704360a1d88b50e9907e7f37ac5ea73f36509ef4d16cc118a4bc491284ae8cbf

Sharing

Copy URL Twitter E-mail

General

Target

704360a1d88b50e9907e7f37ac5ea73f36509ef4d16cc118a4bc491284ae8cbf
Size

987KB
MD5

2b648e2382a278792e1b89bbf063ec2e
SHA1

05791471df68eeee51aaaf08f02c872fa29c789a
SHA256

704360a1d88b50e9907e7f37ac5ea73f36509ef4d16cc118a4bc491284ae8cbf
SHA512

c2d0c17a1c8d92e1d5651c5edb06f2e9635fce81a5a2679be87ac5111bac5941e458f73b43357a9aae120c68781a76171f6ffb6e1fe4c6215642597c5142565b
SSDEEP

24576:BOfHT1pGLYY0f4f1ghoF8jnL0kd2ecLojLKOfpZLz1ct:BOfHT1uFzKPP0lT0+t

Score

N/A

Malware Config

Signatures

Files

704360a1d88b50e9907e7f37ac5ea73f36509ef4d16cc118a4bc491284ae8cbf
.exe windows x86

99b1c6edf25d1dd959be77d2cc7390c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetLastErrorEx
HiliteMenuItem
GetClassInfoA
OffsetRect
PostQuitMessage
CharToOemA
RegisterRawInputDevices
IsCharAlphaW
InSendMessageEx
GetDCEx
GetAltTabInfoA
SetUserObjectInformationA
SetScrollPos
GetAsyncKeyState
GetDlgItem
ToAsciiEx
IsZoomed
GetMenuItemRect
CreateCaret
MapVirtualKeyExW
SetMessageExtraInfo
GetLastActivePopup
GetClipboardSequenceNumber
GetSysColor
MapVirtualKeyW
SetDebugErrorLevel
ChildWindowFromPoint
GetClassLongA
ScrollWindow
CloseClipboard
DefDlgProcA
GetClipboardData
GetMonitorInfoW
IsCharUpperA
SetSysColors
GetListBoxInfo
GetCapture
IsCharAlphaNumericW
RealChildWindowFromPoint
ReleaseCapture
GetKeyboardLayoutNameW
DefFrameProcA
SetWindowsHookA
DefFrameProcW
ValidateRect
InSendMessage
GetSubMenu
GetInputState
EnableWindow
UpdateLayeredWindow
GetWindow
RedrawWindow
GetWindowPlacement

advapi32

RegDeleteValueA
RegQueryValueExW

gdi32

Ellipse
GetDeviceCaps

winspool.drv

EnumPrintersW

kernel32

HeapSize
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
RtlUnwind
HeapReAlloc
VirtualAlloc
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
LeaveCriticalSection
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
HeapFree
VirtualFree
HeapCreate
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
DeleteCriticalSection
GetFileType
UnhandledExceptionFilter
DeactivateActCtx
GetEnvironmentStringsW
GetLastError
GetFileInformationByHandle
SetCommState
GetThreadIOPendingFlag
GetThreadContext
SetProcessWorkingSetSize
GetCommTimeouts
LockResource
GlobalDeleteAtom
GetCommandLineW
GetProcessId
GetThreadPriority
GetStdHandle
TlsGetValue
ReplaceFileA
SetHandleInformation
ResetEvent
PulseEvent
HeapAlloc
GlobalUnfix
ConvertFiberToThread
GetProcessHeap
GetPriorityClass
FreeResource
CancelDeviceWakeupRequest
CreateTapePartition
SetHandleCount
SuspendThread
GetDiskFreeSpaceExW
VirtualProtect
GetVersion
GetTempFileNameA
DuplicateHandle
lstrlenA
SearchPathA
lstrcmpiW
GetLocalTime
LoadLibraryA
GetStartupInfoA
GetProcessAffinityMask
GetCommandLineA
GetProcAddress
GetModuleHandleA
SetUnhandledExceptionFilter
GetModuleHandleW
Sleep
ExitProcess
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 844KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 873KB - Virtual size: 872KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99b1c6edf25d1dd959be77d2cc7390c3

Headers

DLL Characteristics

File Characteristics

Imports

user32

advapi32

gdi32

winspool.drv

kernel32

Sections

.text Size: 93KB - Virtual size: 92KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 9KB - Virtual size: 844KB

.rsrc Size: 873KB - Virtual size: 872KB

.text
Size: 93KB - Virtual size: 92KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 9KB - Virtual size: 844KB

.rsrc
Size: 873KB - Virtual size: 872KB