f7089f16eaf99cec9599faa62ee33c64fa6c92b8ab1b9225b318b6ca6366a8f4

Sharing

Copy URL Twitter E-mail

General

Target

f7089f16eaf99cec9599faa62ee33c64fa6c92b8ab1b9225b318b6ca6366a8f4
Size

279KB
MD5

2316dd94dc4326d8aaf4b2e7bcc607ae
SHA1

936e583d3a9dc5e099775644137256a8718f505c
SHA256

f7089f16eaf99cec9599faa62ee33c64fa6c92b8ab1b9225b318b6ca6366a8f4
SHA512

9a65a33f76fc31978ff7694b21b4492502da9ad927efcc11eb410b25d49e747fd04894159927c5721b1fd85bb17a27aabef1494ca47e5b039fb5a118259cb5a0
SSDEEP

3072:Xkuo51tfXcX7YOKz75XoStqhf3T5+FTKFxazhYs4gyP+TjCep9a6ByleOWnMxN1J:Xk91t0rmzdoYeT4F6xazSkNp9m3xQ

Score

N/A

Malware Config

Signatures

Files

f7089f16eaf99cec9599faa62ee33c64fa6c92b8ab1b9225b318b6ca6366a8f4
.exe windows x86

bf182673c233792e8d7bdc882ae986c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

mpr

WNetGetConnectionW
WNetEnumResourceW
WNetOpenEnumW
WNetCloseEnum

ole32

CoUninitialize
CoCreateInstance
CoInitialize

kernel32

GlobalGetAtomNameW
GetStartupInfoW
RtlUnwind
GlobalAddAtomW
HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RaiseException
GetModuleFileNameW
SetErrorMode
TerminateProcess
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
HeapAlloc
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
GetModuleFileNameA
VirtualAlloc
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
GetCPInfo
GetStringTypeA
GetDriveTypeA
SetStdHandle
GetLocaleInfoA
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetCurrentProcess
lstrcmpiW
GetPrivateProfileIntW
CreateFileMappingW
ExitProcess
GetTimeFormatW
LocalAlloc
LocalFree
lstrlenW
GetFileSize
GlobalAlloc
GlobalLock
ReadFile
GetACP
MultiByteToWideChar
GlobalUnlock
GlobalFree
GetTempPathW
GetWindowsDirectoryW
GetDateFormatW
DeleteFileW
SetCurrentDirectoryW
GetSystemDirectoryW
lstrcmpW
CreateFileW
CloseHandle
GetPrivateProfileStringW
CreateDirectoryExW
GetLastError
FindFirstFileW
FindClose
SetLastError
lstrcpyW
lstrcatW
GetModuleHandleA
FindResourceA
GetProfileStringA
GetFullPathNameW
GetVolumeInformationW
MoveFileW
FlushFileBuffers
GetProcessVersion
GetCurrentDirectoryW
WritePrivateProfileStringW
TlsGetValue
LoadLibraryA
FreeLibrary
EnterCriticalSection
LocalReAlloc
TlsSetValue
GlobalReAlloc
LeaveCriticalSection
TlsAlloc
GlobalHandle
DeleteCriticalSection
GlobalFlags
InitializeCriticalSection
SizeofResource
GetStringTypeW
lstrcpynW
GlobalAddAtomA
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
FindNextFileW
FormatMessageW
lstrlenA
InterlockedIncrement
InterlockedDecrement
MulDiv
GetVersion
GetCurrentThreadId
LockResource
FindResourceW
LoadResource
SetFilePointer
WideCharToMultiByte
WriteFile
GlobalMemoryStatus
GetVersionExW
GetModuleHandleW
GetProcAddress
GetDiskFreeSpaceW
SetHandleCount
GetStdHandle
HeapDestroy

user32

PtInRect
GetClassNameW
GetDesktopWindow
GetMessageW
ClientToScreen
GetSysColorBrush
LoadCursorW
InvalidateRect
OffsetRect
DestroyMenu
ReleaseCapture
CharUpperW
SetRectEmpty
LoadAcceleratorsW
TranslateAcceleratorW
LoadMenuW
SetMenu
ReuseDDElParam
UnpackDDElParam
WindowFromPoint
IntersectRect
InflateRect
ShowOwnedPopups
PostQuitMessage
BringWindowToTop
GrayStringW
DrawTextW
TabbedTextOutW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
GetMenuCheckMarkDimensions
LoadBitmapW
GetMenuState
ModifyMenuW
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
SetWindowTextW
IsDialogMessageW
LoadStringW
GetDlgItemTextW
PostMessageW
SendDlgItemMessageA
SystemParametersInfoW
MapWindowPoints
GetSysColor
PeekMessageW
DispatchMessageW
GetFocus
TranslateMessage
EqualRect
DeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
ScreenToClient
ScrollWindow
SetScrollInfo
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpW
GetClassInfoW
RegisterClassW
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextW
GetDlgCtrlID
GetKeyState
DefWindowProcW
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetLastActivePopup
GetForegroundWindow
GetPropW
CallWindowProcW
RemovePropW
GetMessageTime
GetMessagePos
GetWindow
GetWindowRect
ValidateRect
SetWindowLongW
SetWindowPos
RegisterWindowMessageW
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamW
DestroyWindow
GetParent
GetWindowLongW
GetDlgItem
IsWindowEnabled
ExitWindowsEx
UpdateWindow
wsprintfW
FindWindowW
SetForegroundWindow
IsIconic
GetSystemMetrics
GetClientRect
SendMessageW
CharNextW
EnableWindow
LoadIconW
DrawIcon
GetCursorPos
MessageBoxW
SetCursor
SetFocus
AdjustWindowRectEx
GetMenu
BeginDeferWindowPos
GetWindowLongA
SetWindowLongA
GetClassNameA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
DrawFocusRect
GetClassInfoA
CharNextA
DefDlgProcA
RemovePropA
UnregisterClassW
GetWindowTextLengthA
GetPropA
SetPropA
SetWindowsHookExA
CallWindowProcA
IsWindowUnicode
SendMessageA
DefWindowProcA

gdi32

ExtTextOutA
GetTextExtentPointA
DeleteDC
CreateBitmap
GetObjectW
SetBkColor
BitBlt
CreateCompatibleDC
CreateDIBitmap
SelectObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
ExtTextOutW
Escape
TextOutW
SaveDC
PatBlt
RestoreDC
GetStockObject
SetTextColor

comdlg32

GetSaveFileNameW

winspool.drv

DocumentPropertiesW
EnumPortsW
ClosePrinter
SetPrinterW
GetPrinterW
OpenPrinterW
GetPrinterDriverDirectoryW
EnumPrintersW

advapi32

RegOpenKeyExW
RegEnumValueW
RegDeleteKeyW
LockServiceDatabase
ChangeServiceConfigW
UnlockServiceDatabase
ControlService
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenServiceW
QueryServiceConfigW
QueryServiceStatus
OpenSCManagerW
RegCloseKey
RegQueryValueExW
EnumServicesStatusW
RegCreateKeyExW
RegQueryInfoKeyW
RegSetValueExW
CloseServiceHandle

shell32

DragFinish
DragQueryFileW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHChangeNotify

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bf182673c233792e8d7bdc882ae986c5

Headers

File Characteristics

Imports

version

mpr

ole32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 177KB - Virtual size: 176KB

.rdata Size: 34KB - Virtual size: 34KB

.data Size: 18KB - Virtual size: 38KB

.idata Size: 9KB - Virtual size: 9KB

.rsrc Size: 39KB - Virtual size: 60KB

.text
Size: 177KB - Virtual size: 176KB

.rdata
Size: 34KB - Virtual size: 34KB

.data
Size: 18KB - Virtual size: 38KB

.idata
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 39KB - Virtual size: 60KB