b1d0a92a1db15b906edda3446f3dec82a5f47284a71c03e66d77fdd741b141a5

Sharing

Copy URL

Twitter E-mail

General

Target

b1d0a92a1db15b906edda3446f3dec82a5f47284a71c03e66d77fdd741b141a5
Size

332KB
MD5

24dc133119b1490a97c9cd7b99fe43d0
SHA1

4e0c8dc67392cc4bbd910c483301ea44df5a3c87
SHA256

b1d0a92a1db15b906edda3446f3dec82a5f47284a71c03e66d77fdd741b141a5
SHA512

bde742c2d2ee31b05fbe3eb2952fc2511b8c1ed19075bd12905d077841568c25c74325d369912a34b13032b0361fe4e07cd0c46602d93c77016336bbfdd491de
SSDEEP

6144:A88kWCh3kXFanH6KLlvsReaHAvM3BzdOfOf9z+9ASPUy:6kWrXFAl2gQV

Score

N/A

Malware Config

Signatures

Files

b1d0a92a1db15b906edda3446f3dec82a5f47284a71c03e66d77fdd741b141a5
.exe windows x86

8980c99b5184e566ea0afe03cb2c43fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

fctlmain

FCTLGetCardCount
FCTLWaitEvent
FCTLIsoInquire
FCTLIsoClear
FCTLIsoStartListen
FCTLIsoPost
FCTLIsoStopListen
FCTLIsoFreeResources
FCTLIsoQueryResources
FCTLBusReset
FCTLGetBusInfo
FCTLIsoAllocateResources
FCTLGetErrors
FCTLGetMaxSpeedBetweenDevices
FCTLWriteBlk
FCTLReadBlk
FCTLWriteQuad
FCTLReadQuad
FCTLCancelWaitEvent
FCTLOpenCard
FCTLGetCardSystemId
FCTLOpenBus
FCTLCloseBus
FCTLCloseCard
FCTLUnlockMemory
FCTLLockMemory
FCTLLicenseRequest

kernel32

RtlUnwind
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStartupInfoA
GetCommandLineA
ExitProcess
ExitThread
CreateThread
TerminateProcess
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
SetErrorMode
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
GetLastError
GetVersion
lstrcmpiA
lstrlenA
GetTickCount
_lclose
_hwrite
OpenFile
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
WaitForSingleObject
ResumeThread
SetThreadPriority
GetCurrentThread
Sleep
CreateSemaphoreA
CloseHandle
ReleaseSemaphore
SizeofResource
LockResource
LoadResource
GetCurrentProcess
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
InterlockedIncrement
RaiseException
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GlobalFlags
lstrcmpA
GetModuleFileNameA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
InterlockedDecrement
CreateEventA
FindResourceA
SuspendThread
SetEvent
SetLastError
MulDiv
GlobalAlloc
FormatMessageA
LocalFree
GlobalFree
FreeResource
GetCurrentThreadId
GlobalFindAtomA
GlobalDeleteAtom
LoadLibraryA
FreeLibrary
lstrcatA
lstrcmpW
GetModuleHandleA
GetProcAddress
lstrcpynA
GlobalLock
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
QueryPerformanceCounter

user32

GetDCEx
LockWindowUpdate
SetParent
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
IsZoomed
GetMenuItemInfoA
InflateRect
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
ModifyMenuA
GetMenuCheckMarkDimensions
LoadBitmapA
MoveWindow
SetWindowTextA
IsDialogMessageA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
IsChild
GetWindowTextA
GetForegroundWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
MessageBoxA
SetScrollPos
SetForegroundWindow
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
SetScrollInfo
RegisterClassA
UnregisterClassA
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
GetWindowPlacement
PtInRect
RegisterWindowMessageA
LoadMenuA
DestroyMenu
GetClassNameA
GetSysColor
SetWindowPos
WinHelpA
SetFocus
PostQuitMessage
CheckMenuItem
GetMenuState
PostMessageA
GetMenu
GetWindowRect
GetSystemMetrics
wsprintfA
GetAsyncKeyState
EnableMenuItem
GetActiveWindow
GetFocus
EqualRect
GetDlgItem
SetWindowLongA
GetKeyState
GetDlgCtrlID
UnpackDDElParam
ReuseDDElParam
GetClassInfoA
SetCursor
PeekMessageA
GetCapture
LoadAcceleratorsA
SetActiveWindow
WindowFromPoint
SetRect
IsWindowVisible
InsertMenuItemA
GetSubMenu
GetMenuItemID
GetMenuItemCount
CreatePopupMenu
IntersectRect
OffsetRect
SetRectEmpty
CopyRect
GetLastActivePopup
BringWindowToTop
LoadCursorA
GetSysColorBrush
ShowOwnedPopups
GetSystemMenu
UpdateWindow
GetClientRect
InvalidateRect
RedrawWindow
SetCapture
EnableWindow
ReleaseCapture
SendMessageA
MessageBeep
SetTimer
KillTimer
GetParent
LoadIconA
DrawIcon
IsIconic
TranslateAcceleratorA
IsWindowEnabled
SetMenu
ShowWindow
GetWindowLongA
IsWindow
GetDesktopWindow
GetWindow
TrackPopupMenu

gdi32

ExcludeClipRect
IntersectClipRect
DeleteObject
SelectClipRgn
CreateRectRgn
SetMapMode
PtVisible
RectVisible
TextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
CreatePatternBrush
GetStockObject
CreateRectRgnIndirect
PatBlt
SetRectRgn
CombineRgn
GetBkColor
SetStretchBltMode
SetROP2
SetBkMode
RestoreDC
SaveDC
GetTextMetricsA
SelectObject
GetTextExtentPoint32A
ExtTextOutA
BitBlt
CreateFontIndirectA
GetDeviceCaps
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
StretchDIBits
Rectangle
CreateSolidBrush
GetPixel
CreatePen

comdlg32

GetOpenFileNameA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA

shell32

SHBrowseForFolderA
DragFinish
DragQueryFileA
SHGetPathFromIDListA

comctl32

ImageList_Draw
ImageList_GetImageInfo
ord17
ImageList_Destroy

shlwapi

PathFindFileNameA
PathFindExtensionA

ole32

CoTaskMemFree

oleaut32

VariantClear
VariantChangeType
VariantInit

Sections

.text
Size: 180KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8980c99b5184e566ea0afe03cb2c43fe

Headers

File Characteristics

Imports

fctlmain

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

Sections

.text Size: 180KB - Virtual size: 177KB

.rdata Size: 44KB - Virtual size: 42KB

.data Size: 76KB - Virtual size: 91KB

.rsrc Size: 28KB - Virtual size: 25KB

.text
Size: 180KB - Virtual size: 177KB

.rdata
Size: 44KB - Virtual size: 42KB

.data
Size: 76KB - Virtual size: 91KB

.rsrc
Size: 28KB - Virtual size: 25KB