26c18026d9fca61be7aabaa4886d772bddcebf5fa70bd6ba31753a890be175e1

Sharing

Copy URL Twitter E-mail

General

Target

26c18026d9fca61be7aabaa4886d772bddcebf5fa70bd6ba31753a890be175e1
Size

167KB
MD5

93afdb12cc4056b517584c49d22e9608
SHA1

a47ee9c7bee9417cc6fff7c405ae17c988634880
SHA256

26c18026d9fca61be7aabaa4886d772bddcebf5fa70bd6ba31753a890be175e1
SHA512

845570faa7d4a8d1e721755ea18f61a6cddaa2b9fe88678c2c780abebcae87e74f457d32532d592b0424938605e64111016783701c4ec6071187fa46bb8e8e82
SSDEEP

3072:0h30C3W6ok++eolSjdxZFDkRaPWN7+biKo0/lSXuddyvC:0h39cfdy4O9+bPo0/UXSyvC

Score

N/A

Malware Config

Signatures

Files

26c18026d9fca61be7aabaa4886d772bddcebf5fa70bd6ba31753a890be175e1
.exe windows x86

8f54892dcc996c49921865f7ebbcbfc7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetCPInfo
GetOEMCP
RtlUnwind
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetStartupInfoA
lstrcpynA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
SetFileAttributesA
WriteFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
ReadFile
GetProcessVersion
SetErrorMode
LoadLibraryA
FreeLibrary
GetVersion
GlobalFindAtomA
GlobalGetAtomNameA
GlobalAddAtomA
GetProcAddress
GetLastError
GetModuleHandleA
lstrcpyA
SetLastError
lstrcatA
WritePrivateProfileStringA
GetEnvironmentStringsW
GlobalFlags
Sleep
DeleteFileA
SetHandleCount
TlsGetValue
LocalReAlloc
RemoveDirectoryA
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
LocalFree
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
CloseHandle
GetStdHandle
GetFileType
FreeEnvironmentStringsW
GetEnvironmentStrings

user32

SetFocus
IsIconic
SystemParametersInfoA
RegisterWindowMessageA
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
DefWindowProcA
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconA
GetSysColorBrush
LoadStringA
DestroyMenu
SetWindowLongA
GetSystemMetrics
GetWindowPlacement
SetWindowPos
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetMenuItemCount
wsprintfA
UnhookWindowsHookEx
GetWindowTextA
SetWindowTextA
GetWindow
GetWindowRect
PtInRect
GetClassNameA
LoadCursorA
GetCapture
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
ShowWindow
EnableWindow
SetCursor
SendMessageA
PostQuitMessage
PostMessageA
ExitWindowsEx
ClientToScreen
GetDlgCtrlID
UnregisterClassA

gdi32

DeleteObject
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkColor
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
GetObjectA
CreateBitmap
DeleteDC

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

comctl32

ord17

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8f54892dcc996c49921865f7ebbcbfc7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 8KB - Virtual size: 18KB

.rsrc Size: 80KB - Virtual size: 80KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 8KB - Virtual size: 18KB

.rsrc
Size: 80KB - Virtual size: 80KB