e8b111b4e12992a8116fbf3ac95ce479e4ffa6c17886d53237729efc14fcdcbe

Sharing

Copy URL Twitter E-mail

General

Target

e8b111b4e12992a8116fbf3ac95ce479e4ffa6c17886d53237729efc14fcdcbe
Size

200KB
MD5

3b05a01bfc780fa514302fb6c43a9b80
SHA1

3d4e109b610ce5f0d1e153cd8501377a9f6f5f12
SHA256

e8b111b4e12992a8116fbf3ac95ce479e4ffa6c17886d53237729efc14fcdcbe
SHA512

d3ef1581016f83b8b20a2513bd446198d2483d3b4d95637d106650ae5459bbd5d987be24e4c1a7a8ee2c0198cc94a5f4790ee6b1d5517efe3d97de901b338539
SSDEEP

3072:pKt9jdBoaFV0V4QBRRBLXBOnoMLrSUNUwAO7P4QhQ45ceZa:MtnBoaA4EIbkwh7eAZa

Score

N/A

Malware Config

Signatures

Files

e8b111b4e12992a8116fbf3ac95ce479e4ffa6c17886d53237729efc14fcdcbe
.dll windows x86

d3723d1f72268f3626f366d2e628a4df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
lstrcmpiA
GetModuleFileNameA
IsBadWritePtr
IsBadReadPtr
WaitForSingleObject
GetCurrentThreadId
TlsAlloc
GlobalFree
GlobalUnlock
GlobalHandle
TlsFree
GlobalLock
GlobalReAlloc
GlobalAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
SetErrorMode
lstrcatA
GetVersion
FindClose
GetFileSize
GetFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetProcessVersion
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcmpA
GlobalFlags
GetCPInfo
GetOEMCP
RtlUnwind
RaiseException
GetCommandLineA
HeapAlloc
HeapFree
HeapSize
SetStdHandle
GetFileType
GetTimeZoneInformation
GetACP
HeapReAlloc
ExitProcess
TerminateProcess
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
VirtualAlloc
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProcAddress
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryA
LocalAlloc
FreeLibrary
lstrcpyA
EnterCriticalSection
lstrcpynA
GetLastError
SetLastError
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
GetFileAttributesA
OutputDebugStringA

comctl32

ord17

wininet

InternetGetLastResponseInfoA
HttpQueryInfoA
HttpSendRequestA
HttpAddRequestHeadersA
HttpOpenRequestA
InternetConnectA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetOpenA
InternetCloseHandle
InternetSetFilePointer
InternetSetStatusCallback

netapi32

Netbios

user32

GetMenuCheckMarkDimensions
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
RegisterWindowMessageA
SetWindowPos
SetWindowLongA
GetWindow
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcA
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
GetDlgCtrlID
GetWindowTextA
GetDlgItem
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
MapWindowPoints
PostMessageA
LoadIconA
SetWindowTextA
GetClassNameA
PtInRect
ClientToScreen
PostQuitMessage
DestroyMenu
TabbedTextOutA
DrawTextA
GrayStringA
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
LoadCursorA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
EnableWindow
LoadStringA
UnregisterClassA
UnhookWindowsHookEx
DispatchMessageA
GetKeyState
CallNextHookEx
PeekMessageA
SetWindowsHookExA
GetSystemMetrics
CharUpperA
SendMessageA

gdi32

CreateBitmap
DeleteObject
GetDeviceCaps
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetClipBox
SetTextColor
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetBkColor
SetWindowExtEx
ScaleWindowExtEx
GetObjectA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

comdlg32

GetFileTitleA

Exports

Exports

SetPostInfo

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d3723d1f72268f3626f366d2e628a4df

Headers

File Characteristics

Imports

kernel32

comctl32

wininet

netapi32

user32

gdi32

winspool.drv

comdlg32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 16KB - Virtual size: 27KB

.reloc Size: 16KB - Virtual size: 12KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 16KB - Virtual size: 27KB

.reloc
Size: 16KB - Virtual size: 12KB

.rmnet
Size: 60KB - Virtual size: 60KB