55242c00cfe04b09eea2f9aa8cb240c7062e15b34d13fa3c8ecd2f04b1f8c258

Sharing

Copy URL Twitter E-mail

General

Target

55242c00cfe04b09eea2f9aa8cb240c7062e15b34d13fa3c8ecd2f04b1f8c258
Size

294KB
MD5

0002a2e5fc0c5fad5dcb03ef3f4e2f66
SHA1

fd555bdfc422723f87e71fc8d6522b5e41a79dba
SHA256

55242c00cfe04b09eea2f9aa8cb240c7062e15b34d13fa3c8ecd2f04b1f8c258
SHA512

7e19c3484411d7cc4fd228f6450d759982bbb1316d8aef4fecc6c5394d14adb774496aeb4a63ff697b25d1f2a6cb22c6d42096cdec08fe1aabc7bba8adb4d036
SSDEEP

6144:UlAIo/mAylXza0zbBivSe2XslQAoIdHFrFr:JyXza2N2SV+rZr

Score

N/A

Malware Config

Signatures

Files

55242c00cfe04b09eea2f9aa8cb240c7062e15b34d13fa3c8ecd2f04b1f8c258
.exe windows x86

66f5032f8a4139cc2f57dcd54937c674

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GlobalFlags
WritePrivateProfileStringW
lstrlenW
GlobalFindAtomW
LoadLibraryA
GetVersionExA
GetModuleHandleA
InterlockedDecrement
GlobalUnlock
GlobalFree
GetCurrentProcessId
SetLastError
GlobalAddAtomW
TlsSetValue
GetCurrentThreadId
ConvertDefaultLocale
GetModuleFileNameW
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
LoadLibraryW
WideCharToMultiByte
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
InterlockedExchange
GlobalLock
lstrcmpW
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
GetModuleHandleW
GetProcAddress
LocalReAlloc
DeleteCriticalSection
TlsFree
FormatMessageW
InterlockedIncrement
GetThreadLocale
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
GetCurrentProcess
SetErrorMode
lstrlenA
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoW
RtlUnwind
ExitProcess
RaiseException
HeapReAlloc
HeapSize
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
Sleep
VirtualAlloc
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
SetStdHandle
CreateToolhelp32Snapshot
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
LocalFree
GetCommandLineW
GetLastError
GetCurrentThread
TerminateProcess
OpenProcess
CloseHandle
Process32NextW
Process32FirstW

user32

PostMessageW
EnableWindow
PostQuitMessage
CheckMenuItem
GetSystemMetrics
PeekMessageW
GetMenuCheckMarkDimensions
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetFocus
GetParent
ModifyMenuW
GetMenuState
GetClientRect
EnableMenuItem
SendMessageW
IsIconic
LoadIconW
LoadBitmapW
DestroyMenu
UnregisterClassW
GetSysColorBrush
LoadCursorW
ShowWindow
SetWindowTextW
UnregisterClassA
RegisterWindowMessageW
WinHelpW
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetWindowTextW
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
SetWindowPos
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetWindow
GetSysColor
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
UnhookWindowsHookEx
DestroyWindow
IsWindow
GetDlgItem
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
MessageBoxW
SetCursor
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
IsWindowVisible
GetKeyState

gdi32

GetDeviceCaps
GetStockObject
DeleteDC
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
RectVisible
PtVisible
DeleteObject
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC
CreateBitmap
ExtTextOutW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

OpenThreadToken
ImpersonateSelf
LookupPrivilegeValueW
AdjustTokenPrivileges
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegCloseKey

shell32

CommandLineToArgvW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathFindExtensionW

oleaut32

VariantInit
VariantChangeType
VariantClear

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

66f5032f8a4139cc2f57dcd54937c674

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 32KB - Virtual size: 28KB

.data Size: 12KB - Virtual size: 23KB

.rsrc Size: 116KB - Virtual size: 116KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 32KB - Virtual size: 28KB

.data
Size: 12KB - Virtual size: 23KB

.rsrc
Size: 116KB - Virtual size: 116KB