b8d85317422e59230f0b05e364d490858086f6785b160a0d35ec4eb66dcec2fe

Sharing

Copy URL

Twitter E-mail

General

Target

b8d85317422e59230f0b05e364d490858086f6785b160a0d35ec4eb66dcec2fe
Size

253KB
MD5

35f8be9be10b8a77f71a8d0682d90eb0
SHA1

5f8abffbb5fc7c05bc3b784f399c5b171d7e2000
SHA256

b8d85317422e59230f0b05e364d490858086f6785b160a0d35ec4eb66dcec2fe
SHA512

f2ccba082e79428745a0cf48b9affb68e744e454054d83c1e6db721317e4f5e51b3aaf2a69f34c7654883fe9cb8072ca272eeb8c03677d821df3335bb2aecb72
SSDEEP

6144:PeAG4sbUctzbfBYkopFoZR0y8ftCF5HrjrICF4D:23JfBZEwChtCDUsI

Score

N/A

Malware Config

Signatures

Files

b8d85317422e59230f0b05e364d490858086f6785b160a0d35ec4eb66dcec2fe
.exe windows x86

d5bc7237b0ec57b7e2df6440f89cd17c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
RaiseException
HeapReAlloc
HeapSize
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
VirtualAlloc
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
CreateFileA
GetCurrentProcess
FlushFileBuffers
SetFilePointer
WriteFile
InterlockedExchange
GetModuleHandleA
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryA
GetVersionExA
GlobalFlags
lstrcmpW
GetCurrentThreadId
CloseHandle
GetThreadLocale
GetVersion
InterlockedIncrement
FreeLibrary
InterlockedDecrement
GetModuleHandleW
GetProcAddress
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetCurrentProcessId
GetModuleFileNameW
MultiByteToWideChar
WideCharToMultiByte
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
lstrlenW
GetLastError
SetLastError
FindResourceW
LoadResource
LockResource
SizeofResource
HeapCreate

user32

PostQuitMessage
DestroyMenu
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
RegisterWindowMessageW
LoadIconW
WinHelpW
GetCapture
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
PostMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
CopyRect
DefWindowProcW
CallWindowProcW
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
SetWindowPos
SetWindowLongW
IsWindow
GetDlgItem
GetFocus
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameW
PtInRect
SetWindowTextW
SetWindowsHookExW
CallNextHookEx
DispatchMessageW
GetKeyState
PeekMessageW
ValidateRect
GetWindowTextW
LoadCursorW
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
UnhookWindowsHookEx
GetWindowThreadProcessId
SendMessageW
GetParent
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxW
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
UnregisterClassA

gdi32

GetStockObject
DeleteDC
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
TextOutW
RectVisible
PtVisible
SetMapMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
DeleteObject
GetDeviceCaps
SetViewportExtEx

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegCloseKey

oleaut32

VariantChangeType
VariantInit
VariantClear

Sections

.text
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.trdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d5bc7237b0ec57b7e2df6440f89cd17c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

oleaut32

Sections

.text Size: 104KB - Virtual size: 101KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 8KB - Virtual size: 22KB

.rsrc Size: 36KB - Virtual size: 33KB

.trdata Size: 68KB - Virtual size: 68KB

.text
Size: 104KB - Virtual size: 101KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 8KB - Virtual size: 22KB

.rsrc
Size: 36KB - Virtual size: 33KB

.trdata
Size: 68KB - Virtual size: 68KB