d2cc1f0e1c4b5f3dbd4d9523f0f83a5f88bdfe7fcfb76f02342e00abdbf11626

Sharing

Copy URL Twitter E-mail

General

Target

d2cc1f0e1c4b5f3dbd4d9523f0f83a5f88bdfe7fcfb76f02342e00abdbf11626
Size

520KB
MD5

2de39caba1d56a9b862640e6daa5c523
SHA1

711243701ac6c41c7262139538c1b2f54ff1a123
SHA256

d2cc1f0e1c4b5f3dbd4d9523f0f83a5f88bdfe7fcfb76f02342e00abdbf11626
SHA512

d8dbc104de4f76e6c84ed19b6207520ea29e3456a64e4bd8214186cd506ae02967895e35faf8e82f924a6c17816400d3713b8d5ce8bdb53f48d33285f9cb27a8
SSDEEP

12288:sbG3hpIvrEjkjO26Iwgk2C+VfUsgCPzaHtqXjteuJ10:sb60DEjk3wF+Vf1gCPxjHD0

Score

N/A

Malware Config

Signatures

Files

d2cc1f0e1c4b5f3dbd4d9523f0f83a5f88bdfe7fcfb76f02342e00abdbf11626
.exe windows x86

536137b6bc707dbc101c2f1e45a041fd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_BIND
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_SYSTEM

Imports

kernel32

CreateFileW
FlushFileBuffers
LCMapStringW
GetStringTypeW
SetStdHandle
HeapQueryInformation
HeapSize
HeapReAlloc
HeapFree
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
MultiByteToWideChar
GetConsoleMode
GetConsoleCP
SetFilePointer
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetLastError
TlsFree
GetCurrentThreadId
TlsGetValue
TlsAlloc
LoadLibraryW
ExitProcess
GetModuleHandleW
OutputDebugStringW
GetFileType
WriteConsoleW
OutputDebugStringA
GetStdHandle
IsProcessorFeaturePresent
IsBadReadPtr
HeapValidate
InitializeCriticalSectionAndSpinCount
GetStartupInfoW
HeapSetInformation
GetCommandLineA
RtlUnwind
RaiseException
GetModuleFileNameW
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetLastError
CreateActCtxA
ActivateActCtx
GetProcAddress
FreeLibrary
DeactivateActCtx
ReleaseActCtx
MulDiv
HeapCreate
HeapAlloc
GlobalFree
Sleep
lstrcpyW
lstrcatW
lstrlenW
lstrcpyA
WideCharToMultiByte
CloseHandle
SetCommTimeouts
ClearCommError
SetCommMask
WaitCommEvent
CreateProcessA
WaitForSingleObject
ReadFile
WriteFile
GetVersion
LocalFree
LocalAlloc
LoadLibraryA
lstrcmpiA
DecodePointer
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CommConfigDialogA
GetProcessHeap
lstrlenA
TlsSetValue
InterlockedDecrement
InterlockedIncrement

user32

DrawTextA
CopyRect
GetDC
GetSystemMetrics
GetDlgItem
CreateWindowExA
IsWindowEnabled
GetParent
EnumWindowStationsW
FillRect
InsertMenuItemA
CreatePopupMenu
SetDlgItemTextA
GetDlgItemTextA
SetFocus
SetTimer
SetWindowLongA
DispatchMessageA
KillTimer
EndDialog
SetDlgItemInt
DialogBoxParamA
GetDlgItemInt
CopyImage
DefMDIChildProcA
GetMenuItemCount
EnumDisplaySettingsA
GetWindowDC
GetFocus
GetWindowRect
GetClientRect
ClientToScreen
GetForegroundWindow
MonitorFromWindow
GetMonitorInfoA
SystemParametersInfoA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
ReleaseDC
SetWindowTextA
GetMenu
GetMenuItemInfoA
DefWindowProcA
BeginPaint
EndPaint
PostQuitMessage
LoadBitmapA
GetSysColor
SetSysColors
SendMessageA
GetWindowLongA
SetMenuItemInfoA
IsClipboardFormatAvailable
DrawMenuBar
wsprintfA
InvalidateRect
IsWindow
GetWindow
DefFrameProcA

gdi32

SetPixelFormat
CreateRectRgn
CombineRgn
GetDeviceCaps
SelectObject
DeleteObject
StartDocA
StartPage
Escape
EndPage
BitBlt
DeleteDC
GetObjectA
CreateBitmap
GetStockObject
Rectangle
Ellipse
EndDoc
CreateDCA
CreateSolidBrush
TextOutW
SetBkColor
SetTextColor
TextOutA
CreatePen
StretchDIBits
CreateCompatibleDC
GetCurrentObject
GetObjectW
ChoosePixelFormat

winspool.drv

ClosePrinter
EndDocPrinter
OpenPrinterA
EndPagePrinter
EnumPrintersA

comdlg32

PrintDlgA
GetOpenFileNameA

advapi32

RegCloseKey

shell32

DragFinish
DragAcceptFiles
SHGetFolderPathW
DragQueryFileA

ole32

CreateBindCtx
CoInitialize
CoCreateInstance

netapi32

NetUserEnum
NetApiBufferFree

psapi

GetDeviceDriverBaseNameA
GetDeviceDriverFileNameA
EnumDeviceDrivers

winmm

mmioDescend
mmioOpenW

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

shlwapi

StrChrA
StrToIntA

gdiplus

GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipSaveImageToFile
GdipDisposeImage

setupapi

SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiOpenDevRegKey

uxtheme

DrawThemeBackground

sensapi

IsNetworkAlive

Sections

.text
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

536137b6bc707dbc101c2f1e45a041fd

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

netapi32

psapi

winmm

version

shlwapi

gdiplus

setupapi

uxtheme

sensapi

Sections

.text Size: 156KB - Virtual size: 156KB

.rdata Size: 167KB - Virtual size: 167KB

.data Size: 5KB - Virtual size: 20KB

.ndata Size: 126KB - Virtual size: 125KB

.rsrc Size: 49KB - Virtual size: 48KB

.reloc Size: 15KB - Virtual size: 14KB

.text
Size: 156KB - Virtual size: 156KB

.rdata
Size: 167KB - Virtual size: 167KB

.data
Size: 5KB - Virtual size: 20KB

.ndata
Size: 126KB - Virtual size: 125KB

.rsrc
Size: 49KB - Virtual size: 48KB

.reloc
Size: 15KB - Virtual size: 14KB