e8f875009df1c0119091888994a35d2162ced8c033d9292cd2031ed717f79fe8

Sharing

Copy URL Twitter E-mail

General

Target

e8f875009df1c0119091888994a35d2162ced8c033d9292cd2031ed717f79fe8
Size

316KB
MD5

0bb8144c5d44e5a30c37ffcef779b330
SHA1

079ffb7bee2f1cf9a48b64dfff54cd29a5dadb6b
SHA256

e8f875009df1c0119091888994a35d2162ced8c033d9292cd2031ed717f79fe8
SHA512

a148ab123065b5355793552504ca311de6352f587af0eaa37d33cc0f5b0209ce23445b239de7a5fab3b4883fa169fc96cceb147451cb60be0a0e47634087bea4
SSDEEP

6144:sHMiPvjOSbZjQTP/+4YMkeBGRmQNvICVCXQC75lhe1OrqIrp:w+S4YMkeB0vHelve1op

Score

N/A

Malware Config

Signatures

Files

e8f875009df1c0119091888994a35d2162ced8c033d9292cd2031ed717f79fe8
.exe windows x86

bac0ede5cde9274fee50f5d6c43c0621

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetErrorMode
GlobalFlags
LocalAlloc
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
WritePrivateProfileStringA
GetProcessVersion
SizeofResource
GetCPInfo
GetOEMCP
RtlUnwind
ExitProcess
TerminateProcess
GetStartupInfoA
SetStdHandle
GetFileType
HeapAlloc
HeapFree
RaiseException
GetTimeZoneInformation
GetACP
HeapReAlloc
HeapSize
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
HeapDestroy
VirtualFree
GetStringTypeA
GetStringTypeW
GetDriveTypeA
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetWindowsDirectoryA
GetSystemDirectoryA
WaitForSingleObject
GetExitCodeProcess
GetLastError
CreateProcessA
CopyFileA
DeleteFileA
GetVersionExA
GetPrivateProfileStringA
RemoveDirectoryA
GetTempPathA
Sleep
ReleaseMutex
OpenMutexA
CreateDirectoryA
lstrlenA
GetLocalTime
FileTimeToSystemTime
GetModuleFileNameA
GetSystemDefaultLangID
GetProcAddress
LoadLibraryA
HeapCreate
GetCommandLineA
FreeLibrary
WideCharToMultiByte
LocalFree
GetProfileStringA
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
GlobalFree
FindResourceA
LoadResource
GlobalAlloc
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
lstrcmpA
FileTimeToLocalFileTime
GlobalLock
GlobalUnlock
FindNextFileA
SetLastError
SetFileAttributesA
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSize
GetFileAttributesA
lstrcmpiA
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement

user32

GetClassNameA
PtInRect
LoadCursorA
GetSysColorBrush
DestroyMenu
InvalidateRect
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
ShowWindow
SetWindowTextA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
EndDialog
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
GrayStringA
DrawTextA
TabbedTextOutA
TranslateMessage
DispatchMessageA
DefDlgProcA
InflateRect
CharNextA
IsWindowUnicode
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SetCursor
PostQuitMessage
PostMessageA
LoadStringA
GetWindowTextLengthA
GetWindowTextA
CharUpperA
EnableWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA
wsprintfA
MessageBoxA
RemovePropA

gdi32

SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateDIBitmap
CreateBitmap

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegOpenKeyA
RegCreateKeyExA
RegCreateKeyA
RegQueryInfoKeyA
RegEnumValueA
RegCloseKey
RegEnumKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA

comctl32

ord17

Sections

.text
Size: 168KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bac0ede5cde9274fee50f5d6c43c0621

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

Sections

.text Size: 168KB - Virtual size: 164KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 32KB - Virtual size: 47KB

.rsrc Size: 84KB - Virtual size: 84KB

.text
Size: 168KB - Virtual size: 164KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 32KB - Virtual size: 47KB

.rsrc
Size: 84KB - Virtual size: 84KB