ab8818ff34c46fc7453126b83b530d0ab225534b3c8f237adffbaf47795ecca2

Sharing

Copy URL Twitter E-mail

General

Target

ab8818ff34c46fc7453126b83b530d0ab225534b3c8f237adffbaf47795ecca2
Size

460KB
MD5

080f0d3c2c69e3599d4a4217da35ca71
SHA1

17367546088c97e11f806936cb771031ddcb8537
SHA256

ab8818ff34c46fc7453126b83b530d0ab225534b3c8f237adffbaf47795ecca2
SHA512

23fea6aaba8c8a77895191c4fabde41f7741ff4ce723aa306875f9cc260d75711ccba4b8fda376dd02d43be4eaed67fe13117ec8acb370c3172ab1f18d147bc3
SSDEEP

6144:Uf89S/U40iAxMAxpz1wIOkteyOUd7TEYjzN7QWp8VzAVuEa3P0B7:WrsH/SAyIOac40YjzNEWqV8Ezk

Score

N/A

Malware Config

Signatures

Files

ab8818ff34c46fc7453126b83b530d0ab225534b3c8f237adffbaf47795ecca2
.exe windows x86

e5792ae474e526f1e36db4a2f6590d9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoRegisterMessageFilter
CoCreateInstance
CreateDataAdviseHolder
OleRegEnumVerbs
OleIsCurrentClipboard
OleSetContainedObject
StringFromGUID2
StgOpenStorageOnILockBytes
CoGetMalloc
OleCreateFromData
CreateItemMoniker
CLSIDFromProgID
OleUninitialize
OleRun
StgOpenStorage
OleRegGetMiscStatus
OleFlushClipboard
StringFromCLSID
OleRegGetUserType
ReleaseStgMedium
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoTaskMemAlloc
CoFreeUnusedLibraries

comdlg32

GetOpenFileNameW
GetFileTitleW

user32

MessageBeep
IsWindowVisible
IntersectRect
ShowWindow
EnableWindow
GetWindowTextLengthW
RegisterClassW
DestroyWindow
CopyIcon
CreateWindowExW
TranslateAcceleratorW
GetForegroundWindow
MessageBoxW
BeginDeferWindowPos
WinHelpW
CreateDialogIndirectParamW
DrawTextW
GetNextDlgTabItem
GetClientRect
SetMenuItemInfoW
SetMenu
GetDesktopWindow
FrameRect
GetSubMenu
GetUpdateRect
SetScrollInfo
GetSystemMenu
SetActiveWindow
SetTimer
GetMenuItemCount
GetSysColor
GetWindowLongW
RegisterClassExW
SystemParametersInfoA
TabbedTextOutW
GrayStringW
GetWindowRect
EndDeferWindowPos
CharUpperW
DefWindowProcW
KillTimer

shell32

ShellExecuteW
DragQueryFileW
SHChangeNotify
DragAcceptFiles
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
DragFinish
SHGetMalloc
SHGetPathFromIDListW
ord155
ShellExecuteExW

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter
GetPrinterA
ord204

advapi32

RegCloseKey
StartServiceCtrlDispatcherA
EqualSid
DeleteService
OpenThreadToken
DeregisterEventSource
RegCreateKeyExA
FreeSid
RegQueryValueExA
OpenProcessToken
GetTokenInformation
RegSetValueExA
RegOpenKeyExA

kernel32

GetLastError
LCMapStringW
TerminateProcess
HeapFree
SetStdHandle
DebugBreak
GetEnvironmentStrings
SetConsoleCtrlHandler
GetUserDefaultLCID
WriteFile
GetStdHandle
SetFilePointer
InterlockedDecrement
HeapCreate
FatalAppExitA
GetDateFormatA
GetLocaleInfoA
RtlUnwind
LeaveCriticalSection
GetCurrentProcessId
GetModuleFileNameW
GetStartupInfoW
TlsGetValue
GetModuleFileNameA
InterlockedExchange
LoadLibraryA
UnhandledExceptionFilter
GetModuleHandleW
GetCurrentProcess
VirtualQuery
TlsFree
GetConsoleOutputCP
SetLastError
InterlockedIncrement
GetOEMCP
LCMapStringA
GetConsoleCP
CreateMutexW
GetACP
VirtualFree
GetEnvironmentStringsW
GetProcessHeap
SetEnvironmentVariableA
RaiseException
GetVersionExA
EnterCriticalSection
FreeEnvironmentStringsA
GetCommandLineW
SetUnhandledExceptionFilter
GetStringTypeA
FreeLibrary
TlsSetValue
IsBadReadPtr
OutputDebugStringW
DeleteCriticalSection
CloseHandle
FlushFileBuffers
GetTickCount
ExitProcess
GetStringTypeW
ReadFile
OutputDebugStringA
GetConsoleMode
GetCPInfo
LoadLibraryW
HeapReAlloc
IsValidLocale
IsDebuggerPresent
WideCharToMultiByte
HeapAlloc
InitializeCriticalSection
GetSystemTimeAsFileTime
CompareStringA
GetProcAddress
GetStartupInfoA
HeapDestroy
CreateFileA
FreeEnvironmentStringsW
WriteConsoleA
QueryPerformanceCounter
TlsAlloc
GetCurrentThread
lstrlenA
GetFileType
GetCommandLineA
HeapValidate
GetModuleHandleA
GetCurrentThreadId
GetTimeFormatA
GetTimeZoneInformation
SetHandleCount
GetLocaleInfoW
WriteConsoleW
CompareStringW
VirtualAlloc
MultiByteToWideChar
IsValidCodePage

oleaut32

LoadTypeLi

comctl32

ord17
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_Add
ImageList_DragLeave

Sections

.text
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5792ae474e526f1e36db4a2f6590d9e

Headers

File Characteristics

Imports

ole32

comdlg32

user32

shell32

winspool.drv

advapi32

kernel32

oleaut32

comctl32

Sections

.text Size: 212KB - Virtual size: 211KB

.rdata Size: 108KB - Virtual size: 104KB

.data Size: 52KB - Virtual size: 60KB

.rsrc Size: 84KB - Virtual size: 82KB

.text
Size: 212KB - Virtual size: 211KB

.rdata
Size: 108KB - Virtual size: 104KB

.data
Size: 52KB - Virtual size: 60KB

.rsrc
Size: 84KB - Virtual size: 82KB