapCreate
ExitProcess
InterlockedExchange
LCMapStringW
EnterCriticalSection
LoadLibraryA
ReadFile
GetStdHandle
TlsFree
HeapDestroy
GetEnvironmentStringsW
RaiseException
GetCommandLineW
GetCurrentProcessId

comctl32

_TrackMouseEvent
ImageList_EndDrag
ImageList_Create
ImageList_Destroy
ImageList_DrawIndirect
ImageList_DragShowNolock
ImageList_DragMove

winspool.drv

OpenPrinterA
EnumPrinterDriversA
DocumentPropertiesA
ord204
EnumJobsA
GetPrinterA
AddPrinterDriverA
GetPrinterDriverDirectoryA
EnumPrintersA
AddPrinterA
DeviceCapabilitiesA
ClosePrinter

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 470KB - Virtual size: 469KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

96df20d996c60902a3a7039b6d0e6ba5

Headers

File Characteristics

Imports

oleaut32

advapi32

gdi32

user32

ole32

kernel32

comctl32

winspool.drv

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 470KB - Virtual size: 469KB

.data Size: 104KB - Virtual size: 103KB

.rsrc Size: 92KB - Virtual size: 91KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 470KB - Virtual size: 469KB

.data
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 92KB - Virtual size: 91KB