5a27e27feb7118868afe613edafa52359f5360d88c795271122e6461d80b8685

Sharing

Copy URL

Twitter E-mail

General

Target

5a27e27feb7118868afe613edafa52359f5360d88c795271122e6461d80b8685
Size

193KB
MD5

84fa198f7a28765f87687f25f5317730
SHA1

96e93ee27fe8dc2eb20c25cc4d0e6f6ee2129d08
SHA256

5a27e27feb7118868afe613edafa52359f5360d88c795271122e6461d80b8685
SHA512

6425308c1dca37824bcbc81ac8da97ef0f9a31e1bb845337695fc35f8bde2a51fb31e65508e8692a499c4d553c2fe8a13a58f37e1ce7fd1a2481f8e27f552697
SSDEEP

3072:+nRN3WKQFYUPHKxJltZrpRAw358YcifTI:+nRN36YUPq5thptTTI

Score

N/A

Malware Config

Signatures

Files

5a27e27feb7118868afe613edafa52359f5360d88c795271122e6461d80b8685
.exe windows x86

e6fac3521469a8db7a1608767abb3de2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
MultiByteToWideChar
MapViewOfFile
CreateFileMappingW
GetFileInformationByHandle
GlobalUnlock
GlobalLock
GetTimeFormatW
GetDateFormatW
GetUserDefaultLCID
GetACP
LocalLock
GetTickCount
GetCurrentThreadId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
LoadLibraryA
DeleteFileW
SetEndOfFile
GetUserDefaultUILanguage
FormatMessageW
LocalReAlloc
WideCharToMultiByte
SetLastError
WriteFile
GetLastError
LocalSize
lstrcpynW
MulDiv
lstrcmpW
GetFileAttributesW
FindFirstFileW
FindClose
lstrcatW
GetCommandLineW
GetProcAddress
GetCurrentProcessId
lstrcmpiW
CreateFileW
ReadFile
lstrcpyW
CloseHandle
GetLocalTime
FoldStringW
CompareStringW
LocalUnlock
lstrlenW
GlobalFree
LocalAlloc
LocalFree
GetLocaleInfoW
QueryPerformanceCounter
GetStartupInfoA

comdlg32

ReplaceTextW
PrintDlgExW
FindTextW
ChooseFontW
GetOpenFileNameW
PageSetupDlgW
GetFileTitleW
GetSaveFileNameW
CommDlgExtendedError

shell32

DragFinish
DragQueryFileW
DragAcceptFiles
ShellAboutW

winspool.drv

GetPrinterDriverW
ClosePrinter
OpenPrinterW

comctl32

CreateStatusWindowW

msvcrt

_wtol
_except_handler3
iswctype
wcsncpy
localtime
wcsncmp
_c_exit
_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
_initterm
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_snwprintf
time
__setusermatherr

advapi32

IsTextUnicode
RegQueryValueExW
RegCloseKey
RegCreateKeyW
RegQueryValueExA
RegOpenKeyExA
RegSetValueExW

gdi32

GetStockObject
EnumFontsW
GetTextFaceW
SelectObject
GetObjectW
GetDeviceCaps
DeleteObject
CreateDCW
GetTextExtentPoint32W
TextOutW
DeleteDC
EndDoc
AbortDoc
EndPage
StartPage
StartDocW
SetAbortProc
GetTextMetricsW
SetBkMode
LPtoDP
SetWindowExtEx
SetViewportExtEx
SetMapMode
CreateFontIndirectW

user32

PeekMessageW
GetWindowLongW
CharLowerW
SetScrollPos
UpdateWindow
RegisterWindowMessageW
CreateWindowExW
SetWindowPlacement
LoadCursorW
LoadImageW
RegisterClassExW
EnableWindow
LoadAcceleratorsW
SetWindowLongW
LoadStringW
CharUpperW
GetWindowPlacement
IsIconic
GetForegroundWindow
PostQuitMessage
MessageBeep
DestroyWindow
DefWindowProcW
DrawTextExW
CreateDialogParamW
GetWindowTextW
GetSystemMenu
GetKeyboardLayout
SetActiveWindow
DialogBoxParamW
GetDC
ReleaseDC
SetCursor
GetClientRect
ShowWindow
MoveWindow
InvalidateRect
WinHelpW
GetDlgCtrlID
ChildWindowFromPoint
ScreenToClient
GetCursorPos
SendDlgItemMessageW
SendMessageW
CharNextW
CheckMenuItem
CloseClipboard
IsClipboardFormatAvailable
OpenClipboard
GetMenuState
EnableMenuItem
GetSubMenu
GetMenu
MessageBoxW
SetFocus
SetDlgItemTextW
wsprintfW
GetDlgItemTextW
EndDialog
GetParent
UnhookWinEvent
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
IsDialogMessageW
PostMessageW
GetMessageW
SetWinEventHook
GetSystemMetrics
SetWindowTextW
LoadIconW
GetFocus
GetDesktopWindow

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

jyeglew
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e6fac3521469a8db7a1608767abb3de2

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comdlg32

shell32

winspool.drv

comctl32

msvcrt

advapi32

gdi32

user32

Sections

.text Size: 29KB - Virtual size: 28KB

.data Size: 2KB - Virtual size: 6KB

.rsrc Size: 61KB - Virtual size: 62KB

jyeglew Size: 80KB - Virtual size: 80KB

.text
Size: 29KB - Virtual size: 28KB

.data
Size: 2KB - Virtual size: 6KB

.rsrc
Size: 61KB - Virtual size: 62KB

jyeglew
Size: 80KB - Virtual size: 80KB