f4132c36e7f2cea2a1b76054478203ed30b23ca43a766d2ff3f23e6d319d67c5

Sharing

Copy URL Twitter E-mail

General

Target

f4132c36e7f2cea2a1b76054478203ed30b23ca43a766d2ff3f23e6d319d67c5
Size

171KB
MD5

000c90af14b8236ce9c30ceb89b4d0a0
SHA1

9d188ac90116ddf702b18875b80f18a2899331fb
SHA256

f4132c36e7f2cea2a1b76054478203ed30b23ca43a766d2ff3f23e6d319d67c5
SHA512

971d3b47bc35eaf948de34be74b6e64074c3cad2d62a43e5e269425868fe1a1ecabd14506bf1982a54efe78dcb9ff39faaf165cee6d1eabccbc8b8789d7845b8
SSDEEP

3072:O21NtphHJSjbQmfAPLpeG3Lh+OBt5W6h+LJd10kzUzoI7h+aS1Gnr:1PTpSLsrr5Wp1Azo0naGr

Score

N/A

Malware Config

Signatures

Files

f4132c36e7f2cea2a1b76054478203ed30b23ca43a766d2ff3f23e6d319d67c5
.exe windows x86

851d92bbd3f59900c5799edbcbb32b48

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
FlushFileBuffers
SetEndOfFile
WriteFile
ReadFile
GetVolumeInformationA
GetFullPathNameA
GetModuleFileNameA
DeleteFileA
MoveFileA
RtlUnwind
SetEnvironmentVariableA
SetCurrentDirectoryA
RemoveDirectoryA
HeapFree
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
ExitProcess
RaiseException
HeapReAlloc
FileTimeToSystemTime
GetCPInfo
FileTimeToLocalFileTime
GetCurrentDirectoryA
MultiByteToWideChar
HeapCreate
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStdHandle
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
SetStdHandle
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
_lread
_lcreat
_lwrite
_lclose
GlobalUnlock
GlobalFree
WinExec
SetErrorMode
lstrcmpiA
GetProcessVersion
GetVersion
SetLastError
LocalReAlloc
TlsSetValue
TlsGetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
LocalFree
CreateEventA
WaitForSingleObject
SetEvent
GlobalDeleteAtom
GetCurrentThreadId
GetACP
lstrcmpA
lstrcatA
lstrcpyA
GetCurrentThread
GetOEMCP
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
lstrcpynA
GlobalGetAtomNameA
GlobalAddAtomA
_llseek
LoadLibraryA
GetProcAddress
FreeLibrary
CreateFileA
GetFileTime
FileTimeToDosDateTime
CloseHandle
GetLastError
GetTempPathA
GetWindowsDirectoryA
WritePrivateProfileStringA
SetFileAttributesA
GetFileAttributesA
GetDriveTypeA
CopyFileA
FindFirstFileA
FindClose
_lopen
GlobalAlloc
GlobalLock
HeapSize

user32

GetMessageTime
CallWindowProcA
RemovePropA
GetPropA
SetForegroundWindow
GetForegroundWindow
GetMessagePos
SetPropA
UnhookWindowsHookEx
CreateWindowExA
DefWindowProcA
GetWindowTextA
RegisterClassA
GetScrollInfo
GetTopWindow
ScreenToClient
EndDeferWindowPos
BeginDeferWindowPos
DeferWindowPos
AdjustWindowRectEx
MapWindowPoints
SystemParametersInfoA
SetWindowTextA
GetDC
ReleaseDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadStringA
GetClassNameA
PtInRect
ClientToScreen
LoadCursorA
DestroyWindow
GetMenuCheckMarkDimensions
RegisterWindowMessageA
GetWindowRect
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EndDialog
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
CallNextHookEx
ValidateRect
GetCursorPos
SetMessageQueue
SetWindowsHookExA
ShowOwnedPopups
PostQuitMessage
CharUpperA
GetLastActivePopup
BringWindowToTop
IsWindowVisible
IsIconic
EqualRect
CopyRect
InvalidateRect
GetDlgItem
wsprintfA
GetSubMenu
GetMenuItemCount
GetMenuItemID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
GetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
GetParent
GetActiveWindow
GetWindowLongA
ShowWindow
IsWindow
GetDesktopWindow
IsWindowEnabled
EnableWindow
GetWindow
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
IsCharAlphaA
IsCharAlphaNumericA
DdeCreateStringHandleA
DdeConnect
DdeClientTransaction
DdeDisconnect
DdeFreeStringHandle
SendMessageA
PostMessageA
SetWindowPos
LoadBitmapA
GetMenuState
EnableMenuItem
MessageBoxA
GetSystemMetrics
GetSysColor
UpdateWindow
DdeInitializeA
GetClientRect
FillRect
GetDlgCtrlID
GetKeyState
SetWindowLongA
UnregisterClassA

gdi32

TextOutA
CreateSolidBrush
GetDeviceCaps
CreateBitmap
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
DeleteObject
CreatePen
PtVisible
RectVisible
ExtTextOutA
Escape
CreateFontA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCloseKey
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

shell32

DragFinish
DragQueryFileA

comctl32

ord17

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

851d92bbd3f59900c5799edbcbb32b48

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 93KB - Virtual size: 92KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 8KB - Virtual size: 24KB

.idata Size: 7KB - Virtual size: 6KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 47KB - Virtual size: 47KB

.text
Size: 93KB - Virtual size: 92KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 8KB - Virtual size: 24KB

.idata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 47KB - Virtual size: 47KB