44a4eddc1a034c5361667eca3b026c9e3b087af6a2fdd28a180e636ad2dc7b75

Sharing

Copy URL Twitter E-mail

General

Target

44a4eddc1a034c5361667eca3b026c9e3b087af6a2fdd28a180e636ad2dc7b75
Size

432KB
MD5

08963e70720e25d181527dfb3e6bef10
SHA1

9115f9d6d3af1969fbe13f5225a8a31094167012
SHA256

44a4eddc1a034c5361667eca3b026c9e3b087af6a2fdd28a180e636ad2dc7b75
SHA512

361ce9cb402bc3c37c6c5f2684c06c7bf741a926bbc53db8449e93c5d671601b41ac6def1e037bb4caa8caf7f40a54e27846b2e802ce7867d5f080058b917f78
SSDEEP

6144:p9+XGsIDNrbdm33y19AgU625ZH8aHUNPMahxNnSz:WXGsIDNrpKm9AgQrJHUNjZQ

Score

N/A

Malware Config

Signatures

Files

44a4eddc1a034c5361667eca3b026c9e3b087af6a2fdd28a180e636ad2dc7b75
.exe windows x86

229735a70283b2f9c3a073f055e46d7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

newdev

UpdateDriverForPlugAndPlayDevicesW

setupapi

SetupDiGetINFClassW
SetupDiCreateDeviceInfoW
SetupDiCreateDeviceInfoList
SetupDiGetClassDevsW
SetupDiDestroyDeviceInfoList
SetupDiCallClassInstaller
SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInfo
SetupDiSetDeviceRegistryPropertyW

comctl32

ord17
PropertySheetW
CreatePropertySheetPageW
DestroyPropertySheetPage

shlwapi

PathFindFileNameW
PathFindExtensionW
PathStripToRootW
PathIsUNCW
StrToIntExW

kernel32

GetTickCount
GetStartupInfoW
RtlUnwind
ExitProcess
HeapAlloc
HeapFree
HeapReAlloc
RaiseException
TerminateProcess
HeapSize
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetOEMCP
GetCPInfo
IsBadReadPtr
IsBadCodePtr
GetSystemInfo
VirtualQuery
GetDriveTypeA
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileTime
GetFileAttributesW
SetErrorMode
GetCurrentDirectoryW
WritePrivateProfileStringW
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
GlobalFlags
CreateFileW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiW
FindFirstFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
FindClose
CloseHandle
InterlockedDecrement
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
LoadLibraryW
GetLocaleInfoW
WideCharToMultiByte
MulDiv
lstrcpyW
GlobalAlloc
lstrcpynW
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrlenA
GetModuleHandleA
LoadLibraryA
FreeLibrary
lstrcatW
lstrcmpW
GetProcAddress
GetVersionExA
GlobalLock
GlobalUnlock
FreeResource
GlobalFree
VirtualProtect
LocalAlloc
lstrlenW
GetLastError
FormatMessageW
LocalFree
SetLastError
GetUserDefaultUILanguage
GetPrivateProfileStringW
GetModuleHandleW
GetModuleFileNameW
CopyFileW
DeleteFileW
OutputDebugStringW
GetWindowsDirectoryW
MultiByteToWideChar
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
FindResourceW
LoadResource
LockResource
SizeofResource
GetCommandLineW

user32

PostThreadMessageW
RegisterClipboardFormatW
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
InvalidateRect
CopyAcceleratorTableW
SetRect
IsRectEmpty
CharNextW
ReleaseCapture
SetCapture
DestroyMenu
LoadCursorW
GetSysColorBrush
SetWindowContextHelpId
CharUpperW
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
SetCursor
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
PostQuitMessage
ReleaseDC
GetDC
SetMenuItemBitmaps
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
MoveWindow
SetWindowTextW
IsDialogMessageW
RegisterWindowMessageW
WinHelpW
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
GetClassInfoExW
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageA
IsChild
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
GetKeyState
SetForegroundWindow
IsWindowVisible
UpdateWindow
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
GetClassInfoW
RegisterClassW
UnregisterClassW
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CopyRect
PtInRect
GetWindow
GetDesktopWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetNextDlgTabItem
EndDialog
MapDialogRect
SetWindowPos
GetCapture
GetActiveWindow
SetActiveWindow
GetAsyncKeyState
GetFocus
SetFocus
GetWindowRect
GetWindowLongW
IsWindowEnabled
SetDlgItemTextW
GetSystemMetrics
LoadIconW
GetClientRect
IsIconic
MessageBoxW
LoadBitmapW
GetDlgItem
ShowWindow
wsprintfW
PostMessageW
SendMessageW
EnableWindow
GetParent
SendDlgItemMessageW

gdi32

GetStockObject
GetRgnBox
GetTextColor
GetBkColor
GetMapMode
RestoreDC
SaveDC
CreateRectRgnIndirect
GetDeviceCaps
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
DeleteObject
SetMapMode

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegEnumKeyExW
RegQueryValueW
RegEnumKeyW
RegOpenKeyW
RegCloseKey
RegQueryInfoKeyW
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW

oledlg

OleUIBusyW

ole32

CLSIDFromString
CLSIDFromProgID
CoGetClassObject
CoTaskMemAlloc
CoTaskMemFree
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

SysStringLen
VariantInit
VariantChangeType
SysFreeString
OleCreateFontIndirect
SysAllocString
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
SysAllocStringLen
VariantClear

oleacc

CreateStdAccessibleObject
LresultFromObject

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

229735a70283b2f9c3a073f055e46d7a

Headers

File Characteristics

Imports

newdev

setupapi

comctl32

shlwapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

oledlg

ole32

oleaut32

oleacc

Sections

.text Size: 180KB - Virtual size: 180KB

.rdata Size: 60KB - Virtual size: 56KB

.data Size: 36KB - Virtual size: 47KB

.rsrc Size: 152KB - Virtual size: 152KB

.text
Size: 180KB - Virtual size: 180KB

.rdata
Size: 60KB - Virtual size: 56KB

.data
Size: 36KB - Virtual size: 47KB

.rsrc
Size: 152KB - Virtual size: 152KB