0eeb462fb565a1433af00d6d36db07d347f8df1cf5726dd269f37ca3d2c8bf9d

Sharing

Copy URL

Twitter E-mail

General

Target

0eeb462fb565a1433af00d6d36db07d347f8df1cf5726dd269f37ca3d2c8bf9d
Size

184KB
MD5

929694381eaea3b180a3b94aa5e11110
SHA1

a78ec7ea7ecb4cd32a07d3a2051f8d7ffc92858e
SHA256

0eeb462fb565a1433af00d6d36db07d347f8df1cf5726dd269f37ca3d2c8bf9d
SHA512

559a6abcac19b2948eb92eb7335c23eaf3680602f5d8df464297e53676401cc30d7579c4b669e24fe6b56b11b37f25e6cdaab2309247ee67574c36da2977571f
SSDEEP

3072:8WwmqYExhA2zTRgukMNoMOARKZ7n12Zzqe1E34/y9XHe0AJkzgQ6o23yJ:9wmqYExhrRHBOkKJ1U51P/2+Tkzwoiy

Score

N/A

Malware Config

Signatures

Files

0eeb462fb565a1433af00d6d36db07d347f8df1cf5726dd269f37ca3d2c8bf9d
.exe windows x86

f1f2b27398399603cf70e63b955604e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFilePointer
CreateFileA
WriteFile
GetShortPathNameA
Process32Next
Process32First
CreateToolhelp32Snapshot
HeapAlloc
OutputDebugStringA
CloseHandle
GetExitCodeProcess
SetEndOfFile
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetFileSize
MoveFileExA
GetSystemTime
FormatMessageA
LocalFree
lstrlenA
lstrcatA
GetSystemDirectoryA
GetProcAddress
GetCurrentProcess
HeapFree
GetProcessHeap
FreeResource
lstrcmpiA
FindClose
GetPrivateProfileStringA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetModuleFileNameA
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
GetVersion
GetCommandLineA
GetStartupInfoA
FreeLibrary
GetModuleHandleA
LoadLibraryA
ExitProcess
GetOEMCP
GetACP
GetCPInfo
SetStdHandle
FlushFileBuffers
GetStringTypeW
ReadFile
GetStringTypeA
FindResourceA
LoadResource
CreateProcessA
Sleep
RemoveDirectoryA
GetVersionExA
GetLongPathNameA
SetFileAttributesA
DeleteFileA
GetLastError
GetWindowsDirectoryA
FindFirstFileA
FindNextFileA
lstrcpyA
RtlUnwind
TerminateProcess
lstrcpynA

user32

PostQuitMessage
GetMessageA
DispatchMessageA
TranslateMessage
UpdateWindow
ShowWindow
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadIconA
LoadStringA
MessageBoxA
PeekMessageA
wvsprintfA
ExitWindowsEx
EnableWindow
DialogBoxParamA
GetDC
LoadBitmapA
ReleaseDC
CreateDialogParamA
SetForegroundWindow
GetDlgItem
SetWindowTextA
EndDialog
SendMessageA
wsprintfA
DefWindowProcA

gdi32

SetBkColor
DeleteObject
DeleteDC
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
GetObjectA
SetTextColor
StretchBlt
CreateBitmap
LPtoDP

winspool.drv

DeletePrinter
ClosePrinter
DeletePrintProcessorA
EnumPrintersA
OpenPrinterA
EnumJobsA
DeletePrinterDriverA

advapi32

RegEnumKeyA
GetUserNameA
InitializeSecurityDescriptor
LookupAccountNameA
SetSecurityDescriptorOwner
RegSetKeySecurity
RegEnumKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegDeleteKeyA
RegQueryInfoKeyA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyA
RegQueryValueExA

shell32

SHGetSpecialFolderPathA

setupapi

SetupInstallFromInfSectionA
SetupDefaultQueueCallbackA
SetupInitDefaultQueueCallbackEx
SetupDiCallClassInstaller
SetupSetDirectoryIdA
SetupFindNextMatchLineA
SetupGetLineTextA
SetupFindFirstLineA
SetupCloseInfFile
SetupTermDefaultQueueCallback
SetupDiDestroyDeviceInfoList
SetupOpenInfFileA
SetupGetInfFileListA
SetupFindNextLine
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiOpenDevRegKey

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f1f2b27398399603cf70e63b955604e8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

setupapi

Sections

.text Size: 64KB - Virtual size: 60KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 24KB - Virtual size: 29KB

.rsrc Size: 84KB - Virtual size: 84KB

.text
Size: 64KB - Virtual size: 60KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 24KB - Virtual size: 29KB

.rsrc
Size: 84KB - Virtual size: 84KB