975ef5f9f899fbfb3debe4334d8a750856776961276ce92e8c77ef37448ea5f1

Sharing

Copy URL Twitter E-mail

General

Target

975ef5f9f899fbfb3debe4334d8a750856776961276ce92e8c77ef37448ea5f1
Size

589KB
MD5

92f6ab9e2e6307698ec0756c7abde9c5
SHA1

8cb8acd23d17e5814ca176ed669379528528e37d
SHA256

975ef5f9f899fbfb3debe4334d8a750856776961276ce92e8c77ef37448ea5f1
SHA512

cf361e5306aa5f18abca88421b8742a02d85d951e36e1a03331ae63b0148d5c8ca8dba32d3e4077094670c5c9f2d408ebadd8e01e0dd8cdc0f6970bf4213e5c2
SSDEEP

12288:znsvZYY7p67lleIQvXrZJrp3TWJtbZU8JFtrymB:zoZtclryNFp3TKtb/JFwE

Score

N/A

Malware Config

Signatures

Files

975ef5f9f899fbfb3debe4334d8a750856776961276ce92e8c77ef37448ea5f1
.exe windows x86

04abbdd0b286d37d723a507ed82cb9f6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableA
CompareStringW
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetTickCount
QueryPerformanceCounter
GetEnvironmentStrings
FreeEnvironmentStringsA
VirtualFree
HeapCreate
InitializeCriticalSectionAndSpinCount
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetConsoleMode
GetConsoleCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
IsValidCodePage
GetACP
LCMapStringW
LCMapStringA
HeapSize
HeapReAlloc
VirtualAlloc
GetCommandLineA
ExitProcess
GetSystemTimeAsFileTime
RtlUnwind
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetLocaleInfoA
InterlockedExchange
GetCurrentProcess
SetEndOfFile
FlushFileBuffers
SetFilePointer
GlobalFlags
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
InterlockedIncrement
GetModuleHandleW
CompareStringA
FreeLibrary
InterlockedDecrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetCurrentProcessId
GetModuleFileNameA
lstrcmpA
GlobalReAlloc
GetModuleHandleA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
SetLastError
Sleep
WriteFile
CreateEventA
ClearCommError
ReadFile
GetLastError
WaitForSingleObject
SetupComm
GetCommState
SetCommState
PurgeComm
SetCommTimeouts
LoadLibraryA
GetProcAddress
GetVersionExA
GetProcessHeap
HeapAlloc
HeapFree
lstrlenA
CreateFileA
CloseHandle
FindResourceA
LoadResource
LockResource
SizeofResource
MultiByteToWideChar
GetLocaleInfoW
WideCharToMultiByte
CreateFileW
GetTimeZoneInformation

user32

GetWindowTextA
GetForegroundWindow
DispatchMessageA
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetFocus
RemovePropA
GetPropA
GetMenuItemID
CallNextHookEx
GetMenuState
IsWindow
CopyRect
GetClientRect
GetDC
ReleaseDC
EnableWindow
MessageBoxA
IsWindowEnabled
GetLastActivePopup
GetWindowLongA
GetParent
GetWindowThreadProcessId
SetWindowsHookExA
GetCapture
WinHelpA
LoadIconA
RegisterWindowMessageA
CheckMenuItem
EnableMenuItem
ModifyMenuA
LoadBitmapA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetMenuItemCount
SetWindowTextA
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
ClientToScreen
ValidateRect
DestroyMenu
PostQuitMessage
GetSubMenu
SendMessageA
SetPropA
GetClassNameA
GetClassLongA
UnhookWindowsHookEx
GetSysColorBrush
GetSysColor
GetSystemMetrics
GetMessagePos
PeekMessageA
MapWindowPoints
GetKeyState
SetMenu
SetForegroundWindow
PostMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
PtInRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetWindow
LoadCursorA

gdi32

SetMapMode
DeleteObject
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
GetStockObject
RestoreDC
SaveDC
CreateBitmap
SetBkColor
GetDeviceCaps
GetClipBox
SetTextColor

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

oleaut32

VariantInit
VariantChangeType
VariantClear

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04abbdd0b286d37d723a507ed82cb9f6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

oleaut32

oleacc

Sections

.text Size: 236KB - Virtual size: 235KB

.rdata Size: 66KB - Virtual size: 65KB

.data Size: 10KB - Virtual size: 39KB

.rsrc Size: 512B - Virtual size: 436B

.reloc Size: 37KB - Virtual size: 36KB

.text
Size: 236KB - Virtual size: 235KB

.rdata
Size: 66KB - Virtual size: 65KB

.data
Size: 10KB - Virtual size: 39KB

.rsrc
Size: 512B - Virtual size: 436B

.reloc
Size: 37KB - Virtual size: 36KB