7742f5829ac73be1d5602751f4d49e82ba31c3dbb91cf5e4951e5ab5d9ebe210

Sharing

Copy URL Twitter E-mail

General

Target

7742f5829ac73be1d5602751f4d49e82ba31c3dbb91cf5e4951e5ab5d9ebe210
Size

265KB
MD5

ca1fa261d6709763b061dca54e62127a
SHA1

3ef55687922e4f4b3b6d43cc7081f4d6a99f7151
SHA256

7742f5829ac73be1d5602751f4d49e82ba31c3dbb91cf5e4951e5ab5d9ebe210
SHA512

dcdf73fd6d7f72ce477283c1dc526e2b653a520f7ea43a8b7991eb754e0a2e178abb7faf556c1fbf6484ba3a75ac4f8cdb2fc547d19c1d246887627831531eed
SSDEEP

6144:3CxFyz36ImHLyQTszN2b9kqz23klRWQp8JsCc:3CD01g2cMNybzok3WQmeCc

Score

N/A

Malware Config

Signatures

Files

7742f5829ac73be1d5602751f4d49e82ba31c3dbb91cf5e4951e5ab5d9ebe210
.exe windows x86

7691b540404e61783ac96d3f22857d82

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

ord204
GetPrinterW
GetJobW
DocumentPropertiesA
OpenPrinterW
ClosePrinter
WritePrinter
EndDocPrinter
EnumPrintersW
GetPrinterDriverA
SetPrinterA
DeviceCapabilitiesW
SetPrinterW
OpenPrinterA
DeviceCapabilitiesA

user32

EndDialog
GetWindowPlacement
GetClassLongA
GetMenuCheckMarkDimensions
SetClipboardViewer
SetMenu
MessageBoxW
GrayStringA
SetCapture
SetWindowsHookExA
SetWindowLongA
AdjustWindowRectEx
GetPropA
CreateWindowExW
DispatchMessageA
GetNextDlgTabItem
TrackPopupMenuEx
GetClientRect
EqualRect
IsZoomed
InsertMenuW
MessageBoxA
DrawMenuBar
GetMenuItemID
SetCaretPos
SetTimer
SystemParametersInfoW
FillRect
DestroyIcon
SetScrollPos
MapDialogRect
GetMessageA
SetPropA
SetMenuItemInfoA
IsDialogMessageA
FindWindowA
GetMenuItemInfoA
WindowFromDC
GetClassLongW
AppendMenuA
ShowScrollBar
RegisterHotKey
GetSystemMetrics
EnableMenuItem
SetMenuItemBitmaps
GetClassNameA
SetPropW
RemovePropA
InsertMenuItemA
ReuseDDElParam
ScreenToClient
SetDlgItemTextA
GetUserObjectInformationA
PeekMessageW
GetSysColorBrush
SetScrollInfo
CloseWindowStation
GetWindowTextA
GetLastActivePopup
wvsprintfA
LoadMenuA
CreateAcceleratorTableA
OpenClipboard
TranslateMessage
LoadStringA
GetMenuItemCount
WinHelpW
IsWindowEnabled
DeferWindowPos
RegisterClipboardFormatW
InsertMenuA
RegisterWindowMessageA
SetCursor
SetWindowTextA
EnableWindow
GetMonitorInfoA
TranslateMDISysAccel
GetMessagePos
GetScrollRange
GetWindowDC
LoadCursorA
CallNextHookEx
SetParent
BeginDeferWindowPos
OemToCharA
CopyImage
InvertRect
GetCaretPos
GetDlgCtrlID
DeleteMenu
DrawIconEx
GetDialogBaseUnits
IsCharAlphaNumericA
ExcludeUpdateRgn
SendMessageW
GetSubMenu
PostThreadMessageA
ReleaseDC
GetNextDlgGroupItem
LoadIconW
DrawFocusRect
ShowWindowAsync
GetCursorPos
CloseDesktop
BeginPaint
WinHelpA
DefWindowProcA
ModifyMenuA
GetUpdateRect
GetWindow
GetClassInfoW
DrawTextW
DispatchMessageW
SetMenuDefaultItem
GetCapture
wsprintfW
InvalidateRgn
InvalidateRect
GetFocus
CheckMenuItem
CopyIcon
GetMenuState
IsWindow
GetClipboardData
SetFocus
PostMessageW
CharUpperA
WindowFromPoint
TrackPopupMenu
PostQuitMessage
RemovePropW
CallWindowProcA
CheckRadioButton
IsChild
SetDlgItemInt
SetWindowContextHelpId
GetMenuStringA
DrawTextExW
GetWindowRgn
CreateDialogParamA
ReleaseCapture
GetDC
FindWindowExA
GetTopWindow
HideCaret
DrawTextExA
SetActiveWindow
MsgWaitForMultipleObjectsEx
GetClassInfoExA
IsIconic
DestroyWindow
GetTabbedTextExtentA
wsprintfA
IsMenu
GetParent
UnregisterClassA
KillTimer
UnpackDDElParam
UnhookWindowsHookEx
DestroyCursor
GetDlgItem
CreateWindowExA
LoadBitmapA
GetClassInfoA
GetKeyState
GetMenu
CharNextA
RegisterClipboardFormatA
ClientToScreen
SetRectEmpty
SetForegroundWindow
ValidateRect
RedrawWindow
DdeInitializeA
AttachThreadInput
MoveWindow
ShowOwnedPopups
UnionRect
GetQueueStatus
RegisterClassA
GetIconInfo
GetSysColor
FlashWindow
DrawFrameControl
TabbedTextOutA
SystemParametersInfoA
OpenDesktopA
SetRect
CopyAcceleratorTableA
IsWindowVisible
DialogBoxParamW
AppendMenuW
CharLowerA
DestroyMenu
mouse_event
GetActiveWindow
DrawEdge
EndPaint
GetScrollInfo
DialogBoxParamA
LoadAcceleratorsA
EndDeferWindowPos
PeekMessageA
LoadImageA
GetWindowThreadProcessId
LoadBitmapW
OpenWindowStationA
GetMessageW
GetDCEx
SetWindowPlacement
SetWindowPos
SetWindowsHookExW
GetForegroundWindow
GetMenuStringW
LoadImageW
TranslateAcceleratorA
GetWindowTextLengthA
DrawTextA
OpenInputDesktop
DrawIcon
SetWindowLongW
OffsetRect
RegisterClassExA
IsClipboardFormatAvailable
SetWindowRgn
ShowWindow
CloseClipboard
GetMessageTime
PostMessageA
PostThreadMessageW
CopyRect
UpdateWindow
SendDlgItemMessageA
SendMessageA
DestroyAcceleratorTable
MapWindowPoints
GetSystemMenu
GetDesktopWindow
GetWindowRect
DrawStateA
InflateRect
LoadIconA
FrameRect
CreateMenu

oleaut32

LoadTypeLi

ole32

CoTaskMemAlloc
OleSave
OleQueryCreateFromData
CLSIDFromProgID
CoTreatAsClass
OleRegGetMiscStatus
CoRevokeClassObject
OleQueryLinkFromData
DoDragDrop
OleCreateFromFile
OleFlushClipboard
OleCreateLinkFromData
OleIsRunning
ReleaseStgMedium
OleCreateFromData
OleGetIconOfClass
CreateDataAdviseHolder
OleRun
OleSetMenuDescriptor
WriteFmtUserTypeStg
GetClassFile
StgCreateDocfileOnILockBytes
OleDestroyMenuDescriptor
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoTaskMemRealloc
WriteClassStg
CoCreateGuid
CreateFileMoniker
RevokeDragDrop
OleUninitialize
CreateItemMoniker
SetConvertStg
CLSIDFromString
CoUninitialize
CoGetMalloc
CreateOleAdviseHolder
CoRegisterMessageFilter
StringFromCLSID
OleGetClipboard
StgIsStorageFile
IsAccelerator
CoDisconnectObject
OleCreateLinkToFile
RegisterDragDrop
OleDuplicateData
CoInitialize
OleSaveToStream
CoGetClassObject
CoLockObjectExternal
OleLockRunning
OleRegEnumVerbs
StgCreateDocfile
OleSetContainedObject
StgOpenStorageOnILockBytes
OleSetClipboard
StgIsStorageILockBytes
ReadFmtUserTypeStg
StringFromGUID2
CoFreeUnusedLibraries
OleCreate
OleTranslateAccelerator
CreateBindCtx
CoCreateInstance
StgOpenStorage
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
CoTaskMemFree
GetHGlobalFromILockBytes
OleInitialize
CreateGenericComposite
OleRegGetUserType

wsock32

WSACleanup

kernel32

CopyFileA
SetEnvironmentVariableA
GetCurrentThread
CreateDirectoryA
VirtualFree
GetConsoleCP
lstrcpynA
RaiseException
FreeConsole
GetLocaleInfoA
WriteConsoleW
GetVersionExW
GetSystemTime
GetUserDefaultLCID
GetCurrentProcessId
WriteConsoleA
GetStartupInfoA
GetTimeFormatW
GetFileInformationByHandle
ResumeThread
InitializeCriticalSectionAndSpinCount
GetShortPathNameW
CloseHandle
GetWindowsDirectoryA
GetTimeZoneInformation
SetFilePointer
lstrlenA
WaitForSingleObject
FreeResource
GlobalGetAtomNameA
DuplicateHandle
FreeEnvironmentStringsW
UnhandledExceptionFilter
GetStdHandle
VirtualQuery
MoveFileA
MapViewOfFile
Beep
FormatMessageW
HeapDestroy
CreateEventW
GetCPInfo
HeapFree
HeapCreate
CreatePipe
GetVersionExA
SetFileAttributesA
QueryPerformanceCounter
WinExec
ConvertDefaultLocale
TerminateThread
TlsAlloc
LoadLibraryExW
LockResource
GetDateFormatA
SetLastError
LocalReAlloc
LoadResource
IsBadCodePtr
DeleteFileW
WideCharToMultiByte
GetCurrentDirectoryA
GetProcessHeap
GlobalDeleteAtom
SetThreadPriority
RemoveDirectoryA
lstrcpyA
InterlockedDecrement
GetModuleHandleW
FileTimeToLocalFileTime
CompareStringW
OutputDebugStringA
GetFullPathNameA
HeapReAlloc
InitializeCriticalSection
GetVolumeInformationA
GlobalAlloc
GetExitCodeProcess
LockFile
lstrcmpiA
SetCurrentDirectoryA
GetExitCodeThread
IsBadReadPtr
WritePrivateProfileStringA
GetProfileStringA
OpenMutexA
SetEndOfFile
GetStringTypeW
IsValidLocale
LocalAlloc
LoadLibraryExA
IsDebuggerPresent
lstrcmpA
MulDiv
VirtualAlloc
GetSystemDirectoryA
FlushFileBuffers
CompareStringA
LocalFree
GetStringTypeA
IsBadWritePtr
GetSystemInfo
GetThreadLocale
ReleaseMutex
IsValidCodePage
GetStartupInfoW
SetStdHandle
GetFileAttributesA
GetModuleFileNameW
ResetEvent
GetEnvironmentVariableA
GlobalAddAtomA
RtlUnwind
InterlockedIncrement
WriteFile
EnumSystemLocalesA
MultiByteToWideChar
LeaveCriticalSection
GetLocaleInfoW
GetProcAddress
GetFileSize
GetConsoleMode
DeleteFileA
GetSystemTimeAsFileTime
GetTempPathA
DeleteCriticalSection
GetOEMCP
UnmapViewOfFile
FindNextFileA
TerminateProcess
TlsFree
lstrlenW
GetModuleHandleA
GlobalLock
SizeofResource
DeviceIoControl
GetUserDefaultLangID
ExitThread
GetShortPathNameA
GetTimeFormatA
GetCommandLineA
LCMapStringA
LoadLibraryA
GetCurrentThreadId
GlobalFree
SetConsoleCtrlHandler
FindResourceA
SetEnvironmentVariableW
GetVersion
FreeEnvironmentStringsA
GetDiskFreeSpaceA
CreateEventA
LCMapStringW
ReadFile
SetHandleCount
GetModuleFileNameA
GetProcessVersion
GetCommandLineW
FindFirstFileA
FileTimeToDosDateTime
GetACP
GetLocalTime
GetPrivateProfileStringA
FreeLibrary
GlobalUnlock
GetTickCount
CreateFileW
HeapSize
GlobalReAlloc
SetErrorMode
UnlockFile
FatalAppExitA
GetLastError
GetEnvironmentStringsW
lstrcmpW
GetConsoleOutputCP
GetFileType
GetDriveTypeW
GetPrivateProfileStringW
GetThreadPriority
HeapAlloc
ExitProcess
GetFileAttributesW
TlsSetValue
SetFileAttributesW
CreateFileA
SetUnhandledExceptionFilter
TlsGetValue
CreateProcessW
GetTempPathW
OpenProcess
GetLogicalDriveStringsA
GetCurrentProcess
SetEvent
CreateThread
CreateMutexA
EnumResourceLanguagesW
FindClose
GetEnvironmentStrings
Sleep
FormatMessageA
InterlockedExchange
EnterCriticalSection

advapi32

OpenSCManagerW
InitializeAcl
DeregisterEventSource
RegCreateKeyExW
SetSecurityDescriptorGroup
RegEnumKeyExW
QueryServiceStatus
InitializeSecurityDescriptor
AccessCheck
OpenServiceW
SetSecurityDescriptorOwner
ReportEventA
RegQueryValueExW
RegQueryValueExA
RegDeleteKeyW
RegEnumValueA
AddAce
RegisterEventSourceA
RegQueryInfoKeyA
AddAccessAllowedAce
RegQueryValueA
RegQueryInfoKeyW
GetAclInformation
RegSetValueExA
RevertToSelf
GetTokenInformation
CloseServiceHandle
GetLengthSid
LookupAccountNameW
IsValidSid
RegDeleteValueW
RegOpenKeyA
ImpersonateSelf
RegEnumValueW
RegEnumKeyA
RegOpenKeyW
GetSecurityInfo
RegCloseKey
DeleteService
GetSidSubAuthority
FreeSid
RegOpenKeyExA
DeleteAce
SetEntriesInAclW
RegSetValueExW
OpenServiceA
LookupPrivilegeValueA
RegOpenKeyExW
OpenProcessToken
AllocateAndInitializeSid
RegCreateKeyW
CopySid
RegDeleteKeyA
SetSecurityDescriptorDacl
OpenSCManagerA
IsValidSecurityDescriptor
AdjustTokenPrivileges
RegEnumKeyExA
RegCreateKeyExA
InitiateSystemShutdownA
RegDeleteValueA
OpenThreadToken

comctl32

ImageList_DragLeave
ImageList_SetBkColor
ImageList_SetOverlayImage
ImageList_GetImageCount
ImageList_EndDrag
ImageList_Remove
ImageList_DrawEx
ord17
ImageList_GetImageInfo
ImageList_Duplicate
DestroyPropertySheetPage
ImageList_DragShowNolock
ImageList_ReplaceIcon
CreatePropertySheetPageA
ImageList_GetBkColor
ImageList_LoadImageA
ImageList_Create
ImageList_BeginDrag
ImageList_DrawIndirect
PropertySheetA
ImageList_Add
ImageList_AddMasked
InitializeFlatSB
ImageList_Draw
_TrackMouseEvent
InitCommonControlsEx
ImageList_Destroy
ImageList_DragEnter
ImageList_GetIcon
ImageList_SetDragCursorImage
ImageList_GetIconSize
FlatSB_EnableScrollBar
ImageList_DragMove

Sections

.text
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 75KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7691b540404e61783ac96d3f22857d82

Headers

File Characteristics

Imports

winspool.drv

user32

oleaut32

ole32

wsock32

kernel32

advapi32

comctl32

Sections

.text Size: 80KB - Virtual size: 80KB

.rdata Size: 86KB - Virtual size: 85KB

.data Size: 75KB - Virtual size: 102KB

.rsrc Size: 22KB - Virtual size: 22KB

.text
Size: 80KB - Virtual size: 80KB

.rdata
Size: 86KB - Virtual size: 85KB

.data
Size: 75KB - Virtual size: 102KB

.rsrc
Size: 22KB - Virtual size: 22KB