f0e01d53ea2a8451c6d155f9d0e819da3356d321a1cd00ceae475d36d5e15205

Sharing

Copy URL Twitter E-mail

General

Target

f0e01d53ea2a8451c6d155f9d0e819da3356d321a1cd00ceae475d36d5e15205
Size

404KB
MD5

240e29033b66af7d2179c3fce11594d0
SHA1

271733cd48c4a28a47559da09b23c806ae846247
SHA256

f0e01d53ea2a8451c6d155f9d0e819da3356d321a1cd00ceae475d36d5e15205
SHA512

27b22086a02a713424b7023029548073bf50ef87529323c1b3fcd51ab606b9bc4786388a53ca1a7859a410b4ed5a2249a99fb3351fdeed0a1eee5fd32ae8225f
SSDEEP

6144:c0RrdFfhrPdE40EsF5Vg52CFzwnFzZpxfuB/peaNqhPfXfZy:curdbrFE1SqnzuBxXwfXBy

Score

N/A

Malware Config

Signatures

Files

f0e01d53ea2a8451c6d155f9d0e819da3356d321a1cd00ceae475d36d5e15205
.exe windows x86

6f76a4d07c4332d3ddb166dda7b00752

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
ExitProcess
RtlUnwind
TerminateProcess
HeapFree
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetEnvironmentStrings
GetCommandLineW
GetCommandLineA
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
Sleep
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
CompareStringW
GetACP
GetOEMCP
SetEnvironmentVariableA
FormatMessageW
GetFileTime
GetFileSize
GetFileAttributesW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
GetCurrentProcess
DuplicateHandle
SetErrorMode
GetThreadLocale
GetProcessVersion
LoadLibraryA
GetVersion
GlobalAddAtomW
GlobalFindAtomW
GetModuleHandleW
GetLastError
GetModuleHandleA
SetLastError
MultiByteToWideChar
lstrlenA
InterlockedIncrement
lstrcpyW
lstrcatW
WritePrivateProfileStringW
InterlockedDecrement
GlobalFlags
InterlockedExchange
lstrcmpiW
MulDiv
lstrcpynW
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalUnlock
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
GetTickCount
FindResourceW
LoadResource
LockResource
GlobalFree
CloseHandle
GetModuleFileNameW
GlobalLock
lstrcmpW
GlobalAlloc
GlobalDeleteAtom
lstrlenW
WideCharToMultiByte
GetCurrentThread
GetCurrentThreadId
LoadLibraryW
GetProcAddress
HeapDestroy
FreeLibrary

user32

CreateDialogIndirectParamW
EndDialog
PostThreadMessageW
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableW
CharNextW
LoadStringW
GetSysColorBrush
LoadCursorW
LoadIconW
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetActiveWindow
IsWindow
AdjustWindowRectEx
GetClientRect
CopyRect
GetTopWindow
IsChild
GetCapture
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
GetSubMenu
GetMenuItemID
DestroyWindow
CreateWindowExW
SetPropW
GetPropW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageW
OffsetRect
SystemParametersInfoW
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
MoveWindow
SetWindowLongW
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
GrayStringW
DrawTextW
TabbedTextOutW
GetWindowDC
ReleaseDC
GetDC
GetMenuItemCount
wsprintfW
UnhookWindowsHookEx
GetDesktopWindow
GetWindowTextW
SetWindowTextW
ClientToScreen
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameW
RegisterClipboardFormatW
MapDialogRect
SetWindowPos
GetWindow
DestroyMenu
RemovePropW
CharUpperW
SetWindowContextHelpId
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageW
GetCursorPos
SetWindowsHookExW
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongW
MessageBoxW
EnableWindow
SetCursor
SendMessageW
PostMessageW
PostQuitMessage
UnregisterClassW

gdi32

PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
GetObjectW
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
GetMapMode
CreateBitmap
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW

comctl32

ord17

oledlg

OleUIBusyW

ole32

OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CLSIDFromString
CLSIDFromProgID

olepro32

ord253

oleaut32

SysStringLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

Sections

.text
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6f76a4d07c4332d3ddb166dda7b00752

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 136KB - Virtual size: 132KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 20KB - Virtual size: 32KB

.rsrc Size: 144KB - Virtual size: 142KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 136KB - Virtual size: 132KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 20KB - Virtual size: 32KB

.rsrc
Size: 144KB - Virtual size: 142KB

.rmnet
Size: 60KB - Virtual size: 60KB