68fee166ec5900d5346e7f2c0c8aa50767f6cfbc87d97de87ce129b1ad0d966d

Sharing

Copy URL Twitter E-mail

General

Target

68fee166ec5900d5346e7f2c0c8aa50767f6cfbc87d97de87ce129b1ad0d966d
Size

330KB
MD5

aef6cdd62c9a856604bf3800abf5678d
SHA1

cbf5ba030e9358be4b55e8d94e0cb449f67f95ea
SHA256

68fee166ec5900d5346e7f2c0c8aa50767f6cfbc87d97de87ce129b1ad0d966d
SHA512

1f23026c299048e7ff0756a078f0276eb240e52bb0a62e8f50701c276e1bf63364c6e31b63afe933bfc015c78974d75953431a82ffb45fec5295764b774569e9
SSDEEP

6144:xu5anKJkS+Oq5mlAOAUW6QI45DPlO8H3rwuKOHj:xuonmks8mlmf6QI4NjXrwuKK

Score

N/A

Malware Config

Signatures

Files

68fee166ec5900d5346e7f2c0c8aa50767f6cfbc87d97de87ce129b1ad0d966d
.exe windows x86

1e5debc495bcdcccd5f5de03abf91a93

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CreateWindowExW
TabbedTextOutA
ShowWindow
RegisterClassExW
GetAsyncKeyState
IsDlgButtonChecked
ScreenToClient
GetMessagePos
CallWindowProcW
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
TrackPopupMenu
GetWindowRect
AppendMenuW
CreatePopupMenu
GetSystemMetrics
EndDialog
EnableMenuItem
GetSystemMenu
SetClassLongW
SetWindowPos
DialogBoxParamW
CheckDlgButton
SystemParametersInfoW
RegisterClassW
SetDlgItemTextW
GetDlgItemTextW
MessageBoxIndirectW
CharNextA
CharUpperW
CharPrevW
wvsprintfW
DispatchMessageW
wsprintfA
DestroyWindow
CreateDialogParamW
SetTimer
SetForegroundWindow
CheckRadioButton
wsprintfW
SendMessageTimeoutW
SetCursor
GetWindowLongW
GetSysColor
CharNextW
GetClassInfoW
IsWindow
GetDlgItem
LoadImageW
GetDC
InvalidateRect
DefWindowProcW
BeginPaint
GetClientRect
FillRect
DrawTextW
EndPaint
FindWindowExW
TranslateMessage
GetMessageW
PostMessageW
PeekMessageW
SetWindowLongW
GrayStringW
DrawTextExW
TabbedTextOutW
PostQuitMessage
GetWindow
SetWindowContextHelpId
MapDialogRect
GetWindowThreadProcessId
SendMessageW
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
BringWindowToTop
ExitWindowsEx
LoadBitmapW
SetWindowTextW
LoadCursorW
LoadIconW

comdlg32

GetFileTitleW

shell32

SHGetFolderPathW
ShellExecuteW
SHGetMalloc

advapi32

AllocateAndInitializeSid
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
RegDeleteKeyW
RegSetValueExW
FreeSid
CheckTokenMembership
AdjustTokenPrivileges
RegQueryValueExW
OpenProcessToken
RegOpenKeyW
RegEnumKeyW
RegQueryValueW
RegOpenKeyExW
LookupPrivilegeValueW

gdi32

GetWindowExtEx
GetViewportExtEx
GetClipBox
SetMapMode
SetBkColor
RestoreDC
SaveDC
PtVisible
GetObjectW
SetBkMode
GetStockObject
DeleteObject
SetTextColor
SelectObject
CreateBrushIndirect
SetTextAlign
RectVisible
TextOutW
ExtTextOutW
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreateBitmap
ScaleViewportExtEx
DPtoLP
GetRgnBox
GetTextColor
GetBkColor
GetMapMode
CreateRectRgnIndirect
CreateFontIndirectW
GetDeviceCaps
Escape

shlwapi

PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathAddBackslashW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

kernel32

TerminateProcess
GetModuleFileNameA
GetStdHandle
ExitProcess
GetProcAddress
GetModuleHandleW
HeapCreate
HeapReAlloc
VirtualAlloc
VirtualFree
HeapFree
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetStartupInfoA
GetCurrentProcess
GetSystemTimeAsFileTime
HeapAlloc
UpdateResourceW
EndUpdateResourceW
WriteFile
ReadFile
SetFilePointerEx
FindResourceExW
CreateMutexW
ReleaseMutex
GetCurrentThreadId
GetUserDefaultLCID
GetSystemDefaultLangID
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetCurrentDirectoryW
CreateThread
WaitForSingleObject
CloseHandle
IsDebuggerPresent
GetModuleHandleA
WideCharToMultiByte
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
RtlUnwind
LoadLibraryA
RaiseException
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
HeapSize
GetLocaleInfoA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
LCMapStringA
GetStringTypeA
GetStringTypeW
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
CreateFileA
GetCommandLineA
GetModuleFileNameW
GetLastError
Sleep
FindResourceW
LoadResource
SizeofResource
PeekNamedPipe
LockResource
LCMapStringW
CreateSemaphoreW
GlobalLock
GetOverlappedResult
EnumResourceNamesW

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e5debc495bcdcccd5f5de03abf91a93

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

advapi32

gdi32

shlwapi

winspool.drv

kernel32

Sections

.text Size: 106KB - Virtual size: 106KB

.rdata Size: 124KB - Virtual size: 123KB

.data Size: 16KB - Virtual size: 39KB

.rsrc Size: 82KB - Virtual size: 82KB

.text
Size: 106KB - Virtual size: 106KB

.rdata
Size: 124KB - Virtual size: 123KB

.data
Size: 16KB - Virtual size: 39KB

.rsrc
Size: 82KB - Virtual size: 82KB