f43ea8ced3828277685519d5142ccbb17517e68259f08ffdd4498bef01605fb2

Sharing

Copy URL Twitter E-mail

General

Target

f43ea8ced3828277685519d5142ccbb17517e68259f08ffdd4498bef01605fb2
Size

361KB
MD5

30dddfc598bcced21a3ec18e43dd4325
SHA1

37cae28e646d82af384d35cda74bbb9e35d85134
SHA256

f43ea8ced3828277685519d5142ccbb17517e68259f08ffdd4498bef01605fb2
SHA512

ed67c1322a6e8f6d4412e76a8e0ca5edfe66d43efe812954d9243aa4524faa1ea9d087f8be0bdc0a14e2dfdaa01ef62faf90a0c9d7d8bc11d9d0611a7d5aae00
SSDEEP

6144:l8+ZCrRtcz+gNhu/rlpR3w16wsVCBvWkHKWiRhyYL5Gfc7hyBoq2Q0M:u+ZCrRt96h4a6/m+kqH6YLuckB

Score

N/A

Malware Config

Signatures

Files

f43ea8ced3828277685519d5142ccbb17517e68259f08ffdd4498bef01605fb2
.exe windows x86

b084f5333501e1ac8027716d0dd7f289

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetStdHandle
LoadLibraryW
CreateFileW
HeapReAlloc
GetStringTypeW
CreateFileA
WaitForSingleObject
HeapSize
GetCurrentProcessId
SetEndOfFile
GetProcessHeap
CompareStringW
CloseHandle
FindNextFileA
GetProfileStringA
LocalAlloc
FindClose
GlobalFree
GetThreadLocale
GetLastError
FindFirstFileA
GlobalUnlock
HeapCreate
CreateEventA
GlobalAlloc
GetDateFormatA
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetTimeZoneInformation
GlobalLock
HeapAlloc
FreeLibrary
GetFullPathNameA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
ReadFile
SetFilePointer
GetModuleFileNameW
WriteFile
ExitProcess
SetEnvironmentVariableA
InterlockedIncrement
InterlockedDecrement
EncodePointer
DecodePointer
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
RtlUnwind
WideCharToMultiByte
LCMapStringW
MultiByteToWideChar
GetCPInfo
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThreadId
GetProcAddress
IsProcessorFeaturePresent
WriteConsoleW

user32

GetMenuItemCount
SetWindowTextA
DdeInitializeA
EnumDesktopsA
GetMenuStringA
GetCursorPos
ReleaseDC
GetMenu
GetDC
GetMenuItemID
SetTimer
wsprintfA
CharNextA
GetMonitorInfoA
DlgDirListA

gdi32

BitBlt
DeleteDC
CreateDIBSection
StretchBlt
CreateFontIndirectA
CreatePalette
CreateBitmap
DeleteObject
SelectObject
CreateCompatibleDC
RealizePalette
CreateBitmapIndirect
SelectPalette
GetTextExtentPointA
GetTextMetricsA
CreateICA
GetObjectA
TextOutW
UpdateColors
TextOutA
SetLayout

winspool.drv

GetPrinterDriverA
ClosePrinter
DeviceCapabilitiesA
OpenPrinterA
SetPrinterDataExA

advapi32

RegNotifyChangeKeyValue
RegOpenKeyExA
InitializeSecurityDescriptor
RegCloseKey

shell32

Shell_NotifyIconA
SHParseDisplayName

ole32

CoUninitialize
CreateStreamOnHGlobal
CoInitialize

oleaut32

OleLoadPicture

Sections

.text
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b084f5333501e1ac8027716d0dd7f289

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 174KB - Virtual size: 174KB

.rdata Size: 133KB - Virtual size: 133KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 47KB - Virtual size: 46KB

.text
Size: 174KB - Virtual size: 174KB

.rdata
Size: 133KB - Virtual size: 133KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 47KB - Virtual size: 46KB