e7b96c9f3a2aa5e128aff12774c04a97f298e88d317df30c682956e7e4db914e

Sharing

Copy URL Twitter E-mail

General

Target

e7b96c9f3a2aa5e128aff12774c04a97f298e88d317df30c682956e7e4db914e
Size

348KB
MD5

1a76fb2efe9d04546fc7cfc7e7a6d117
SHA1

56ccdc425d95cd0234efb203f1763f970c6b8562
SHA256

e7b96c9f3a2aa5e128aff12774c04a97f298e88d317df30c682956e7e4db914e
SHA512

71ac1764fc467eeb6d2c174c46c5d496fe3192d04849ec975064637ee2dfc43823f0298a0d61526159d9988ec8d290e64e388a4c9814578b37961cf24ce4bceb
SSDEEP

6144:F5CyK1YEt5chUxAzMfDaO8BlK2U2yGToWp7B8JKV:F5pK1YEbl5DaO8BxUHGvp7B8J

Score

N/A

Malware Config

Signatures

Files

e7b96c9f3a2aa5e128aff12774c04a97f298e88d317df30c682956e7e4db914e
.exe windows x86

e06cc04f104f2d63db97360c28173d77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadBitmapA
PostMessageA
GetMonitorInfoW
SetRectEmpty
IntersectRect
DrawFrameControl
MoveWindow
ShowScrollBar
SetCursor
SystemParametersInfoW
SetCapture
GetDesktopWindow
GetKeyNameTextW
BringWindowToTop
ValidateRect
IsChild
SystemParametersInfoA
GetScrollRange
GetWindowTextW
FillRect
GetClipboardData
DispatchMessageW
DrawMenuBar
CreateDialogIndirectParamW
GetSystemMetrics
GetPropA
SetClipboardData
SetCursorPos
DefDlgProcA
GetActiveWindow
SetDlgItemTextA
LoadImageW
DrawEdge
PeekMessageW
EqualRect
UnregisterClassA
PostQuitMessage
GetWindowTextLengthW
TranslateMessage
GetUpdateRgn
GetSysColorBrush
GetMenuDefaultItem
TrackPopupMenu
EnumClipboardFormats
GetForegroundWindow
CreatePopupMenu
GetMessageTime
CopyIcon
SetForegroundWindow
LoadImageA
GetTabbedTextExtentA
GetCursorPos
LoadIconA
CheckMenuRadioItem
UnregisterClassW
BeginPaint
IsWindowEnabled
RemoveMenu
MapVirtualKeyExA
PostThreadMessageA
GetSystemMenu
AdjustWindowRectEx
SetTimer
ReuseDDElParam
GetScrollInfo
LockWindowUpdate
SendMessageW
RegisterClipboardFormatA
InsertMenuA
SetWindowLongA
GetClassInfoA
ShowCaret
ModifyMenuA
SetWindowPlacement
TranslateAcceleratorA
DefMDIChildProcA
DestroyMenu
SetWindowTextA
GetClassInfoExA
ReleaseDC
GrayStringA
AdjustWindowRect
LoadBitmapW
TranslateAcceleratorW
EnableMenuItem
SendMessageA
WinHelpW
GetTopWindow
SetActiveWindow
RegisterClassA
CharNextA
RedrawWindow
IsDialogMessageA
EmptyClipboard
EndDialog
GetWindowLongA
GetDlgCtrlID
WindowFromPoint
DispatchMessageA
GetNextDlgGroupItem
MapVirtualKeyA
RegisterClassExA
SetWindowLongW
GetSubMenu
SetWindowRgn
CopyRect
GetNextDlgTabItem
EndPaint
RegisterWindowMessageA
GetFocus
SetWindowPos
InvalidateRect
CreateAcceleratorTableA
ClientToScreen
GetClassLongA
FindWindowA
LoadCursorA
OffsetRect
SetFocus
SetMenuItemBitmaps
SetMenu
GetMenuCheckMarkDimensions
ScrollWindow
DrawTextA
CheckMenuItem
DrawStateA
GetDlgItem
DrawIconEx
FindWindowW
PostMessageW
AppendMenuA
GetClassNameA
DestroyWindow
GetClientRect
GetMessagePos
GetWindowPlacement
ShowWindow
DrawTextW
IsDlgButtonChecked
LoadAcceleratorsA
GetAsyncKeyState
SetWindowContextHelpId
ScrollDC
MapDialogRect
GetLastActivePopup
PeekMessageA
SetRect
CheckRadioButton
GetDlgItemInt
UnionRect
ReleaseCapture
IsDialogMessageW
UnpackDDElParam
ExitWindowsEx
IsRectEmpty
GetParent
TranslateMDISysAccel
CreateWindowExA
IsZoomed
SendDlgItemMessageA
wsprintfW
CreateWindowExW
ModifyMenuW
GetMenu
GetWindowDC
LoadCursorW
MessageBeep
OpenClipboard
IsWindow
GetWindowRect
SetDlgItemInt
SetClassLongA
ExcludeUpdateRgn
GetDlgItemTextA
ShowOwnedPopups
SetDlgItemTextW
HideCaret
SetMenuItemInfoA
CharUpperA
EnumWindows
GetWindowTextA
CreateMenu
IsWindowUnicode
ScreenToClient
WaitMessage
GetMenuStringA
CallNextHookEx
GetSysColor
GetDC
CallWindowProcA
GetWindowThreadProcessId
DrawFocusRect
GetMessageW
RemovePropA
GetDCEx
MonitorFromWindow
GetMenuItemCount
RemovePropW
LookupIconIdFromDirectoryEx
UnhookWindowsHookEx
GetClassInfoW
IsMenu
CloseClipboard
FrameRect
GetComboBoxInfo
CheckDlgButton
SetScrollPos
TabbedTextOutA
IsIconic
KillTimer
EnableWindow
CopyAcceleratorTableA
DestroyIcon
GetMenuState
MapWindowPoints
GetKeyNameTextA
WinHelpA
DeleteMenu
DefWindowProcA
SetScrollInfo
LoadStringW
wsprintfA
PtInRect
ScrollWindowEx
GetMenuItemID
SetParent
GetMenuItemInfoA
GetCapture
DrawIcon
GetUpdateRect
CreateDialogIndirectParamA
IsWindowVisible
GetKeyState
LoadStringA
UpdateWindow
DrawStateW
GetWindowTextLengthA
InflateRect
GetWindowLongW
GetWindow
MessageBoxA
GetMessageA
DeferWindowPos
RegisterClipboardFormatW

shell32

ShellExecuteA
SHGetSpecialFolderPathA
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetPathFromIDListA
SHGetMalloc
Shell_NotifyIconW
ShellExecuteExW
DragFinish
ShellExecuteExA
ExtractIconExW
ord155
SHAppBarMessage
SHGetFileInfoW
SHGetDesktopFolder
SHGetPathFromIDListW
DragAcceptFiles
ExtractIconA
ShellExecuteW

ole32

CoInitialize
OleSave
OleGetIconOfClass
OleDestroyMenuDescriptor
CoTaskMemFree
OleLoad
CoDisconnectObject
OleCreateMenuDescriptor
OleQueryLinkFromData
CoMarshalInterface
WriteFmtUserTypeStg
CoRevokeClassObject
OleFlushClipboard
WriteClassStg
OleRegGetUserType
CreateStreamOnHGlobal
StgCreateDocfileOnILockBytes
OleUninitialize
OleRegEnumVerbs
CoUnmarshalInterface
OleLockRunning
OleCreateLinkFromData
CLSIDFromString
CreateBindCtx
OleSetClipboard
CoLockObjectExternal
StgIsStorageFile
OleRegGetMiscStatus
CoGetClassObject
CoTaskMemAlloc
OleCreate
DoDragDrop
ReadFmtUserTypeStg
CreateDataAdviseHolder
OleIsCurrentClipboard
OleLoadFromStream
OleQueryCreateFromData
OleCreateStaticFromData
CoCreateGuid
CoTreatAsClass
IsAccelerator
CreateILockBytesOnHGlobal
CreateOleAdviseHolder
CoRegisterMessageFilter
StringFromCLSID
CoReleaseMarshalData
OleCreateLinkToFile
SetConvertStg
ReadClassStg
CoCreateInstance
CoFreeUnusedLibraries
StgOpenStorageOnILockBytes
CoRegisterClassObject
OleInitialize
OleSetMenuDescriptor
OleDuplicateData
CoTaskMemRealloc
CreateItemMoniker
OleCreateFromFile
StringFromGUID2
CLSIDFromProgID
RevokeDragDrop
OleGetClipboard
CoUninitialize
ProgIDFromCLSID
WriteClassStm
OleTranslateAccelerator
StgOpenStorage
CreateFileMoniker
ReleaseStgMedium
OleCreateFromData
GetRunningObjectTable

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
ChooseFontA
ReplaceTextA
PrintDlgA
ChooseColorA
GetFileTitleA
PageSetupDlgA

winspool.drv

AddPrinterA
DocumentPropertiesA
EnumPrinterDriversA
OpenPrinterA
GetFormW
ord204
DeviceCapabilitiesW
GetPrinterA
AddFormW
GetPrinterDriverDirectoryA
EnumFormsW
ClosePrinter
AddPrinterDriverA
DeleteFormW
PrinterProperties

kernel32

GetLocaleInfoA
FormatMessageW
GetCurrentThread
LoadResource
LoadLibraryW
GetLogicalDriveStringsW
VirtualFree
GetVolumeInformationA
HeapAlloc
GetFileSize
CreateFileW
HeapDestroy
IsValidLocale
GetProcessHeap
SetEndOfFile
LocalReAlloc
CompareFileTime
ResetEvent
SetEnvironmentVariableA
GetProcAddress
LeaveCriticalSection
FindResourceExA
CreatePipe
GetFileAttributesA
FreeLibrary
FileTimeToLocalFileTime
GetTempPathA
TlsGetValue
MultiByteToWideChar
GetDriveTypeW
LCMapStringW
SetPriorityClass
GetCommandLineA
SetFilePointer
CreateDirectoryA
CreateEventA
GetSystemTimeAsFileTime
TerminateThread
lstrlenA
GetCurrentDirectoryA
TlsFree
GetVersionExA
FreeEnvironmentStringsA
SetStdHandle
GetStringTypeA
GetDateFormatW
GetStartupInfoA
GetCurrentProcess
Module32NextW
GetPrivateProfileIntA
LoadLibraryExW
GlobalSize
RaiseException
CreateMutexA
InitializeCriticalSection
lstrcmpiA
CreateFileMappingW
GlobalAddAtomA
Sleep
TerminateProcess
SystemTimeToFileTime
WriteFile
MapViewOfFile
CopyFileA
SetErrorMode
GetStringTypeW
FatalAppExitA
LCMapStringA
MoveFileA
CompareStringW
ReleaseMutex
GetFileSizeEx
GetExitCodeProcess
GetCurrentThreadId
GetUserDefaultLangID
UnhandledExceptionFilter
GlobalFree
lstrcpynA
GetProfileStringA
GetCurrentDirectoryW
EnumSystemLocalesA
LocalAlloc
GetFileType
DuplicateHandle
ReadFile
IsValidCodePage
WaitForMultipleObjectsEx
FlushFileBuffers
GetStringTypeExA
RemoveDirectoryW
WideCharToMultiByte
lstrcatA
GetVolumeInformationW
GetACP
LoadLibraryA
WaitForSingleObject
GlobalLock
GetDriveTypeA
InterlockedExchange
ExitProcess
EnterCriticalSection
lstrcpynW
QueryPerformanceCounter
GlobalUnlock
IsBadWritePtr
FindResourceExW
SizeofResource
MulDiv
GlobalAlloc
CloseHandle
Module32FirstW
WaitForMultipleObjects
IsDebuggerPresent
GetOEMCP
GetFileTime
WinExec
GetUserDefaultLCID
ExitThread
SetConsoleCtrlHandler
GetNumberFormatW
VirtualAlloc
HeapCreate
SearchPathA
lstrlenW
OutputDebugStringW
FindClose
ResumeThread
EnumResourceLanguagesW
FormatMessageA
GlobalFlags
FileTimeToSystemTime
SetLastError
GetTimeZoneInformation
FreeEnvironmentStringsW
GetThreadLocale
GetTempFileNameA
DeleteCriticalSection
GetVersion
GetConsoleMode
FindResourceW
GetThreadPriority
GetModuleFileNameW
GetLocaleInfoW
SetThreadPriority
WriteConsoleW
GetEnvironmentStrings
DeleteFileA
GetFullPathNameA
CreateMutexW
TlsSetValue
SetUnhandledExceptionFilter
GlobalDeleteAtom
lstrcmpW
GetConsoleCP
LocalFree
FreeResource
GetModuleFileNameA
WritePrivateProfileStringA
CreateEventW
WriteConsoleA
GetEnvironmentStringsW
InterlockedIncrement
SetFileTime
SetHandleCount
FindFirstFileW
GlobalHandle
lstrcmpiW
InitializeCriticalSectionAndSpinCount
GetStdHandle
GetEnvironmentVariableW
FindResourceA
GetCPInfo
InterlockedDecrement
lstrcmpA
CreateThread
CreateDirectoryW
LockResource
GetLastError
TlsAlloc
GetWindowsDirectoryW
GetTimeFormatA
GetFileAttributesW
GetModuleHandleW
HeapFree
GetDateFormatA
IsBadCodePtr
RtlUnwind
IsBadReadPtr
SetEvent
OpenMutexA
VirtualQuery
HeapReAlloc
HeapSize
GetModuleHandleA
GetTickCount
ReleaseSemaphore
GetCurrentProcessId
CompareStringA
GetConsoleOutputCP
IsBadStringPtrA
DeleteFileW
CreateFileA
FindNextFileW

comctl32

ImageList_GetIconSize
CreateStatusWindowW
InitCommonControlsEx
ImageList_GetIcon
PropertySheetW
ImageList_SetBkColor
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_EndDrag
ImageList_Replace
ImageList_Draw
ImageList_DrawEx
_TrackMouseEvent
ImageList_LoadImageW
ImageList_BeginDrag
ImageList_GetImageCount
ImageList_Remove
ord17
CreatePropertySheetPageW
PropertySheetA
DestroyPropertySheetPage
ImageList_Create
ImageList_DragLeave
ImageList_LoadImageA
ImageList_GetImageInfo

advapi32

RegisterServiceCtrlHandlerA
RegisterEventSourceA
RegSetValueA
RegOpenCurrentUser
RegEnumValueW
RegDeleteValueW
RegQueryValueExA
RegEnumValueA
RegCloseKey
RegOpenKeyExW
RevertToSelf
SetSecurityDescriptorGroup
InitializeSecurityDescriptor
RegCreateKeyW
LookupPrivilegeValueA
RegCreateKeyExA
AdjustTokenPrivileges
GetAce
AccessCheck
GetLengthSid
RegEnumKeyExA
CreateProcessAsUserA
CopySid
AllocateAndInitializeSid
FreeSid
RegCreateKeyExW
RegQueryInfoKeyA
RegQueryInfoKeyW
StartServiceA
RegSetValueExA
SetSecurityDescriptorDacl
AddAccessAllowedAce
StartServiceCtrlDispatcherA
GetFileSecurityA
RegOpenKeyA
DeregisterEventSource
OpenThreadToken
RegQueryValueA
RegDeleteKeyW
InitiateSystemShutdownA
OpenProcessToken
LookupAccountNameW
EqualSid
ImpersonateSelf
QueryServiceStatus
OpenServiceA
GetFileSecurityW
SetSecurityDescriptorOwner
GetUserNameA
GetSecurityDescriptorDacl
StartServiceW
GetUserNameW
RegDeleteValueA
RegEnumKeyExW
RegEnumKeyA
GetAclInformation
ControlService
DeleteService
RegSetValueExW
RegQueryValueExW
RegOpenKeyExA
RegCreateKeyA

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e06cc04f104f2d63db97360c28173d77

Headers

File Characteristics

Imports

user32

shell32

ole32

comdlg32

winspool.drv

kernel32

comctl32

advapi32

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 84KB - Virtual size: 82KB

.data Size: 92KB - Virtual size: 101KB

.rsrc Size: 80KB - Virtual size: 79KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 84KB - Virtual size: 82KB

.data
Size: 92KB - Virtual size: 101KB

.rsrc
Size: 80KB - Virtual size: 79KB