c191fa9c32a7e3b0c1cfed746e939aab417ae20da1d9acadf9ceced20609e659

Sharing

Copy URL

Twitter E-mail

General

Target

c191fa9c32a7e3b0c1cfed746e939aab417ae20da1d9acadf9ceced20609e659
Size

699KB
MD5

19953ffc5f5741dc5f435983e9cd2328
SHA1

e45f233e3d9190a4ca7a21de3781d10606f6094e
SHA256

c191fa9c32a7e3b0c1cfed746e939aab417ae20da1d9acadf9ceced20609e659
SHA512

dcfdc991499b62c69f8846500fb75de866779dfefa9c494ce5f95a33e8b4711f3ead759f159807bfd21f0aa032cb823c575f13c7a1e7d33bfbd8545d300548bd
SSDEEP

12288:hDaeGr7UHTr0xk/IUWpUMICdVYakEbhJmr0XSm7O2v28tqsR1mr9rJ:8e2729vWm0xrhJBXc8tqsR8BrJ

Score

N/A

Malware Config

Signatures

Files

c191fa9c32a7e3b0c1cfed746e939aab417ae20da1d9acadf9ceced20609e659
.exe windows x86

028bc9e3c2f749a7e4d25c9e617f8d5a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsIconic
keybd_event
UnregisterClassW
CreateAcceleratorTableW
MessageBeep
SetParent
SetCursorPos
DestroyAcceleratorTable
ReleaseDC
GetKeyboardState
GetProcessWindowStation
GetUserObjectInformationW
MessageBoxA
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
GetSystemMenu
GetComboBoxInfo
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
IntersectRect
BringWindowToTop
SetMenuItemBitmaps
IsMenu
HideCaret
FreeDDElParam
CallMsgFilterA
DefDlgProcA
CreateMDIWindowW
CharLowerBuffA
FillRect
SetClassWord

shell32

CommandLineToArgvW
DoEnvironmentSubstW
ExtractIconExA
FindExecutableA
ExtractAssociatedIconW
SHGetFolderPathW
SHCreateDirectoryExW
SHAddToRecentDocs
ExtractIconW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetMalloc
ShellExecuteExW
SHGetSpecialFolderPathW
ExtractIconA
SHBrowseForFolderW
SHAppBarMessage
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation
FindExecutableW
ShellAboutW
ShellExecuteW

advapi32

RegQueryValueW
RegSetValueW
RegCreateKeyW
GetUserNameW
OpenThreadToken
DuplicateTokenEx
CreateProcessAsUserW
GetLengthSid
SetTokenInformation
RegQueryInfoKeyW
RegOpenKeyW
RegEnumValueW
RegEnumKeyW
RegDeleteValueW
ReportEventA
RegisterEventSourceA
DeregisterEventSource
RegDeleteKeyW
LookupPrivilegeValueW
EqualSid
AdjustTokenPrivileges
GetTokenInformation
OpenProcessToken
LookupAccountNameW
LookupAccountSidW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCreateKeyExW
RegCloseKey
SetFileSecurityW
GetPrivateObjectSecurity
GetCurrentHwProfileA
RegCreateKeyA
AddAccessAllowedObjectAce
FindFirstFreeAce
GetServiceKeyNameW
RegEnumKeyA
EnumDependentServicesA
RegQueryInfoKeyA
GetFileSecurityW

gdi32

GetRgnBox
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetDIBits
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetBkColor
StretchBlt
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
OffsetRgn
DPtoLP
SetRectRgn
GetMapMode
CombineRgn
PatBlt
CreateRectRgnIndirect
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SaveDC
SetViewportExtEx
PolylineTo
PolyBezierTo
ExtTextOutW
TextOutW
MoveToEx
ExtCreatePen
SetArcDirection
SelectClipPath
PolyDraw
ArcTo
StartDocW
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
EnumMetaFile
PlayMetaFileRecord
SetTextJustification
SetTextAlign
SetTextCharacterExtra
GetLogColorSpaceW
GetColorSpace
SetICMMode
SetBrushOrgEx
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice
SetDIBits
SetPixel
GetNearestColor
CombineTransform
CreateBitmapIndirect
ChoosePixelFormat
ColorCorrectPalette
CreateCompatibleBitmap
CreateDCA
AddFontMemResourceEx
CreateDIBPatternBrush
CloseFigure
BitBlt
Arc
SelectClipRgn
GdiAlphaBlend
CreateRectRgn
CreateRoundRectRgn
SetBkColor
GetTextMetricsW
CopyMetaFileW
CreateDCW
CreateBitmap
CreateDIBPatternBrushPt
CreateHatchBrush
CreatePen
CreatePatternBrush
Escape
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
CreateFontIndirectW
GetSystemPaletteEntries
GetDeviceCaps
GetObjectW
DeleteObject
SelectObject
AddFontResourceW
CreateCompatibleDC
CreateSolidBrush
DeleteDC
GetPixel
GetStockObject
GetTextExtentPoint32W
SetBkMode
SetTextColor
CreateDIBSection
GetObjectA
GetBitmapBits
SetViewportOrgEx
GdiFlush
GetTextColor
ExtSelectClipRgn
SelectPalette
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
PlayMetaFile
PtVisible
RectVisible
RestoreDC
DeleteMetaFile
CreateMetaFileW
CloseMetaFile
GetTextFaceW
GetTextAlign
GetStretchBltMode
GetPolyFillMode
GetCurrentObject
GetBkMode
GetROP2
SetAbortProc
AbortDoc
EndPage
StartPage
EndDoc
GetViewportOrgEx
LPtoDP
GetWindowOrgEx
GetBoundsRect
FillRgn
SetPaletteEntries
ExtFloodFill
SetPixelV
PtInRegion
FrameRgn
RoundRect
GetCharWidthW
CreateFontW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW
GetJobW

kernel32

GetModuleHandleW
HeapReAlloc
GetModuleHandleA
Sleep
ExitProcess
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
RtlUnwind
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
SetFilePointer
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
LoadLibraryA
FlushFileBuffers
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
ReadFile
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CloseHandle
CreateFileA
GetProcAddress
HeapFree
GetLastError
HeapSize
DeleteCriticalSection
CreateThread
EnumSystemCodePagesW
SetFileApisToOEM
SetHandleInformation
GetLocaleInfoW
SetThreadPriority
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
GetCurrentThread
GetCurrentThreadId
VirtualAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RaiseException
SetHandleCount
GetStdHandle
GetFileType

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 33.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 544KB - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

028bc9e3c2f749a7e4d25c9e617f8d5a

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

advapi32

gdi32

winspool.drv

kernel32

Sections

.text Size: 138KB - Virtual size: 138KB

.data Size: 15KB - Virtual size: 33.1MB

.rsrc Size: 544KB - Virtual size: 544KB

.text
Size: 138KB - Virtual size: 138KB

.data
Size: 15KB - Virtual size: 33.1MB

.rsrc
Size: 544KB - Virtual size: 544KB