be6de8c426bbec96c8a305377d4e30eda3157c7440b79703e6d452cddbd83842

Sharing

Copy URL Twitter E-mail

General

Target

be6de8c426bbec96c8a305377d4e30eda3157c7440b79703e6d452cddbd83842
Size

302KB
MD5

037a8fddf6d1a3b67e2c7854353216e0
SHA1

516495a7ef7eddb21e405c4aae707dd6aa501b87
SHA256

be6de8c426bbec96c8a305377d4e30eda3157c7440b79703e6d452cddbd83842
SHA512

5b1fa404430b5c6994e3afbbd559fee7a9337dfe52f1c415d5c4a3e5bd0b172adb561ccadecf427ba0377fe6d27085f7df20e1b800fe33dee3445351df12b2e4
SSDEEP

6144:w7myDn7Th5wVodw5nrT8RfNt9UEF3UtTGTW7/zTdUXRT:pyb7TLwVodw5rTYT9P3azz+

Score

N/A

Malware Config

Signatures

Files

be6de8c426bbec96c8a305377d4e30eda3157c7440b79703e6d452cddbd83842
.exe windows x86

1ec5d3a97c68e72898afb1181339e464

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FlushFileBuffers
SetStdHandle
LoadLibraryW
IsProcessorFeaturePresent
GetStringTypeW
LCMapStringW
Sleep
GetConsoleMode
GetConsoleCP
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
CloseHandle
GetTimeZoneInformation
WideCharToMultiByte
CreateFileA
HeapCreate
RtlUnwind
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
SetFilePointer
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetStdHandle
WriteFile
ExitProcess
GetProcAddress
GetCurrentThreadId
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
WriteConsoleW
HeapSize
SetEndOfFile
GetProcessHeap
CreateFileW
CompareStringW
SetEnvironmentVariableA
lstrcpyA
GetVolumeNameForVolumeMountPointW
FindNextFileA
LocalAlloc
FindClose
GlobalFree
GetThreadLocale
SetLastError
GetLastError
FindFirstFileA
ReadFile
GlobalUnlock
IsValidCodePage
GetOEMCP
GlobalAlloc
GetLocaleInfoW
GlobalLock
MultiByteToWideChar
HeapAlloc
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
EncodePointer
DecodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
HeapSetInformation
GetCommandLineA
GetSystemTimeAsFileTime
HeapReAlloc
HeapFree

user32

GetClassLongA
GetDlgItemTextA
LoadCursorA
ReleaseCapture
SetWindowTextA
WindowFromPoint
AdjustWindowRect
MapWindowPoints
EndPaint
ClientToScreen
DestroyWindow
SendNotifyMessageW
SetCursor
SetTimer
GetWindowRect
MapDialogRect
PostQuitMessage
SendDlgItemMessageA
GetWindowDC
FillRect
SetCapture
KillTimer
GetSubMenu
LoadIconA
DdeInitializeA
wsprintfA
PostMessageA
GetClientRect
SendMessageA
BeginPaint
PtInRect
GetMonitorInfoA
DlgDirListA
GetDC
GetMenu
OffsetRect
GetMenuItemRect
SetRect
IntersectRect
MessageBoxA
InvalidateRect
SetCursorPos
GetWindowLongA
ReleaseDC
GetDlgItem
EndDialog
DefWindowProcA
RedrawWindow
GetDesktopWindow
GetCursorPos
GetMenuStringA
GetSysColorBrush
EnumDesktopsA
GetMenuItemCount
SendMessageW

gdi32

DeleteDC
CreateDIBSection
CreateFontIndirectA
GetCurrentObject
SetDIBColorTable
GetRgnBox
CreatePalette
CreateBitmap
DeleteObject
SelectObject
GetPaletteEntries
CreateCompatibleDC
RealizePalette
SelectPalette
GetDIBColorTable
GetTextExtentPointA
GetTextMetricsA
CreateICA
GetObjectA
TextOutW
GetStockObject
CreateSolidBrush
TextOutA
BitBlt

winspool.drv

DeviceCapabilitiesA
SetPrinterDataExA

comdlg32

GetOpenFileNameA

advapi32

RegQueryValueExA
InitializeSecurityDescriptor

shell32

SHGetFolderPathW
ExtractAssociatedIconA

ole32

CreateStreamOnHGlobal
CLSIDFromString

oleaut32

OleLoadPicture

shlwapi

PathAddBackslashW
PathRemoveBackslashW
PathRemoveFileSpecW

uxtheme

CloseThemeData
OpenThemeData

Sections

.text
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ec5d3a97c68e72898afb1181339e464

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

uxtheme

Sections

.text Size: 149KB - Virtual size: 149KB

.rdata Size: 113KB - Virtual size: 113KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 34KB - Virtual size: 33KB

.text
Size: 149KB - Virtual size: 149KB

.rdata
Size: 113KB - Virtual size: 113KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 34KB - Virtual size: 33KB