e3da02c9a4bc468a2c9361101d4cb18b223223aa20897fdc7fbcff92dc14af98

Sharing

Copy URL Twitter E-mail

General

Target

e3da02c9a4bc468a2c9361101d4cb18b223223aa20897fdc7fbcff92dc14af98
Size

400KB
MD5

928b2f41f436ce004df1f3adcd79b4f6
SHA1

c5984071a63a8e06e4e601efcebd2241e1a38199
SHA256

e3da02c9a4bc468a2c9361101d4cb18b223223aa20897fdc7fbcff92dc14af98
SHA512

efe3f60ada7ea7e1172ef6b53c9364986744d6409569dab84e04ba19837651a4882c132d8adaf72a5063c2ba9fca13eb4131673bcd1488b7e27682316613139b
SSDEEP

6144:4t21xqRR5tVbVjS6rUn681N2kj7oKzIw4gSbW3UKF:4gbeVG6oHNhoCJ4LbLE

Score

N/A

Malware Config

Signatures

Files

e3da02c9a4bc468a2c9361101d4cb18b223223aa20897fdc7fbcff92dc14af98
.exe windows x86

c8b5079fa421f9f139fbfb07f5369368

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

mscms

GetColorDirectoryA

kernel32

RaiseException
ExitProcess
GetStartupInfoA
GetDriveTypeA
RtlUnwind
GetFileType
HeapFree
HeapAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
GetFileTime
GetFileSize
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
SetErrorMode
GetCurrentDirectoryA
GetPrivateProfileIntA
GetOEMCP
GetCPInfo
GetCurrentThread
GlobalFlags
MulDiv
GetProcessVersion
FindResourceA
LoadResource
GetACP
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
CreateEventA
SuspendThread
GetCurrentThreadId
SetThreadPriority
ResumeThread
WaitForSingleObject
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
GlobalLock
TlsFree
GlobalHandle
GlobalUnlock
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetVersion
InitializeCriticalSection
lstrcpynA
SetLastError
lstrcmpA
CreateThread
ExitThread
HeapSize
HeapReAlloc
TerminateProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
FatalAppExitA
LCMapStringA
LCMapStringW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetStdHandle
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
Sleep
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
SetConsoleCtrlHandler
CompareStringA
CompareStringW
lstrcatA
lstrcpyA
lstrlenA
GlobalAlloc
GetProfileStringA
WriteProfileStringA
GetStringTypeA
GlobalFree
GetSystemDirectoryA
GetTempPathA
MoveFileA
GetShortPathNameA
GetWindowsDirectoryA
WritePrivateProfileStringA
CreateDirectoryA
GetTempFileNameA
GetFileAttributesA
GetStringTypeW
CompareFileTime
GetFileInformationByHandle
DeleteFileA
LoadLibraryA
GetProcAddress
FreeLibrary
GetLastError
GetPrivateProfileStringA
GetUserDefaultLCID
OpenEventA
SetEvent
GetCommandLineA
GetVersionExA
DosDateTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
SetFileAttributesA
WriteFile
OutputDebugStringA
FormatMessageA
LocalFree
CloseHandle
GetModuleFileNameA
CreateFileA
SetEnvironmentVariableA
GetLocaleInfoW
SetCurrentDirectoryA
UnhandledExceptionFilter
FreeEnvironmentStringsA
LockResource
FreeEnvironmentStringsW

winspool.drv

AddPrintProcessorA
GetPrinterDriverDirectoryA
OpenPrinterA
GetPrinterA
SetPrinterA
GetPrintProcessorDirectoryA
AddMonitorA
DocumentPropertiesA
AddPrinterDriverA
AddPrinterA
ClosePrinter

setupapi

SetupGetLineTextA
SetupIterateCabinetA
SetupFindNextLine
SetupCloseInfFile
SetupGetTargetPathA
SetupGetStringFieldA
SetupFindFirstLineA
SetupOpenInfFileA

lz32

LZCopy
LZClose
LZOpenFileA

user32

GetClassNameA
GetDC
ReleaseDC
GetSysColorBrush
LoadCursorA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
PtInRect
LoadIconA
PostMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetActiveWindow
IsWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
ClientToScreen
CheckDlgButton
GetDesktopWindow
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
PostQuitMessage
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
LoadStringA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SendMessageA
EnableWindow
OemToCharA
CharToOemA
UnhookWindowsHookEx
MessageBoxA
SendMessageTimeoutA
wsprintfA
CharNextA
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
ShowOwnedPopups
SetCursor
InsertMenuA
DeleteMenu
CharUpperA
GetDlgItem
DestroyMenu
GetMenuStringA

gdi32

SetPolyFillMode
SetBkMode
SelectPalette
GetStockObject
SelectObject
RestoreDC
SaveDC
StartDocA
DeleteDC
DeleteObject
GetDeviceCaps
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
CreateBitmap
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
SetROP2
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ArcTo
SelectClipRgn
ScaleWindowExtEx

comdlg32

GetFileTitleA

advapi32

RegCreateKeyExA
RegOpenKeyA
RegDeleteKeyA
RegDeleteValueA
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

shell32

DragAcceptFiles
SHGetFileInfoA

comctl32

ord17

Sections

.text
Size: 248KB - Virtual size: 246KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.drdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c8b5079fa421f9f139fbfb07f5369368

Headers

File Characteristics

Imports

version

mscms

kernel32

winspool.drv

setupapi

lz32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

Sections

.text Size: 248KB - Virtual size: 246KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 20KB - Virtual size: 45KB

.idata Size: 16KB - Virtual size: 12KB

.reloc Size: 16KB - Virtual size: 14KB

.drdata Size: 72KB - Virtual size: 72KB

.text
Size: 248KB - Virtual size: 246KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 20KB - Virtual size: 45KB

.idata
Size: 16KB - Virtual size: 12KB

.reloc
Size: 16KB - Virtual size: 14KB

.drdata
Size: 72KB - Virtual size: 72KB