dc9ace51d05278889cd3c22eab20cb46fb81bc4a0d52c6fb386f3f8709d94544

Sharing

Copy URL Twitter E-mail

General

Target

dc9ace51d05278889cd3c22eab20cb46fb81bc4a0d52c6fb386f3f8709d94544
Size

684KB
MD5

076fd3fd14e69e2c0b0d029d94acba8f
SHA1

8d37bae871f64321dddb552ad926001a23f14ece
SHA256

dc9ace51d05278889cd3c22eab20cb46fb81bc4a0d52c6fb386f3f8709d94544
SHA512

ba31b690d444a79d38cdcbe457ca35333547f61745d2460fca10a35836869d05dc3f8b3b69577da5c5814161dacfd827eb06775b191d39a0f9c7d785df65d1c5
SSDEEP

12288:EI2Oct2XZovp+vtzrvUtKl9+Hmr6lJXPtPShh1kXy1:EI2X2XZSp+ytK6HpPtahh1Sy1

Score

N/A

Malware Config

Signatures

Files

dc9ace51d05278889cd3c22eab20cb46fb81bc4a0d52c6fb386f3f8709d94544
.exe windows x86

57366a9a1da40c2f5e786e910d9567b6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
PrintDlgA
ChooseFontA
ChooseColorA

kernel32

OpenProcess
SetEndOfFile
GlobalFree
SetHandleCount
TerminateProcess
GetVersion
GetFileAttributesA
GetCommandLineA
GlobalGetAtomNameA
VirtualAlloc
OutputDebugStringA
LCMapStringW
GetStartupInfoA
GetStdHandle
LocalReAlloc
CreateMutexA
IsValidCodePage
GlobalFlags
SetLastError
GetFileTime
GetFileType
GetSystemDirectoryA
TerminateThread
WideCharToMultiByte
HeapDestroy
HeapSize
GetFileSize
GetCurrentProcessId
VirtualProtect
VirtualFree
SetStdHandle
IsBadCodePtr
GetStringTypeW
GetPrivateProfileStringA
lstrcmpiA
GetFullPathNameA
GetSystemTime
CreateThread
HeapAlloc
SetEnvironmentVariableA
WriteFile
RaiseException
GetProcAddress
CreateFileA
GetEnvironmentStringsW
QueryPerformanceCounter
GetACP
HeapReAlloc
DebugBreak
HeapFree
UnhandledExceptionFilter
LoadResource
GetTempPathA
GetTickCount
FormatMessageA
FreeEnvironmentStringsW
lstrcmpA
GetTimeZoneInformation
WritePrivateProfileStringA
WaitForSingleObject
FreeResource
VirtualQuery
TlsAlloc
InterlockedExchange
CompareStringA
InterlockedIncrement
FileTimeToSystemTime
InitializeCriticalSection
ExitProcess
SetFilePointer
SetCurrentDirectoryA
GetWindowsDirectoryA
GetModuleHandleA
GetCurrentThreadId
IsValidLocale
InterlockedDecrement
SizeofResource
WriteConsoleA
TlsGetValue
lstrlenW
GetProfileStringA
LCMapStringA
GetOEMCP
GetSystemTimeAsFileTime
CloseHandle
GetEnvironmentStrings
HeapCreate
CompareStringW
GetLastError
GetVolumeInformationA
DeleteCriticalSection
GetStringTypeA
GlobalReAlloc
GetCPInfo
GetSystemInfo
LocalAlloc
GlobalUnlock
LocalFree
GetCurrentProcess
FindClose
GetModuleFileNameA
FreeEnvironmentStringsA
FreeLibrary
SetUnhandledExceptionFilter
LoadLibraryA
ResumeThread
FlushFileBuffers
GetLocalTime
lstrlenA
ExitThread
GetEnvironmentVariableA
LeaveCriticalSection
TlsSetValue
RtlUnwind
EnterCriticalSection
MultiByteToWideChar
GlobalAddAtomA
ReadFile

oleaut32

LoadTypeLi

shell32

SHGetMalloc
SHGetFileInfoA

comctl32

PropertySheetW
ImageList_ReplaceIcon
DestroyPropertySheetPage
ord17
ImageList_GetIcon
InitCommonControlsEx
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_DrawEx
CreatePropertySheetPageW
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Create
_TrackMouseEvent
ImageList_LoadImageW
ImageList_Draw
ImageList_Destroy

shlwapi

StrRetToStrW
SHAutoComplete
PathFindFileNameW
PathIsUNCW

winspool.drv

GetPrinterA
ord204
OpenPrinterA
ClosePrinter
GetJobA
DocumentPropertiesA

advapi32

RegOpenKeyW
RegQueryValueExA
SetFileSecurityW
RegCloseKey
OpenProcessToken
RegOpenKeyExA
RegSetValueW
RegSetValueExW
AdjustTokenPrivileges

user32

SetCursorPos
ScreenToClient
OffsetRect
GetClassNameA
DestroyIcon
InvalidateRect
IsChild
GetCapture
TrackPopupMenuEx
GetForegroundWindow
MapVirtualKeyA
CopyIcon
DestroyCursor
WindowFromPoint
IsRectEmpty
GetWindowTextLengthA
DestroyWindow
FindWindowA
MessageBoxA
GetDesktopWindow
SendDlgItemMessageA
SetScrollPos
SetCaretPos
GetFocus
EndDialog
PostMessageA
MessageBeep
LoadMenuA
CallWindowProcA
GetDlgItem
SetCapture
SetRectEmpty
TranslateAcceleratorA
SetWindowContextHelpId
GetWindowLongA
ClientToScreen
GetClassLongA
SetWindowRgn
RegisterClassExA
RegisterWindowMessageA
GetSysColor
wsprintfA
EqualRect
SetTimer
UpdateWindow
SetCursor
GetKeyboardState
SetFocus
SetWindowPos
ValidateRect
GetSubMenu
SetWindowsHookExA
GetSystemMetrics
GetCursorPos
LoadIconA
DispatchMessageA
CreatePopupMenu
DestroyAcceleratorTable
LoadCursorA
CreateWindowExA
MapWindowPoints
GetMenu
GetClientRect
SendMessageA
DrawTextA
KillTimer
DrawEdge
GetWindow
RegisterClassA
EndPaint
ShowWindow
PostQuitMessage
LoadAcceleratorsA
InvalidateRgn
BeginPaint
UnregisterClassA
HideCaret
DefWindowProcA
FillRect
LoadImageA
TranslateMessage
IntersectRect
GetActiveWindow
GetWindowDC

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 460KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57366a9a1da40c2f5e786e910d9567b6

Headers

File Characteristics

Imports

version

comdlg32

kernel32

oleaut32

shell32

comctl32

shlwapi

winspool.drv

advapi32

user32

Sections

.text Size: 76KB - Virtual size: 72KB

.rdata Size: 464KB - Virtual size: 460KB

.data Size: 96KB - Virtual size: 95KB

.rsrc Size: 44KB - Virtual size: 43KB

.text
Size: 76KB - Virtual size: 72KB

.rdata
Size: 464KB - Virtual size: 460KB

.data
Size: 96KB - Virtual size: 95KB

.rsrc
Size: 44KB - Virtual size: 43KB