80672fb082f96bb235d468ab1bf705e9023584df4987b6302aa5e406f8fa5992

Sharing

Copy URL Twitter E-mail

General

Target

80672fb082f96bb235d468ab1bf705e9023584df4987b6302aa5e406f8fa5992
Size

128KB
MD5

21420903de4d453cbe9e18acd2900c40
SHA1

ac9901bf5b00cb7aebcf829bb64b16330591c5ab
SHA256

80672fb082f96bb235d468ab1bf705e9023584df4987b6302aa5e406f8fa5992
SHA512

9d659af45e2759790a8afbcde220146452b1f8dc92e6a04ea3f23a2540f47d57ceb418f583e66ca365702eb73e883bb8b116ccc3aff02ea9dc567ac22ccc9410
SSDEEP

1536:gxN/7pYshz277vFjTSPkpoSkVJ1Uu3pbiKol9rNbjkc3ryrABco7iQe:u/76lvgxVJSu5O5Yc+rto7u

Score

N/A

Malware Config

Signatures

Files

80672fb082f96bb235d468ab1bf705e9023584df4987b6302aa5e406f8fa5992
.exe windows x86

7cd61ee6c8eb636cfa335d184e5205d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindClose
FindFirstFileA
DuplicateHandle
GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
CloseHandle
LockFile
UnlockFile
SetEndOfFile
MoveFileA
GetVolumeInformationA
GetFullPathNameA
lstrcmpiA
GetFileAttributesA
GetFileSize
GetFileTime
SetLastError
FileTimeToLocalFileTime
WaitForSingleObject
TlsAlloc
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetVersion
lstrcatA
lstrcmpA
ResumeThread
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetProcessVersion
GlobalFlags
GetCPInfo
GetOEMCP
RtlUnwind
CreateThread
ExitThread
GetCommandLineA
ExitProcess
HeapAlloc
HeapFree
RaiseException
SetStdHandle
GetFileType
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStartupInfoA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
LeaveCriticalSection
FormatMessageA
LocalFree
LocalAlloc
lstrcpyA
lstrcpynA
EnterCriticalSection
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSection
GetModuleFileNameA
DeleteCriticalSection
GetCurrentThreadId
CreateProcessA
Sleep
GetLastError
GetProcAddress
OpenFile
GetTempPathA
GetPrivateProfileStringA
DeleteFileA
LoadLibraryA
FileTimeToSystemTime
FreeLibrary

user32

LoadBitmapA
GetMenuCheckMarkDimensions
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
RegisterWindowMessageA
SetWindowPos
SetWindowLongA
GetWindow
SetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcA
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
GetDlgCtrlID
GetDlgItem
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
PostMessageA
LoadIconA
SetWindowTextA
LoadCursorA
GetSysColorBrush
ReleaseDC
GetDC
GetClassNameA
PtInRect
ClientToScreen
PostQuitMessage
DestroyMenu
TabbedTextOutA
DrawTextA
GrayStringA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
DispatchMessageA
GetKeyState
CallNextHookEx
PeekMessageA
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SendMessageA
MessageBoxA
EnableWindow
GetSystemMetrics
CharUpperA
UnhookWindowsHookEx
LoadStringA
GetUserObjectInformationA
GetThreadDesktop
GetWindowTextA
GetForegroundWindow

advapi32

StartServiceCtrlDispatcherA
CreateServiceA
ChangeServiceConfig2A
DeleteService
RegisterServiceCtrlHandlerA
SetServiceStatus
StartServiceA
OpenSCManagerA
OpenServiceA
CloseServiceHandle
ControlService

shell32

ShellExecuteA

comctl32

ord17

wininet

HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExA
InternetCloseHandle
InternetOpenA
InternetGetLastResponseInfoA
HttpQueryInfoA

gdi32

GetStockObject
SetMapMode
RestoreDC
SaveDC
DeleteDC
GetClipBox
SetTextColor
SelectObject
DeleteObject
GetDeviceCaps
CreateBitmap
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SetBkColor
GetObjectA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

GetFileTitleA

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7cd61ee6c8eb636cfa335d184e5205d0

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

comctl32

wininet

gdi32

winspool.drv

comdlg32

Sections

.text Size: 88KB - Virtual size: 84KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 16KB - Virtual size: 31KB

.text
Size: 88KB - Virtual size: 84KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 16KB - Virtual size: 31KB