db52315d769486921df3d0e287f687ecc878ff7b00bf673ecd9371efaaeef3df

Sharing

Copy URL Twitter E-mail

General

Target

db52315d769486921df3d0e287f687ecc878ff7b00bf673ecd9371efaaeef3df
Size

308KB
MD5

0b49ddd6a619da3bc14c289497ab859d
SHA1

8a45eb782761d683e5af7b0146da3c5fd6a8d473
SHA256

db52315d769486921df3d0e287f687ecc878ff7b00bf673ecd9371efaaeef3df
SHA512

388d2b04e460ccc5b4ef600188bf56f0895b32e33626c52f05e4f35cbbc992efe7b983a3c6eca42980b0ce8087ffd837498abf88e7a1fe233f8adf905521ecdb
SSDEEP

6144:5LHkgBOcdx5bHiRFKoBcZmjCiI8/ZEVkxX0JeG20PAyHJE8XnAEBhmfLbtIPc:5kadx5bHiRAoBc4+iIs/WsGntEInAiCh

Score

N/A

Malware Config

Signatures

Files

db52315d769486921df3d0e287f687ecc878ff7b00bf673ecd9371efaaeef3df
.exe windows x86

465a1cccf7c2e540613a28e8814634f7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW
GetFileVersionInfoA

lz32

LZSeek

mpr

WNetCloseEnum
WNetGetUserW
WNetConnectionDialog1W
WNetEnumResourceA
WNetCancelConnection2A
WNetAddConnectionW
WNetConnectionDialog
WNetOpenEnumA
WNetCancelConnectionW
WNetUseConnectionA
WNetConnectionDialog1A
WNetCancelConnectionA
WNetGetLastErrorW
WNetGetUniversalNameA
MultinetGetConnectionPerformanceA
WNetGetConnectionW
WNetGetUniversalNameW
WNetAddConnection3A
WNetGetUserA
WNetAddConnection2A
WNetAddConnection2W
WNetGetNetworkInformationA
WNetGetLastErrorA
WNetGetProviderNameA
WNetAddConnection3W
WNetOpenEnumW
WNetEnumResourceW

pdh

PdhLookupPerfNameByIndexA

user32

GetClipboardData
GetNextDlgGroupItem
CreateDialogIndirectParamA
GetUserObjectInformationA
EqualRect
DefDlgProcA
GetActiveWindow

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

kernel32

GetStartupInfoA
GetModuleHandleA
DeviceIoControl
GetDiskFreeSpaceA
GetEnvironmentVariableA
GetPrivateProfileStructA

gdi32

GetDIBits
CreateHatchBrush
GetEnhMetaFileHeader
GdiSetBatchLimit
GetMetaFileBitsEx
CreateICA
SetBitmapBits
CreatePalette
GetWindowOrgEx
GetAspectRatioFilterEx
GetSystemPaletteUse
GdiGetBatchLimit
PtVisible
DeleteColorSpace
GetCharABCWidthsW
CreateDIBPatternBrush
CopyMetaFileW
RemoveFontResourceW
SetGraphicsMode
GetNearestPaletteIndex
GetMetaFileW
UnrealizeObject
GetTextCharsetInfo
CreateColorSpaceA
ExtEscape
GetCharABCWidthsFloatW
SetPixel
GetEnhMetaFilePaletteEntries
PlayEnhMetaFile
RestoreDC
GetPixelFormat
GetDeviceGammaRamp
PolyPolyline
CreateEnhMetaFileA
GetCharWidth32W
AbortPath
GetEnhMetaFileBits
CreateCompatibleDC
OffsetViewportOrgEx
Escape
CreateICW
GetLogColorSpaceW
ChoosePixelFormat
RoundRect
SetBkMode
GetTextCharset
FixBrushOrgEx
CreateBitmap
EqualRgn
GetTextMetricsW
CopyEnhMetaFileW
CreatePenIndirect
PolyPolygon
CreateHalftonePalette
SetTextColor
SetBoundsRect
ResizePalette
GetTextFaceW
GetCharWidthA
GetTextCharacterExtra
GetLogColorSpaceA
EnumObjects
GetStretchBltMode
RealizePalette
SetBkColor
CreatePen
SaveDC
UpdateColors
ExcludeClipRect
SetStretchBltMode
Chord
GetEnhMetaFileW
FlattenPath
CreateRoundRectRgn
CreateMetaFileW
GetBoundsRect
GetKerningPairsA
GetClipBox
TextOutW
GetOutlineTextMetricsW
SetPixelV
Arc
StretchDIBits
ArcTo
GetICMProfileA
GetColorSpace
GetFontData
GetNearestColor
CloseMetaFile
CreateFontA
GetCharWidthW
UpdateICMRegKeyW
GetObjectA
PolyDraw
GetPath
GetEnhMetaFileA
GetGraphicsMode
GetROP2

winspool.drv

GetFormA
SetJobA

shlwapi

PathSkipRootA
PathMatchSpecA
SHDeleteKeyA
ChrCmpIW
PathAppendA
PathIsSameRootW
PathIsUNCServerW
PathRemoveBlanksW
PathGetDriveNumberA
PathFindExtensionW
PathFindExtensionA
PathBuildRootW
SHRegEnumUSKeyA
SHRegWriteUSValueW
PathCommonPrefixA
PathSearchAndQualifyW
PathRelativePathToA
SHRegSetUSValueW
PathSkipRootW
PathStripToRootW
StrToIntW
PathAddExtensionW
PathIsDirectoryA
PathCommonPrefixW
PathMakePrettyW
PathIsURLA
PathMakeSystemFolderW
PathSetDlgItemPathW
StrTrimA
StrFromTimeIntervalW
SHDeleteEmptyKeyA
PathAddExtensionA
ChrCmpIA
PathUnquoteSpacesW
SHGetValueA
StrCpyW
SHRegOpenUSKeyA
PathMakePrettyA
PathRenameExtensionA
SHQueryInfoKeyW
PathUnmakeSystemFolderW
StrNCatW
SHOpenRegStreamA
SHDeleteValueA
PathParseIconLocationA
PathIsContentTypeW
PathIsUNCServerShareW
StrPBrkW
PathIsUNCServerShareA
PathGetArgsA
PathMatchSpecW
StrNCatA
PathRemoveBackslashW
PathRemoveArgsW
PathCanonicalizeW
PathFindFileNameW
PathAddBackslashW
SHSetValueW
PathIsRelativeW
PathRemoveExtensionW
PathUnquoteSpacesA
PathIsFileSpecW
PathRemoveFileSpecW
SHEnumKeyExA
StrCatW
SHRegDeleteUSValueA
PathRemoveFileSpecA
SHRegCloseUSKey
SHGetValueW
SHCreateShellPalette
SHRegGetUSValueW
SHRegOpenUSKeyW
PathSearchAndQualifyA
SHDeleteKeyW
PathGetArgsW
PathCompactPathExW
SHRegCreateUSKeyW
PathIsDirectoryW
PathIsPrefixW
StrCSpnA
PathFileExistsW
PathAddBackslashA
StrTrimW
PathFindNextComponentW
PathIsUNCW
SHRegDeleteEmptyUSKeyA
StrCSpnIW
StrToIntA
PathIsRootW
PathIsRelativeA

Sections

.text
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

465a1cccf7c2e540613a28e8814634f7

Headers

File Characteristics

Imports

version

lz32

mpr

pdh

user32

msvcrt

kernel32

gdi32

winspool.drv

shlwapi

Sections

.text Size: 92KB - Virtual size: 90KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 3.9MB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 92KB - Virtual size: 90KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 3.9MB

.rsrc
Size: 20KB - Virtual size: 19KB