99739b02acee21d243944d83773ed2cc13010359f49e177d56e09b1212e480f1

Sharing

Copy URL Twitter E-mail

General

Target

99739b02acee21d243944d83773ed2cc13010359f49e177d56e09b1212e480f1
Size

94KB
MD5

3034c969224c8bb51ab6c4c4829f6d44
SHA1

0937a05082a439e983175c10bcb1071147e28ea6
SHA256

99739b02acee21d243944d83773ed2cc13010359f49e177d56e09b1212e480f1
SHA512

03ec016c94b924e84b20611838142d687699541afef825dc12dbdd25ee0bfd9d8712e2aa963f1f7686259fde263c0c4eaa0c7940313bb28570e58279eb6679da
SSDEEP

1536:mgputEk+U6SabI6TNBonl2biegK0J48FS6KosuNYTZc/a:mGof6h5QqiedgBsGAZc/a

Score

N/A

Malware Config

Signatures

Files

99739b02acee21d243944d83773ed2cc13010359f49e177d56e09b1212e480f1
.exe windows x86

075987f0c40697486075f71ab93d583f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

HttpSendRequestW
InternetSetOptionW
InternetQueryOptionW
InternetCloseHandle
InternetOpenW
InternetConnectW
HttpOpenRequestA
HttpAddRequestHeadersW
HttpSendRequestExW
InternetReadFile
InternetWriteFile

kernel32

lstrcmpiW
GlobalFlags
lstrcatW
SetFilePointer
FlushFileBuffers
LocalAlloc
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetModuleHandleA
GetModuleHandleW
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
GetCurrentThreadId
ResumeThread
RtlUnwind
ExitThread
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
HeapFree
RaiseException
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetLastError
lstrcpynW
LocalFree
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
VirtualAlloc
GetModuleFileNameW
CopyFileW
CreateThread
lstrcmpW
GetStdHandle
SetStdHandle
DuplicateHandle
WaitForSingleObject
CreateEventW
TerminateProcess
LoadLibraryA
GlobalAlloc
GlobalLock
WriteFile
GlobalUnlock
GlobalFree
GetModuleFileNameA
CreatePipe
ReadFile
ExpandEnvironmentStringsW
MultiByteToWideChar
GetStartupInfoW
GetDriveTypeW
GetDiskFreeSpaceExW
GetCurrentProcess
LoadLibraryW
GetProcAddress
FreeLibrary
CloseHandle
GetVersion
GetVersionExW
lstrlenW
lstrcpyW
GetSystemInfo
GlobalMemoryStatus
GetComputerNameW
Sleep
GetTickCount
GetLastError

user32

CopyRect
AdjustWindowRectEx
PeekMessageW
MapWindowPoints
PostMessageW
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuW
LoadBitmapW
GetMenuCheckMarkDimensions
DestroyMenu
GetTopWindow
GetCapture
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
GetKeyState
SetWindowsHookExW
CallNextHookEx
SetPropW
GetPropW
CallWindowProcW
RemovePropW
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageW
SystemParametersInfoW
IsIconic
GetWindowPlacement
GrayStringW
SetWindowPos
SetWindowLongW
GetDlgItem
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
UnhookWindowsHookEx
GetSystemMetrics
GetLastActivePopup
IsWindowEnabled
MessageBoxW
EnableWindow
SetFocus
GetFocus
GetParent
SendMessageW
SetWindowTextW
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
GetWindowLongW
GetClassNameW
GetMenuItemCount
GetSubMenu
GetMenuState
GetMenuItemID
GetWindowTextW
EndDialog
DefWindowProcW
DestroyWindow
DialogBoxParamW
BeginPaint
GetClientRect
TabbedTextOutW
DrawTextW
EndPaint
PostQuitMessage
CreateWindowExW
ShowWindow
UpdateWindow
LoadIconW
LoadCursorW
RegisterClassExW
LoadStringW
LoadAcceleratorsW
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
wsprintfW
PtInRect

gdi32

PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetObjectW
CreateBitmap
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
GetDeviceCaps
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

GetUserNameW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

comctl32

ord17

ole32

CoInitialize
CoUninitialize

netapi32

NetUserGetInfo
NetApiBufferFree

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

075987f0c40697486075f71ab93d583f

Headers

File Characteristics

Imports

wininet

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

ole32

netapi32

Sections

.text Size: 65KB - Virtual size: 65KB

.rdata Size: 15KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 22KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 65KB - Virtual size: 65KB

.rdata
Size: 15KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 22KB

.rsrc
Size: 3KB - Virtual size: 3KB