2b3a64f7acd5abd61e2b7562a0fb52352e0a7199855185962e907024abb6443b

Sharing

Copy URL Twitter E-mail

General

Target

2b3a64f7acd5abd61e2b7562a0fb52352e0a7199855185962e907024abb6443b
Size

369KB
MD5

18b972c62209a26f30f77bf6d9d45186
SHA1

a796102b08b3e1595b833dfeeb35438c1be5afd5
SHA256

2b3a64f7acd5abd61e2b7562a0fb52352e0a7199855185962e907024abb6443b
SHA512

1f319a9da8818809bdd65f3340bc1f01b85a951dab9476cb5193afeddd736122dff7e72f316bf2240142827ca63b8d16b064ab17ce9c5bcdb8a00850699b3e40
SSDEEP

6144:DbBNaZiB2YL7ASu6hhNLosMXHU28fvIfS9OyfyVsvV7dMcI:vJjL7/hhNL1MXUj+S9On2vZ6B

Score

N/A

Malware Config

Signatures

Files

2b3a64f7acd5abd61e2b7562a0fb52352e0a7199855185962e907024abb6443b
.exe windows x86

ca755ae2e9b72b0869c086357cda910f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupPromptReboot

kernel32

HeapSize
GetTimeZoneInformation
GetACP
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
GetDriveTypeA
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
ExitProcess
GetCommandLineA
GetStartupInfoA
GetProfileStringA
SetEvent
CreateEventA
CloseHandle
HeapFree
HeapAlloc
GetProcessHeap
ResetEvent
WaitForSingleObject
lstrcmpA
lstrlenA
lstrcpyA
WideCharToMultiByte
MultiByteToWideChar
lstrcatA
GetLastError
GetTempPathA
HeapReAlloc
CreateMutexA
FreeLibrary
LockResource
LoadResource
FindResourceA
LoadLibraryA
OpenMutexA
lstrcmpiA
GetVersionExA
DeleteFileA
MoveFileA
SetFileAttributesA
GetModuleFileNameA
lstrlenW
GetFileAttributesA
RemoveDirectoryA
TerminateProcess
GetExitCodeProcess
OpenProcess
GetExitCodeThread
CreateThread
RtlUnwind
GetFileTime
GetFileSize
GetTickCount
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ReadFile
DuplicateHandle
SetErrorMode
GetOEMCP
GetCPInfo
GetThreadLocale
GetProcessVersion
GetCurrentDirectoryA
FileTimeToLocalFileTime
FileTimeToSystemTime
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
SizeofResource
GlobalFlags
MulDiv
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalAlloc
GlobalDeleteAtom
GetCurrentThreadId
FindNextFileA
FindFirstFileA
SetLastError
FindClose
GlobalLock
GlobalUnlock
GlobalFree
FormatMessageA
InterlockedDecrement
InterlockedIncrement
RaiseException
InterlockedExchange
CopyFileA
GetCurrentProcessId
GetModuleHandleA
GetCurrentThread
GetProcAddress
GetCurrentProcess
LocalAlloc
LocalFree
CreateProcessA
lstrcpynA
CreateFileA
SetFilePointer
WriteFile
GetPrivateProfileSectionA
WritePrivateProfileSectionA
WritePrivateProfileStringA
MoveFileExA
GetShortPathNameA
GetWindowsDirectoryA

user32

InvalidateRect
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CharNextA
GetSysColorBrush
LoadCursorA
InflateRect
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
GetDesktopWindow
ClientToScreen
PtInRect
GetClassNameA
DestroyMenu
ShowWindow
MoveWindow
SetWindowTextA
LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
ScreenToClient
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
wsprintfA
MessageBoxA
LoadStringA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
CharUpperA
RegisterClipboardFormatA
PostThreadMessageA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetFocus
GetMessageA
GetKeyState
CallNextHookEx
DefDlgProcA
IsWindowUnicode
SendMessageTimeoutA
EnumWindows
DispatchMessageA
TranslateMessage
IsDialogMessageA
PeekMessageA
GetParent
GetWindowThreadProcessId
PostMessageA
SendMessageA
EnableMenuItem
GetSystemMenu
EnableWindow
IsWindowEnabled
GetDlgItem
GetWindowLongA
DestroyWindow
CreateDialogIndirectParamA
GetSystemMetrics
IsWindow
SetActiveWindow
GetActiveWindow
EndDialog
GetNextDlgTabItem
ReleaseDC
GetDC
GetClientRect
CopyRect
UnhookWindowsHookEx
PostQuitMessage
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
SetCursor

gdi32

GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
DPtoLP
GetTextColor
GetBkColor
LPtoDP
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
RestoreDC
SaveDC
DeleteDC
GetStockObject
GetDeviceCaps
SelectObject
DeleteObject
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
CreateDIBitmap
GetTextExtentPointA
BitBlt
CreateCompatibleDC
PatBlt

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

LookupPrivilegeValueA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
FreeSid
AccessCheck
IsValidSecurityDescriptor
SetSecurityDescriptorOwner
RegUnLoadKeyA
RegEnumKeyExA
RegLoadKeyA
RegCreateKeyExA
RegCloseKey
AdjustTokenPrivileges
OpenThreadToken
OpenProcessToken
DuplicateToken
AllocateAndInitializeSid
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup

shell32

SHGetSpecialFolderPathA
SHChangeNotify

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize

olepro32

ord253

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen
SysStringLen

Sections

.text
Size: 188KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ca755ae2e9b72b0869c086357cda910f

Headers

File Characteristics

Imports

setupapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 188KB - Virtual size: 184KB

.rdata Size: 40KB - Virtual size: 39KB

.data Size: 28KB - Virtual size: 43KB

.rsrc Size: 104KB - Virtual size: 104KB

.text
Size: 188KB - Virtual size: 184KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 28KB - Virtual size: 43KB

.rsrc
Size: 104KB - Virtual size: 104KB