f240ca7798ffa53a4fc8433d15e117fa79c8a32877d316fdf61a12aef2486891

Sharing

Copy URL Twitter E-mail

General

Target

f240ca7798ffa53a4fc8433d15e117fa79c8a32877d316fdf61a12aef2486891
Size

159KB
MD5

3c12fb25f6655a87abb71abf65627bfe
SHA1

b63d5e4fe5971f9b0d07a5a296c511e6cf4c630f
SHA256

f240ca7798ffa53a4fc8433d15e117fa79c8a32877d316fdf61a12aef2486891
SHA512

ef76e936f1cc99296c78edbe38ac65cd09400b652ecb63459a8c959071a42f3f5afb0c4989392c55ef7a3b3d3c963d7759bec35e94b4b2a994133ff3565d89d7
SSDEEP

3072:SpvP6+B67EpTOtc8l4sDNvK7TskAg0Funbzrn8REyLlJEP:Spa+B6KT8rDNg3AO3AREyLlJEP

Score

N/A

Malware Config

Signatures

Files

f240ca7798ffa53a4fc8433d15e117fa79c8a32877d316fdf61a12aef2486891
.exe windows x86

509160348a360c70876f5c1988a65f14

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED
IMAGE_FILE_SYSTEM

Imports

kernel32

SetFilePointer
RaiseException
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
Sleep
LoadLibraryW
CloseHandle
CreateFileA
HeapSize
SetStdHandle
WriteConsoleW
MultiByteToWideChar
LCMapStringW
GetStringTypeW
HeapReAlloc
IsProcessorFeaturePresent
FlushFileBuffers
SetEndOfFile
GetProcessHeap
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
ReadFile
CreateFileW
LocalFree
TlsSetValue
TlsGetValue
TlsAlloc
DeleteCriticalSection
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetLastError
HeapCreate
FormatMessageA
GetCurrentProcess
HeapAlloc
lstrlenA
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
HeapFree
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DecodePointer
EncodePointer
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle

user32

ReleaseDC
CreateWindowExA
RegisterClassA
DrawFrameControl
DialogBoxParamA
LoadCursorA
UpdateWindow
CallMsgFilterA
LoadImageA
ShowWindow
GetMenuItemInfoA
GetSysColor
SetWindowRgn
IsMenu
SendDlgItemMessageA
DrawTextW
LoadBitmapA
GetWindowTextW
LoadIconA
GetClientRect
SendMessageA
GetDC
GetMenu
MessageBoxA
InvalidateRect
CreateWindowStationA
GetDesktopWindow

gdi32

CreateEllipticRgn
MoveToEx
EndPage
LineTo
StartPage
SetTextColor
DeleteDC
CreateFontIndirectW
CreateFontIndirectA
GetDIBits
SetBkMode
DeleteObject
SelectObject
CreateCompatibleDC
Rectangle
StartDocA
SetDCPenColor
ChoosePixelFormat
SetPixelFormat
EndDoc
GetStockObject
CreateSolidBrush
EnumFontsA
TextOutA

winspool.drv

OpenPrinterA
ClosePrinter
DeletePrinter

comdlg32

ChooseColorA
PrintDlgA

advapi32

CryptAcquireContextA
OpenProcessToken
LookupPrivilegeValueA

ole32

CreateStreamOnHGlobal

oleaut32

OleTranslateColor

wininet

InternetGetLastResponseInfoA
InternetCloseHandle
InternetOpenA
InternetSetStatusCallback

winmm

timeGetTime

crypt32

CertCreateCertificateContext
CertFreeCertificateContext

comctl32

ImageList_GetImageInfo
ImageList_Create
ImageList_GetImageCount
ImageList_AddMasked
InitCommonControlsEx

uxtheme

DrawThemeBackground
DrawThemeParentBackground
GetThemeSysFont
IsThemeBackgroundPartiallyTransparent

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

509160348a360c70876f5c1988a65f14

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

ole32

oleaut32

wininet

winmm

crypt32

comctl32

uxtheme

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 59KB - Virtual size: 59KB

.data Size: 5KB - Virtual size: 12KB

.rsrc Size: 29KB - Virtual size: 29KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 59KB - Virtual size: 59KB

.data
Size: 5KB - Virtual size: 12KB

.rsrc
Size: 29KB - Virtual size: 29KB