e8862be0b96a03013c30329162b5d4b156afa984626329487bbb571b59a06c1e

Sharing

Copy URL

Twitter E-mail

General

Target

e8862be0b96a03013c30329162b5d4b156afa984626329487bbb571b59a06c1e
Size

240KB
MD5

0d1ebe0a4d6102c320d20676656f2048
SHA1

8abbe917fbcc885bbdcb11abd4f2edbe51282f61
SHA256

e8862be0b96a03013c30329162b5d4b156afa984626329487bbb571b59a06c1e
SHA512

8e2e2e833a985fd761f37d7e3cf595fe671cc02ca3eb5791eabdd9b5f39aad1f45b08d573a4495a0d4b35f6c6b374c87f4ca30a5a338f2442020b2e759fd8a37
SSDEEP

3072:mSfBLUOeB9LVfiAUXfcSlP8FvuFHbjMvgku2Zdtxb/Z5TXc8BjBNE3n3KAY:PJwOw9LFiTf4dyE/fdLbx5l9a3n3n

Score

N/A

Malware Config

Signatures

Files

e8862be0b96a03013c30329162b5d4b156afa984626329487bbb571b59a06c1e
.exe windows x86

c699283b3a01d31b250e7e5a6472490f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GetLocalTime
VirtualFree
HeapCreate
CompareStringA
EnterCriticalSection
GetLastError
GetProcAddress
GetTickCount
GetFileTime
MultiByteToWideChar
CloseHandle
LockResource
GetStringTypeA
DeleteFileW
ReadFile
LocalReAlloc
MulDiv
GlobalAddAtomW
HeapAlloc
GetStringTypeW
GetEnvironmentStrings
InterlockedExchange
LeaveCriticalSection
WideCharToMultiByte
TlsGetValue
SetHandleCount
SetStdHandle
SetUnhandledExceptionFilter
GetStdHandle
GetSystemTimeAsFileTime
CompareStringW
FreeEnvironmentStringsW
GetShortPathNameW
lstrcpyA
GetVersionExA
FileTimeToLocalFileTime
RaiseException
FormatMessageW
LCMapStringA
SizeofResource
VirtualQuery
lstrcpynW
GlobalAlloc
CreateDirectoryW
CreateThread
UnmapViewOfFile
GetModuleHandleW
TlsSetValue
GetCurrentThreadId
GetSystemTime
GetVersion
TlsAlloc
InterlockedDecrement
lstrcmpiA
GetCurrentProcessId
DeleteCriticalSection
LocalFree
MoveFileW
GlobalFree
LCMapStringW
GlobalLock
ExitThread
GetFileSize
GetCurrentProcess
lstrlenW
FindFirstFileW
GetLocaleInfoW
HeapFree
HeapDestroy
InterlockedIncrement
IsBadCodePtr
FlushFileBuffers
GetVersionExW
GetEnvironmentStringsW
GlobalFindAtomW
WriteFile
SetLastError
GetCommandLineA
GetStartupInfoW
GetCommandLineW
CreateFileA
GetFileType
FileTimeToSystemTime
SetErrorMode
FindClose
CreateMutexW
SetFilePointer
LoadLibraryA
lstrcmpA
InitializeCriticalSection
SetThreadPriority
SetEndOfFile
TerminateProcess
FindNextFileW
FreeEnvironmentStringsA
GetCurrentDirectoryW
CreateEventW
lstrlenA
RtlUnwind
GetTimeZoneInformation
SetEvent
GetModuleFileNameA
LocalAlloc
FreeLibrary
GetCurrentThread
GetSystemInfo
SetEnvironmentVariableA
UnhandledExceptionFilter
VirtualProtect
GetCPInfo
QueryPerformanceCounter
HeapReAlloc
GetModuleFileNameW
VirtualAlloc
GetStartupInfoA
ExitProcess
LoadLibraryW
GetModuleHandleA
GlobalHandle

shell32

ShellExecuteA
ord155
SHFileOperationA
SHGetDesktopFolder
SHChangeNotify
DragFinish

advapi32

GetLengthSid
OpenProcessToken
RegisterServiceCtrlHandlerA
RegCloseKey
DeleteService
SetServiceStatus
OpenSCManagerA
GetTokenInformation
FreeSid
RegDeleteValueA
OpenServiceA
RegSetValueExA
CreateServiceA
GetUserNameA
RegCreateKeyExA
RegOpenKeyExA
StartServiceCtrlDispatcherA
RegQueryValueExA
ControlService
InitializeSecurityDescriptor
RegDeleteKeyA
RegEnumValueA
RegEnumKeyExA
OpenThreadToken
CopySid
RegQueryInfoKeyA
InitializeAcl

ole32

CreateStreamOnHGlobal
OleDestroyMenuDescriptor
CoLockObjectExternal
CoGetInterfaceAndReleaseStream
CoRevokeClassObject
OleFlushClipboard
CoTaskMemFree
CoUnmarshalInterface
CoMarshalInterThreadInterfaceInStream
OleInitialize
ReleaseStgMedium
CoUninitialize
RevokeDragDrop
OleIsCurrentClipboard
IsAccelerator
RegisterDragDrop
OleTranslateAccelerator
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoInitialize
OleDuplicateData
CoDisconnectObject
OleGetClipboard
OleCreateMenuDescriptor

comctl32

ord17
ImageList_Create
ImageList_GetIcon
InitCommonControlsEx
_TrackMouseEvent

gdi32

StartPage
EndPage
CreateSolidBrush
BitBlt
PatBlt
SelectObject
SetMapMode
GetDIBits
SetViewportOrgEx
OffsetRgn
CreateDCW
DeleteDC
RectInRegion
CreateBitmap
RestoreDC
Rectangle
GetTextColor
EndDoc
SetWindowExtEx
GetBkMode
DeleteObject
GdiFlush
GetRgnBox
Ellipse
GetObjectW
SaveDC
GetStockObject
CreatePolygonRgn
RoundRect
GetDeviceCaps
RealizePalette
RectVisible

user32

DefWindowProcW
GetSystemMenu
AppendMenuW
GetSysColor
CreatePopupMenu
LoadAcceleratorsW
GetKeyboardLayout
SetCursor
DestroyWindow
GetWindowThreadProcessId
GetDlgCtrlID
CloseClipboard
SetWindowPos
ScreenToClient
IsClipboardFormatAvailable
IsDlgButtonChecked
DrawStateW
SetScrollPos
SetMenuItemInfoW
GetKeyState
UpdateWindow
RegisterClassW
IsChild
DestroyCursor
RegisterClassExW
ReleaseCapture
EndDeferWindowPos
GetSystemMetrics
TrackPopupMenuEx
GetDlgItem
GetDlgItemTextW
ModifyMenuW
PeekMessageW
DestroyMenu
PostQuitMessage
CallWindowProcW
DeleteMenu
GetMenuState
EnableWindow
PostMessageW
MessageBeep
RegisterClipboardFormatW
ShowWindow
GetCapture
IntersectRect
MessageBoxW
TranslateAcceleratorW
SetForegroundWindow
CreateWindowExW
GetParent
GetSubMenu
LoadCursorW
EqualRect
SystemParametersInfoW
LoadStringW
LoadBitmapW
GetCursorPos
CreateDialogParamW
LoadIconW
SetWindowsHookExW
DrawMenuBar
DrawFrameControl
GetWindowLongW
DestroyAcceleratorTable
SetDlgItemInt
BeginDeferWindowPos
GetWindow
DrawTextW
RedrawWindow
PtInRect
TrackPopupMenu

winspool.drv

GetJobA
OpenPrinterA
ClosePrinter

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c699283b3a01d31b250e7e5a6472490f

Headers

File Characteristics

Imports

kernel32

shell32

advapi32

ole32

comctl32

gdi32

user32

winspool.drv

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 100KB - Virtual size: 97KB

.data Size: 64KB - Virtual size: 81KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 100KB - Virtual size: 97KB

.data
Size: 64KB - Virtual size: 81KB

.rsrc
Size: 20KB - Virtual size: 16KB