b16fa4d03540790028e41f5a37e1281e93f27c97979cef1f9776b621d0c28061

Sharing

Copy URL Twitter E-mail

General

Target

b16fa4d03540790028e41f5a37e1281e93f27c97979cef1f9776b621d0c28061
Size

528KB
MD5

7b8e44dbe821176ca7908b1c7576e728
SHA1

39b8c535903cd04b9991d1a8241e4ca237d18a95
SHA256

b16fa4d03540790028e41f5a37e1281e93f27c97979cef1f9776b621d0c28061
SHA512

b73676bfa08c90cd7192eb6b38206e347357c848d22398fbda29cd683fff9c1b3d8675a819f9390e6a0c2d9b39f5d91327ebec4343caad590fc770409e56b80f
SSDEEP

12288:5H742nr8tlDA0KuNuJpo3UvpLzT2wknjV5hnBV0o:5H7/nwttA0KYu/B1zT2hjd/0

Score

N/A

Malware Config

Signatures

Files

b16fa4d03540790028e41f5a37e1281e93f27c97979cef1f9776b621d0c28061
.exe windows x86

3347924588ee2241099d22c4fcd15149

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

LookupAccountSidA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
QueryServiceStatus
RegOpenKeyA
FreeSid
RegSetValueExA

kernel32

CreateMutexA
HeapAlloc
GetStdHandle
GetCurrentProcess
MultiByteToWideChar
TerminateProcess
GetEnvironmentStringsW
HeapReAlloc
InterlockedIncrement
GetOEMCP
ReadFile
SetLastError
IsValidCodePage
SetEnvironmentVariableA
IsDebuggerPresent
WriteConsoleW
VirtualQuery
UnhandledExceptionFilter
GetStringTypeA
VirtualFree
GetACP
GetCPInfo
SetFilePointer
InterlockedExchange
HeapFree
GetTimeFormatA
VirtualAlloc
WriteConsoleA
TlsFree
GetStringTypeW
GetStartupInfoA
HeapSize
FreeEnvironmentStringsW
RaiseException
FreeEnvironmentStringsA
GetCurrentProcessId
LCMapStringW
InterlockedDecrement
CloseHandle
GetCurrentThreadId
WriteFile
GetModuleHandleW
GetConsoleOutputCP
GetConsoleCP
FlushFileBuffers
HeapCreate
GetDateFormatA
GetSystemTimeAsFileTime
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
QueryPerformanceCounter
SetHandleCount
TlsAlloc
SetUnhandledExceptionFilter
GetConsoleMode
LeaveCriticalSection
DeleteCriticalSection
CompareStringW
WideCharToMultiByte
GetLocaleInfoA
CompareStringA
TlsGetValue
Sleep
TlsSetValue
GetCommandLineA
GetModuleHandleA
RtlUnwind
GetLastError
GetProcAddress
GetModuleFileNameA
CreateFileA
GetFileType
SetStdHandle
ExitProcess
LoadLibraryA
LCMapStringA
GetTickCount
GetEnvironmentStrings
GetTimeZoneInformation

mfc42

ord1576

version

GetFileVersionInfoA
GetFileVersionInfoSizeA

gdi32

CreateBitmap
CreatePen
AbortDoc
StretchDIBits
GetBkColor
CreateRectRgn
ScaleWindowExtEx
GetTextExtentPoint32A
GetTextExtentPointA
CreateDCA
FillRgn
ExtTextOutA
DeleteMetaFile
PolylineTo
GetTextMetricsA
GetObjectA
GetTextColor
SetBkColor
SetPaletteEntries
CreateEllipticRgnIndirect
CreateFontIndirectA
GetBkMode
SetTextColor
CreateHalftonePalette
Arc
ScaleViewportExtEx
CreatePenIndirect
OffsetRgn
GetTextAlign
SetArcDirection
GetRgnBox
SetStretchBltMode
DeleteDC
PolyPolygon
SetWindowOrgEx
CreateBrushIndirect
RoundRect

ole32

CoTaskMemFree
CoDisconnectObject
WriteFmtUserTypeStg
SetConvertStg
OleInitialize
StgOpenStorage
CoTreatAsClass
ReadClassStg
ReadFmtUserTypeStg

comctl32

ImageList_AddMasked
ImageList_BeginDrag
ImageList_Remove
ImageList_GetIcon
ImageList_GetIconSize
ImageList_LoadImageA
ord17
ImageList_Replace
ImageList_Draw
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_DragMove
ImageList_Create
ImageList_Add
ImageList_ReplaceIcon
ImageList_EndDrag
ImageList_Destroy
ImageList_DragLeave
_TrackMouseEvent
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_GetImageInfo

user32

GetWindowThreadProcessId
SetMenuDefaultItem
SetDlgItemInt
SendDlgItemMessageA
SetActiveWindow
ReleaseDC
CloseClipboard
DestroyWindow
GetDlgItem
SetMenu
MessageBeep
SetScrollInfo
DrawTextA
ReleaseCapture
TrackPopupMenu
SetFocus
wsprintfA
IsDialogMessageA
GetParent
CopyRect
InvalidateRgn
SetCaretPos
EndDialog
CharNextA
SetCapture
LoadMenuA
DestroyMenu
GetFocus
GetCursorPos
RegisterClassA
PeekMessageA
MessageBoxA
GetMessageA
EmptyClipboard
GetSysColorBrush
CallNextHookEx
PostMessageA
ModifyMenuA
GetDesktopWindow
GetClassInfoA
CreateDialogIndirectParamA
LoadIconA
SystemParametersInfoA
GetSystemMenu
IsMenu
GetActiveWindow
DialogBoxParamA
PtInRect
LoadBitmapA
RemovePropA
InsertMenuA
DeleteMenu
OffsetRect
GetMessagePos
UnhookWindowsHookEx
DispatchMessageA
DestroyCaret
CreateIconIndirect
CharLowerA
InflateRect
EnableWindow
PostQuitMessage
FillRect
ShowWindow
GetNextDlgTabItem
EnumWindows
InvalidateRect
RegisterClassExA
IsWindowVisible
SetRect
MapWindowPoints
SetDlgItemTextA
IntersectRect
GetWindowPlacement
GetSysColor
GetWindow
CheckMenuItem
SetCursor
GetSystemMetrics
DestroyCursor
CharUpperA
IsChild
BeginPaint
DrawFrameControl
TranslateMessage
LockWindowUpdate
IsWindow
EnableMenuItem
LoadStringA
SetWindowLongA
EndPaint
SetParent
IsDlgButtonChecked
MoveWindow
LoadImageA
SetWindowTextA
DestroyIcon
LoadCursorA
KillTimer
RedrawWindow
FrameRect
GetWindowLongA
SetForegroundWindow
GetKeyState
SetWindowRgn
GetWindowTextLengthA
DefWindowProcA
CreateWindowExA
IsIconic
ClientToScreen
SetTimer
GetClientRect
DrawFocusRect
RegisterWindowMessageA

shell32

SHGetFileInfoA
SHGetPathFromIDListA
ord155

wininet

InternetOpenA
InternetCloseHandle

winspool.drv

OpenPrinterA
ord204
EnumPrintersA
GetPrinterA
DocumentPropertiesA
DeviceCapabilitiesA
ClosePrinter

comdlg32

PrintDlgA
CommDlgExtendedError

Sections

.text
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 272KB - Virtual size: 270KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3347924588ee2241099d22c4fcd15149

Headers

File Characteristics

Imports

advapi32

kernel32

mfc42

version

gdi32

ole32

comctl32

user32

shell32

wininet

winspool.drv

comdlg32

Sections

.text Size: 124KB - Virtual size: 122KB

.rdata Size: 272KB - Virtual size: 270KB

.data Size: 76KB - Virtual size: 105KB

.rsrc Size: 52KB - Virtual size: 48KB

.text
Size: 124KB - Virtual size: 122KB

.rdata
Size: 272KB - Virtual size: 270KB

.data
Size: 76KB - Virtual size: 105KB

.rsrc
Size: 52KB - Virtual size: 48KB