a00b23c6b252f0b62628c3aad38f242e9c50b0a831ee9bece07943adacea55bb

Sharing

Copy URL Twitter E-mail

General

Target

a00b23c6b252f0b62628c3aad38f242e9c50b0a831ee9bece07943adacea55bb
Size

336KB
MD5

c13dbb235d2e7c5f941ac2af795fa8bf
SHA1

a4c4da7c5e0a1107847b7b860b90daf1bcbe011b
SHA256

a00b23c6b252f0b62628c3aad38f242e9c50b0a831ee9bece07943adacea55bb
SHA512

61a8108143efa6f9486f52bb5934e824ef304b8b478b2a6387fb7ee588719898ecd618788faf4139d6f1befd327a1ef8fa8a4a169eac7a5600fb459f17eb50c7
SSDEEP

6144:ug1mEyhSktf6CNilHvN+NWL7u4OPo2HpUelV:ug1mfhJtSAilPI+64Og2H5l

Score

N/A

Malware Config

Signatures

Files

a00b23c6b252f0b62628c3aad38f242e9c50b0a831ee9bece07943adacea55bb
.exe windows x86

b8a049ccf92534dc1607f570dbbe660f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA
GetSaveFileNameA
GetFileTitleA
FindTextA
GetOpenFileNameW
CommDlgExtendedError
GetOpenFileNameA
ChooseFontA
PrintDlgA

winspool.drv

ClosePrinter
GetJobA
OpenPrinterA
GetPrinterA
SetPrinterA
DeletePrinter
EnumJobsA
GetPrinterDriverDirectoryA
DeletePrintProcessorA
AddPrinterDriverA
DocumentPropertiesA
AddPrinterA
EnumPrintersA
DeletePrinterDriverA
ord204

wsock32

WSACleanup

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_Add
ImageList_GetImageInfo
ImageList_DragMove
ImageList_GetIconSize
ImageList_DrawIndirect
ImageList_BeginDrag
DestroyPropertySheetPage
ImageList_Destroy
ImageList_SetOverlayImage
ImageList_SetBkColor
ImageList_DragEnter
ImageList_DragLeave
ImageList_GetDragImage
ImageList_Create
ImageList_SetDragCursorImage
ImageList_GetImageCount
ord17
ImageList_Draw
ImageList_EndDrag
ImageList_AddMasked
PropertySheetA
ImageList_LoadImageA
ImageList_Remove
CreatePropertySheetPageA
ImageList_ReplaceIcon
ImageList_Merge

kernel32

GetProcessVersion
SetLastError
GetStdHandle
GetSystemDirectoryA
DeleteCriticalSection
GetCommandLineA
GetExitCodeThread
GetPrivateProfileStringA
ExitProcess
GetCurrentThreadId
InitializeCriticalSection
IsValidCodePage
SetFileTime
VirtualAlloc
WritePrivateProfileStringA
WriteConsoleW
ExpandEnvironmentStringsA
ReadProcessMemory
FatalAppExitA
GetProcessHeap
GetPrivateProfileIntA
GetOEMCP
OpenMutexA
GetACP
GetLocalTime
GetCurrentThread
GetVersionExA
VirtualProtect
VirtualQuery
GetFileTime
InterlockedCompareExchange
GetCPInfo
GlobalFindAtomA
GetStringTypeW
lstrcmpiW
FormatMessageA
FileTimeToDosDateTime
UnlockFile
GetVolumeInformationA
lstrcpynA
GetConsoleCP
SetCurrentDirectoryW
GetConsoleOutputCP
SuspendThread
CreateThread
UnmapViewOfFile
InterlockedExchange
HeapReAlloc
GlobalAddAtomA
ResetEvent
ConvertDefaultLocale
GetTempFileNameA
LeaveCriticalSection
GetPrivateProfileSectionNamesA
Sleep
CreateFileMappingA
lstrcpyA
GlobalSize
GetStringTypeA
SetFileAttributesA
GetEnvironmentStringsW
CopyFileA
DuplicateHandle
GetTimeFormatA
GetSystemTimeAsFileTime
GetCurrentDirectoryA
ReleaseSemaphore
GetEnvironmentStrings
lstrcpynW
GlobalReAlloc
LCMapStringA
FindResourceExA
FreeEnvironmentStringsA
ExitThread
GetSystemInfo
GlobalLock
MapViewOfFile
FindNextFileW
CreateFileA
lstrcatA
LocalReAlloc
GetCurrentProcess
ReleaseMutex
GlobalFree
CreateEventA
GetModuleHandleA
SetFilePointer
FindResourceA
WritePrivateProfileStringW
TlsSetValue
GetProcAddress
UnhandledExceptionFilter
TlsAlloc
GetStartupInfoW
ReadFile
FlushFileBuffers
GetDriveTypeA
GetTempPathA
GetLastError
_llseek
GetVolumeInformationW
HeapDestroy
MulDiv
LoadLibraryExW
lstrlenA
GetFullPathNameA
TlsFree
HeapSize
InterlockedIncrement
SetHandleCount
SetUnhandledExceptionFilter
GetVersion
GetWindowsDirectoryA
VirtualFree
GetStartupInfoA
GetFileAttributesA
TlsGetValue
IsValidLocale
IsBadWritePtr
WaitForSingleObject
GetLogicalDriveStringsW
IsBadStringPtrA
QueryPerformanceCounter
GetUserDefaultLCID
CreateMutexA
GlobalFindAtomW
GetDiskFreeSpaceA
GetThreadLocale
GetCommandLineW
LCMapStringW
LockResource
HeapCreate
lstrcmpW
GetCurrentProcessId
GlobalHandle
GetModuleHandleW
MultiByteToWideChar
GetFileType
TerminateProcess
SetEnvironmentVariableA
GetModuleFileNameA
LoadResource
GetLocaleInfoA
LoadLibraryA
DeleteFileW
lstrlenW
CreateMutexW
GetSystemDefaultLCID
QueryPerformanceFrequency
FindClose
GlobalUnlock
FileTimeToLocalFileTime
GlobalMemoryStatus
SetEvent
EnumResourceLanguagesA
RtlUnwind
LocalAlloc
lstrcmpA
lstrcmpiA
FreeLibrary
EnumSystemLocalesA
TerminateThread
RaiseException
IsBadCodePtr
SizeofResource
IsDebuggerPresent
FileTimeToSystemTime
_lclose
MoveFileW
GetShortPathNameA
GetModuleFileNameW
CreateFileW
GetVersionExW
InterlockedDecrement
GetTimeZoneInformation
SystemTimeToFileTime
IsBadReadPtr
GetDriveTypeW
SetStdHandle
LockFile
GetLocaleInfoW
FreeEnvironmentStringsW
GetFileSize
HeapFree
EnterCriticalSection
WriteFile
DeleteFileA
CreateFileMappingW
GlobalFlags
WideCharToMultiByte
HeapAlloc
LocalLock
WaitForMultipleObjects
CreateProcessW
LoadLibraryW
CompareStringW
CompareStringA
CloseHandle
GetDateFormatA
LocalFree
CreateProcessA
GetTickCount
_lread

user32

CreateAcceleratorTableA
BringWindowToTop
GetWindowDC
BeginPaint
GetDlgItem
GetDCEx
SetActiveWindow
GetScrollRange
DispatchMessageA
IsWindowEnabled
CopyIcon
WindowFromDC
PostMessageW
GetSysColorBrush
GetWindowLongA
InvalidateRect
GetForegroundWindow
PostQuitMessage
GetTopWindow
FindWindowW
FindWindowA
MapVirtualKeyW
EnumWindows
SendMessageW
TranslateMessage
ReuseDDElParam
AppendMenuW
EndDeferWindowPos
ChildWindowFromPoint
SetWindowsHookExA
DialogBoxParamA
SetPropA
SetScrollInfo
UnpackDDElParam
GetWindowThreadProcessId
UnregisterClassA
DefWindowProcW
MessageBoxA
LoadCursorA
SetParent
GetSubMenu
GetMenuItemCount
SetScrollPos
InvalidateRgn
DeferWindowPos
DestroyCursor
ReleaseCapture
GetClassInfoA
SetMenu
PeekMessageW
EnableScrollBar
CopyAcceleratorTableA
ShowWindow
GetMessageTime
wsprintfA
WaitForInputIdle
DrawIconEx
IsDialogMessageA
SetWindowTextA
GetKeyState
DispatchMessageW
GetMenu
ModifyMenuA
FillRect
ScreenToClient
RedrawWindow
CopyRect
DrawFrameControl
GetDlgCtrlID
DrawFocusRect
GetMenuStringA
SetTimer
LockWindowUpdate
OpenClipboard
UnregisterClassW
GetMenuItemID
UpdateWindow
GetWindowTextLengthW
SetWindowTextW
GetMenuItemInfoA
GetMenuState
SetPropW
GetFocus
ShowScrollBar
CopyImage
GetMessageA
GetMenuCheckMarkDimensions
IsRectEmpty
GetSysColor
SystemParametersInfoA
IsWindowVisible
DrawTextW
LoadBitmapA
SetMenuItemBitmaps
CloseClipboard
DrawTextA
CreateWindowExA
GetLastActivePopup
RegisterWindowMessageW
SetMenuItemInfoA
SetWindowRgn
SendDlgItemMessageA
SetCursorPos
GetNextDlgGroupItem
ModifyMenuW
GetClassLongA
IsDlgButtonChecked
GetWindowTextA
MessageBoxW
LoadAcceleratorsA
GetPropA
FrameRect
SetCapture
RegisterClassExA
IsClipboardFormatAvailable
GetCursor
AdjustWindowRectEx
LoadMenuA
EndPaint
InflateRect
DefWindowProcA
IsDialogMessageW
SetRectEmpty
SetFocus
LoadMenuW
RegisterWindowMessageA
GetDC
TrackPopupMenuEx
EmptyClipboard
IntersectRect
RegisterClipboardFormatA
GetNextDlgTabItem
GetClipboardData
MapWindowPoints
GetSystemMenu
SetWindowPos
DeleteMenu
SetMenuDefaultItem
GetIconInfo
DdeQueryStringA
CallNextHookEx
LoadStringA
PeekMessageA
CheckMenuRadioItem
TranslateMDISysAccel
GetSystemMetrics
GetClassNameW
GetCursorPos
SetRect
IsMenu
MoveWindow
SendMessageA
MessageBeep
CreatePopupMenu
GetDesktopWindow
UnhookWindowsHookEx
SendDlgItemMessageW
PostMessageA
CharNextW
GetClassNameA
SetCursor
KillTimer
EnableWindow
SetForegroundWindow
TabbedTextOutA
WindowFromPoint
ClientToScreen
GetMessagePos
SetWindowContextHelpId
HideCaret
DialogBoxIndirectParamA
PostThreadMessageW
BeginDeferWindowPos
LoadIconW
IsIconic
GetMenuItemInfoW
InsertMenuItemW
LoadImageA
WinHelpA
GetDlgItemTextA
GetWindow
IsWindow
SystemParametersInfoW
DrawEdge
CallWindowProcW
DefMDIChildProcW
GetAsyncKeyState
ValidateRect
TrackPopupMenu
RegisterClassA
GetWindowTextLengthA
OffsetRect
GetWindowLongW
DestroyWindow
ChangeClipboardChain
PtInRect
GetParent
RegisterClassW
CreateIconIndirect
DrawIcon
GetWindowPlacement
InsertMenuItemA
DestroyIcon
DrawTextExW
RemovePropA
EndDialog
AppendMenuA
CreateCursor
CallWindowProcA
GetCapture
SetCaretPos
InsertMenuA
GetClassInfoExA
GetActiveWindow
EnumChildWindows
CharUpperA
TranslateAcceleratorA
GrayStringA
GetScrollPos
DrawTextExA
LoadIconA
LoadImageW
IsChild
GetKeyboardState
SetClipboardData
CheckDlgButton
GetScrollInfo
CheckMenuItem
GetMessageW
GetWindowTextW
ShowOwnedPopups
SetWindowLongW
DestroyMenu
GetClientRect
GetDialogBaseUnits
EnableMenuItem
keybd_event
IsZoomed
IsWindowUnicode
SetWindowsHookExW
DefFrameProcW
GetWindowRect
CharNextA
UnionRect

oleaut32

LoadTypeLi

ole32

CoTaskMemRealloc
CLSIDFromString
OleDestroyMenuDescriptor
ReleaseStgMedium
CoRevokeClassObject
OleTranslateAccelerator
OleSetClipboard
OleCreateMenuDescriptor
CoReleaseMarshalData
CreateBindCtx
OleGetClipboard
CoRegisterClassObject
DoDragDrop
OleIsCurrentClipboard
CoLockObjectExternal
OleRegGetUserType
OleRun
GetRunningObjectTable
OleCreateStaticFromData
OleDuplicateData
CoTreatAsClass
CreateClassMoniker
CreateStreamOnHGlobal
CoInitialize
ProgIDFromCLSID
IsAccelerator
RevokeDragDrop
WriteClassStm
StgIsStorageILockBytes
CoUninitialize
CoGetClassObject
StgOpenStorageOnILockBytes
CreateItemMoniker
CoTaskMemFree
OleLoadFromStream
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
OleRegEnumVerbs
StgCreateDocfileOnILockBytes
CoCreateInstance
OleLockRunning
GetClassFile
CoRegisterMessageFilter
CoTaskMemAlloc
CoMarshalInterface
StringFromGUID2
RegisterDragDrop
OleSaveToStream
WriteClassStg
CreateGenericComposite
StringFromCLSID
OleInitialize
CreateDataAdviseHolder
StgCreateDocfile
OleRegGetMiscStatus

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b8a049ccf92534dc1607f570dbbe660f

Headers

File Characteristics

Imports

comdlg32

winspool.drv

wsock32

comctl32

kernel32

user32

oleaut32

ole32

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 144KB - Virtual size: 142KB

.data Size: 80KB - Virtual size: 86KB

.rsrc Size: 32KB - Virtual size: 29KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 144KB - Virtual size: 142KB

.data
Size: 80KB - Virtual size: 86KB

.rsrc
Size: 32KB - Virtual size: 29KB