2e0e77f3cc412d39b546b48e7cfee91d13d6bbf38719f16dce17479a03353b57

Sharing

Copy URL Twitter E-mail

General

Target

2e0e77f3cc412d39b546b48e7cfee91d13d6bbf38719f16dce17479a03353b57
Size

332KB
MD5

0c0a051784d384e96cc220b929f6a3f5
SHA1

0a986d81cffd323b410ea22a76de296ca8b587ab
SHA256

2e0e77f3cc412d39b546b48e7cfee91d13d6bbf38719f16dce17479a03353b57
SHA512

7bf4150853fbb8715f67ea7fec85286b2b40b7cc681b3cccff6f37dbfbd22a5b9f971dabc75d9e42a534762e3f58817a87f7d1a854f36f2357ac5a4ed2bf0a7e
SSDEEP

6144:mPd1amU5RWpyWYV/Mf1eUE1QwZQEclKj:owOpyWYVUsUEz8

Score

N/A

Malware Config

Signatures

Files

2e0e77f3cc412d39b546b48e7cfee91d13d6bbf38719f16dce17479a03353b57
.exe windows x86

c877b1644951107dad36caf2f1dc6f87

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetEnvironmentStrings
InterlockedIncrement
ExitProcess
VirtualQuery
CreateFileA
InterlockedExchange
GetSystemTimeAsFileTime
GetWindowsDirectoryA
GetSystemTime
DuplicateHandle
ExitThread
GetEnvironmentStringsW
LocalAlloc
ReadFile
SetStdHandle
_lclose
GetPrivateProfileIntA
SetCurrentDirectoryA
GetTimeZoneInformation
GlobalFree
LCMapStringA
GetCommandLineA
CreateEventA
GetCurrentProcess
GetVersion
TlsAlloc
GetTempPathA
SetUnhandledExceptionFilter
DeleteCriticalSection
GetStringTypeA
FindFirstFileA
FindResourceA
CreateProcessA
MoveFileExA
HeapCreate
GetTickCount
GetModuleFileNameA
GetCurrentThreadId
GlobalLock
LocalFree
SetEnvironmentVariableA
LCMapStringW
GetProcAddress
GetStartupInfoA
SetHandleCount
GetStringTypeW
GetModuleHandleA
UnhandledExceptionFilter
FreeEnvironmentStringsA
HeapAlloc
MoveFileA
CopyFileA
SetFilePointer
GlobalUnlock
FormatMessageA
GetCurrentProcessId
GetACP
WriteFile
GetProfileIntA
FlushFileBuffers
Sleep
CreateMutexA
SetEndOfFile
GetDriveTypeA
OpenProcess
WritePrivateProfileStringA
GetThreadLocale
HeapDestroy
MultiByteToWideChar
GetTempFileNameA
QueryPerformanceCounter
WaitForSingleObject
FindNextFileA
CreateDirectoryA
InterlockedDecrement
SetLastError
CompareStringW
GetFileType
GetLastError
WaitForMultipleObjects
GetOEMCP
GetCurrentThread
RaiseException
GetNumberFormatA
EnterCriticalSection
TlsGetValue
lstrcpyA
GetVersionExA
GetModuleFileNameW
FreeEnvironmentStringsW
VirtualFree
HeapFree
GetCPInfo
SearchPathA
InitializeCriticalSection
LockFile
TerminateProcess
VirtualAlloc
HeapReAlloc
GetDiskFreeSpaceA
WideCharToMultiByte
HeapSize
UnlockFile
CompareStringA
CloseHandle
IsBadCodePtr
LoadResource
DeleteFileA
RtlUnwind
SetEvent
LoadLibraryA
FileTimeToLocalFileTime
SizeofResource
GlobalAlloc
FindResourceExA
TlsSetValue
GetFileInformationByHandle
GetStdHandle
lstrcpynA
GetCurrentDirectoryA
GetLocalTime

ole32

ReleaseStgMedium
CoUninitialize
StgOpenStorageOnILockBytes
CLSIDFromString
CreateStreamOnHGlobal
RevokeDragDrop
CoTaskMemAlloc
CoRegisterMessageFilter
OleIsCurrentClipboard

user32

CharUpperA
GetDC
MapWindowPoints
BeginPaint
TranslateAcceleratorA
GetClassNameA
ShowWindow
DrawFocusRect
UnpackDDElParam
RegisterWindowMessageA
LoadStringA
GetClassLongA
GetCaretPos
keybd_event
LoadCursorA
SetFocus
EndPaint
CopyRect
IsChild
GrayStringA
RegisterClassA
GetDlgCtrlID
GetParent
ValidateRect
PeekMessageA
RegisterClassExA
DestroyIcon
LoadIconA
SetWindowLongA
GetWindowRect
GetClientRect
GetWindowTextA
UpdateWindow
SetClipboardData
EndDialog
ScreenToClient

winspool.drv

OpenPrinterA
ord204
ClosePrinter

shlwapi

PathIsUNCA
PathStripToRootA

shell32

ShellExecuteA
SHChangeNotify
ExtractIconA
SHGetFileInfoA

oleaut32

LoadTypeLi

comctl32

ImageList_Write
ImageList_Read
ImageList_Destroy
ImageList_Create
ImageList_SetOverlayImage

Sections

.text
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c877b1644951107dad36caf2f1dc6f87

Headers

File Characteristics

Imports

kernel32

ole32

user32

winspool.drv

shlwapi

shell32

oleaut32

comctl32

Sections

.text Size: 68KB - Virtual size: 67KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 60KB - Virtual size: 71KB

.rsrc Size: 124KB - Virtual size: 122KB

.text
Size: 68KB - Virtual size: 67KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 60KB - Virtual size: 71KB

.rsrc
Size: 124KB - Virtual size: 122KB