116f89258bf0e886bd7955a8ba7394b0194bf66b66371aa9fa5e526416285420

Sharing

Copy URL

Twitter E-mail

General

Target

116f89258bf0e886bd7955a8ba7394b0194bf66b66371aa9fa5e526416285420
Size

126KB
MD5

0f83d5df5e99cf138587ca76056aa9a8
SHA1

8d68517e2ba3eb27be3ff3319bce71e2b1d73d36
SHA256

116f89258bf0e886bd7955a8ba7394b0194bf66b66371aa9fa5e526416285420
SHA512

3994981b6ce8c89ef0705801f954db8a47edaa85cf4d691680d5285a0e50caa4445eb1541484577187ea2ff848a98838eeef4127f4b2d628b82bc45fb1335c2f
SSDEEP

3072:KaRs1Ml2LqHwKDa1GnuSYMOVXIrA8xNeiRSHd/NHnq995Byfcy:KOs1M2LoVaoBYMOV6AeSHDHO5IUy

Score

N/A

Malware Config

Signatures

Files

116f89258bf0e886bd7955a8ba7394b0194bf66b66371aa9fa5e526416285420
.exe windows x86

fab85a4104c9e8dc751bf214a3fd8d93

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcslen
_wtoi
_itow
wcstol
wcsncmp
wcscmp
wcsstr
_except_handler3
wcsncpy
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_cexit
_XcptFilter
_exit
_c_exit
wcsrchr
wcschr
iswctype
_beginthreadex
_endthreadex
wcscpy
_controlfp
wcstok
_CIpow
_ftol
swprintf

advapi32

RegOpenKeyExW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey
GetUserNameW
RegConnectRegistryW

kernel32

SetNamedPipeHandleState
Sleep
GetLastError
CreateEventW
SetEvent
CreateThread
lstrcpyW
MulDiv
GetModuleHandleA
GetStartupInfoA
ResetEvent
WaitForSingleObject
GetOverlappedResult
CancelIo
TransactNamedPipe
lstrcpynW
CreateFileW
CloseHandle
MultiByteToWideChar
LoadLibraryW
GetProcAddress
SetFilePointer
ReadFile
GetProfileStringW
GetDiskFreeSpaceExW
GlobalAlloc
lstrlenW
GetCommandLineW
GlobalFree
FreeLibrary
CreateDirectoryW
lstrcatW
FindClose
FindNextFileW
FindFirstFileW
lstrcmpW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileSectionW
GetModuleFileNameW
IsBadWritePtr
CopyFileW
GetSystemDefaultLangID
GetSystemWindowsDirectoryW
RemoveDirectoryW
DeleteFileW
SetFileAttributesW
GetFileAttributesW

gdi32

OffsetRgn
SetBrushOrgEx
CreateRectRgn
RectVisible
StretchDIBits
CreateEllipticRgnIndirect
CombineRgn
ExtSelectClipRgn
SetWindowOrgEx
SetICMMode
SetStretchBltMode
RealizePalette
SelectPalette
GetDeviceCaps
GetObjectW
GetTextExtentPoint32W
SelectClipRgn
PatBlt
SetROP2
FillRgn
SetTextAlign
CreatePen
MoveToEx
LineTo
SetPixel
CreateSolidBrush
SaveDC
SelectObject
SetTextColor
SetBkMode
TextOutW
RestoreDC
GetStockObject
CreateHalftonePalette
CreatePatternBrush
DeleteObject

user32

DispatchMessageW
TranslateMessage
GetMessageW
UpdateWindow
CreateWindowExW
LoadBitmapW
SystemParametersInfoW
SetRectEmpty
LoadStringW
SetTimer
SetPropW
ReleaseDC
GetDC
RemoveMenu
LoadMenuW
LoadIconW
SendMessageW
GetPropW
PostMessageW
GetWindowLongW
InvalidateRect
CheckMenuItem
IsWindowEnabled
CheckMenuRadioItem
EnableMenuItem
GetMenuItemInfoW
InflateRect
MoveWindow
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
PostQuitMessage
DestroyMenu
WinHelpW
KillTimer
GetWindowPlacement
RemovePropW
DestroyWindow
EnableWindow
FlashWindowEx
GetForegroundWindow
SetActiveWindow
ShowWindow
RedrawWindow
EnableScrollBar
GetClientRect
MessageBoxW
SetFocus
DefWindowProcW
DialogBoxParamW
RegisterClassExW
LoadCursorW
SetWindowPos
MapWindowPoints
GetWindowRect
GetDlgItem
EndDialog
EndPaint
GetScrollInfo
BeginPaint
SetScrollInfo
ScrollWindowEx
OffsetRect
CopyRect
GetSystemMetrics
DrawIcon
GetSysColor
FillRect
DrawTextW
SetRect
wsprintfW
SetDlgItemInt
GetDlgItemInt
SetCapture
ReleaseCapture
SetMenu

winspool.drv

GetPrinterW
GetJobW
SetJobW
GetPrinterDriverW
OpenPrinterW
ClosePrinter
SetPrinterDataW
GetPrinterDataW

comctl32

CreateStatusWindowW
CreateToolbarEx
ord17

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fab85a4104c9e8dc751bf214a3fd8d93

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

winspool.drv

comctl32

version

Sections

.text Size: 55KB - Virtual size: 55KB

.data Size: 60KB - Virtual size: 60KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 55KB - Virtual size: 55KB

.data
Size: 60KB - Virtual size: 60KB

.rsrc
Size: 9KB - Virtual size: 8KB