e71e0277e96b68d9e16779212dca9b510cc26eccd78373485333d433f332e87d

Sharing

Copy URL Twitter E-mail

General

Target

e71e0277e96b68d9e16779212dca9b510cc26eccd78373485333d433f332e87d
Size

340KB
MD5

0cecbb3ebc3ccf495aece63656b40210
SHA1

0d717e3e5feb466c8205aa0c57cdf75256d52e84
SHA256

e71e0277e96b68d9e16779212dca9b510cc26eccd78373485333d433f332e87d
SHA512

ebe2336c0f7381758439408a8eca9a0f720231ed42a9140a24ce575588a8b23d90b1d42fca60e9c06f9a4bb0a8748430ae07453dad198415ac11eaec889a496c
SSDEEP

6144:r/o6BTpjOCcaTwMonEUxfscgRxLaPKGBsFZZvNhnuQSsQLH5AdW:TdN01icgRMyGBsh+QSsPdW

Score

N/A

Malware Config

Signatures

Files

e71e0277e96b68d9e16779212dca9b510cc26eccd78373485333d433f332e87d
.exe windows x86

09b369085eff057fa3cb1f482d527eb9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringA
LocalFree
GetModuleHandleA
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcatA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetProcessVersion
GlobalFlags
LocalAlloc
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetFileSize
GetFileTime
SetErrorMode
SizeofResource
GetCPInfo
GetOEMCP
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapFree
HeapReAlloc
HeapAlloc
RaiseException
GetPrivateProfileStringA
GetCommandLineA
ExitProcess
TerminateProcess
GetACP
HeapSize
HeapDestroy
HeapCreate
IsBadWritePtr
CompareStringA
CompareStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
GetPrivateProfileIntA
GlobalUnlock
LockResource
FindResourceA
GetProfileStringA
LoadResource
GlobalLock
GlobalDeleteAtom
lstrcmpA
GetCurrentThreadId
SetLastError
lstrcmpiA
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
DuplicateHandle
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GlobalAlloc
GlobalFree
LoadLibraryA
GetProcAddress
FreeLibrary
GetWindowsDirectoryA
UnmapViewOfFile
MapViewOfFile
ReleaseMutex
CreateFileMappingA
CreateMutexA
WriteFile
ReadFile
GetOverlappedResult
ClearCommError
GetCommState
SetCommState
SetCommMask
SetupComm
PurgeComm
SetCommTimeouts
EscapeCommFunction
GetComputerNameA
lstrlenA
GetVersion
GetCurrentProcess
CreateFileA
GetCommProperties
GetLastError
ResetEvent
CopyFileA
DeleteFileA
GetFileAttributesA
GetVersionExA
MulDiv
CreateDirectoryA
IsBadReadPtr
VirtualAlloc
VirtualFree
Sleep
CreateProcessA
InitializeCriticalSection
GetCurrentProcessId
GetModuleFileNameA
GetTickCount
CloseHandle
CreateEventA
SetEvent
CreateThread
ResumeThread
GetCurrentThread
SetThreadPriority
WaitForSingleObject
InterlockedExchange
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetStartupInfoA

user32

CopyRect
ScreenToClient
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
IsDialogMessageA
SetWindowTextA
ShowWindow
LoadStringA
DestroyMenu
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
GetSysColorBrush
GetClassNameA
PtInRect
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetWindowPos
RegisterWindowMessageA
OffsetRect
SystemParametersInfoA
EndDialog
GetTopWindow
GetMenu
DestroyWindow
GetDlgItem
GetMessageA
TranslateMessage
DispatchMessageA
CallNextHookEx
ValidateRect
SetWindowsHookExA
IsWindowEnabled
MessageBoxA
SetCursor
PostQuitMessage
CharUpperA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetFocus
GetParent
GetNextDlgTabItem
IsWindow
InvalidateRect
UpdateWindow
PeekMessageA
ExitWindowsEx
GetMenuItemCount
GetMenuItemID
GetWindow
SetWindowLongA
IntersectRect
GetWindowLongA
wsprintfA
EnableWindow
KillTimer
WaitForInputIdle
IsWindowVisible
SetForegroundWindow
GetLastActivePopup
BringWindowToTop
GetActiveWindow
LoadMenuA
LoadAcceleratorsA
MessageBeep
TranslateAcceleratorA
LoadIconA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
InflateRect
GetSubMenu
GetKeyState
EnableMenuItem
SetMenuDefaultItem
GetCursorPos
SetTimer
IsIconic
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
GetCapture
WinHelpA
GetClassInfoA
SetActiveWindow
RegisterClassA
GetWindowRect
GetSystemMetrics
TrackPopupMenu
CreateDialogIndirectParamA
GetWindowTextLengthA
CharNextA
IsWindowUnicode
PostMessageA
GetWindowPlacement

gdi32

GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
SelectObject
DeleteObject
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
RestoreDC
SaveDC
DeleteDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
CreateSolidBrush
GetDeviceCaps
CreateDIBitmap
PatBlt
GetTextExtentPointA
BitBlt
CreateCompatibleDC

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
OpenProcessToken
RegOpenKeyExA
RegCloseKey
RegQueryValueExA
LookupPrivilegeValueA
AdjustTokenPrivileges

shell32

Shell_NotifyIconA

comctl32

ord17

ws2_32

WSAEventSelect
WSAResetEvent
WSACreateEvent
WSAGetLastError
WSAEnumNetworkEvents
WSAWaitForMultipleEvents
WSASetEvent
closesocket
socket
bind
listen
accept
WSACloseEvent
sendto
recv
getsockname
setsockopt
inet_ntoa
WSAStartup
WSACleanup
ntohl
ntohs
htons
send
htonl

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09b369085eff057fa3cb1f482d527eb9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ws2_32

Sections

.text Size: 232KB - Virtual size: 231KB

.rdata Size: 32KB - Virtual size: 30KB

.data Size: 8KB - Virtual size: 43KB

.rsrc Size: 64KB - Virtual size: 61KB

.text
Size: 232KB - Virtual size: 231KB

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 8KB - Virtual size: 43KB

.rsrc
Size: 64KB - Virtual size: 61KB