7c35c6536a8f271f74d33dde95651400cc30d71d6e385130a1209ff03c932774

Sharing

Copy URL Twitter E-mail

General

Target

7c35c6536a8f271f74d33dde95651400cc30d71d6e385130a1209ff03c932774
Size

312KB
MD5

8ae16a963e3df7d8df2d6cca6244f620
SHA1

427d8cdea949d43dcd1be6afc0d2a9f14f1fe30c
SHA256

7c35c6536a8f271f74d33dde95651400cc30d71d6e385130a1209ff03c932774
SHA512

e989fc12317825afb129f09fc964431e0cd3d9f75c0fb05813495d8059b156a6a8c4095b69ddb18e979156e91092b2c5372834abcc7e6e4ed29df26efb8524bb
SSDEEP

6144:hQI1nlL0JN6cec3gbYWnbS1sgQKo4cOl0mETdsaK+BXGgSBsP:rlL0LwbbeNQFW4dsbs

Score

N/A

Malware Config

Signatures

Files

7c35c6536a8f271f74d33dde95651400cc30d71d6e385130a1209ff03c932774
.exe windows x86

8c1cff2f2e68dedab3cf48c3732b9d34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
GetModuleHandleA
lstrlenW
lstrcpyW
CreateProcessA
SetThreadPriority
ResumeThread
WaitForSingleObject
GetStdHandle
GetHandleInformation
GetCommandLineA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
DeleteFileA
GetFileType
GetFileSize
Sleep
OutputDebugStringA
CreateThread
WideCharToMultiByte
lstrcpyA
lstrcmpiA
GetThreadLocale
FormatMessageA
FreeLibrary
LoadLibraryA
GetProcAddress
CreateFileA
ReadFile
SetFilePointer
FlushFileBuffers
LCMapStringA
InitializeCriticalSection
GetOEMCP
WriteFile
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetEndOfFile
SetStdHandle
SetUnhandledExceptionFilter
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LCMapStringW
GetLastError
MultiByteToWideChar
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetModuleFileNameA
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
RaiseException
GetFileAttributesA
ExitProcess
GetVersion
GetStartupInfoA
InterlockedIncrement
InterlockedDecrement
HeapFree
HeapAlloc
RtlUnwind
GetCurrentThreadId
GetVersionExA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
CloseHandle

user32

FillRect
UnionRect
PtInRect
ScreenToClient
GetScrollInfo
GetScrollRange
ScrollWindow
UpdateWindow
GetClassInfoExA
RegisterClassExA
ReleaseDC
GetDC
InvalidateRect
SendMessageA
GetParent
DefWindowProcA
EndPaint
DestroyCursor
wsprintfA
GetScrollPos
GetClientRect
SetCursor
LoadCursorA
BeginPaint
SetScrollInfo
EnableScrollBar
PostMessageA
SetScrollPos
GetSystemMetrics
LoadStringA
SetMenuItemInfoA
GetMenuItemCount
ClientToScreen
GetWindowLongA
GetSysColor
IntersectRect
SetWindowLongA
GetDesktopWindow
MessageBoxA
EnableMenuItem
GetSubMenu
SetWindowTextA
GetWindowRect
GetMenuItemID
CheckMenuItem
TranslateMessage
DestroyWindow
MoveWindow
PostQuitMessage
GetMenu
LoadIconA
DispatchMessageA
GetMessageA
ShowWindow
LoadMenuA
SetRect
GetMenuItemInfoA
CreateWindowExA

gdi32

ExtCreateRegion
StretchDIBits
TextOutW
CreateDIBitmap
SetBkColor
SetTextColor
CreateBrushIndirect
CreateDIBPatternBrushPt
AbortDoc
Rectangle
DPtoLP
CreateFontIndirectA
GetTextExtentPoint32A
CreateSolidBrush
SelectObject
CreateFontA
CreateRectRgn
SelectClipRgn
GetStockObject
FillRgn
MoveToEx
LineTo
SetTextAlign
SetBkMode
TextOutA
SelectPalette
RealizePalette
GetDeviceCaps
CreateHalftonePalette
UnrealizeObject
UpdateColors
DeleteObject
SetROP2
IntersectClipRect
LPtoDP
SetRectRgn
CombineRgn
CreateRectRgnIndirect
CreateFontIndirectW
AddFontResourceA
CreateScalableFontResourceA
RemoveFontResourceA
GetObjectA
CreateDIBSection
SetGraphicsMode
SetBoundsRect
GetBkColor
GetTextExtentPoint32W
GetTextColor
BitBlt
GetMapMode
GetWindowExtEx
GetViewportExtEx
GetCurrentObject
CreateBitmap
RestoreDC
SaveDC
SetMapMode
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutA
CreatePenIndirect
CreateCompatibleDC
MaskBlt
DeleteDC
ExtCreatePen
BeginPath
EndPath
StrokeAndFillPath
StrokePath
FillPath
CreatePen
CreateHatchBrush
SetBrushOrgEx
SetStretchBltMode
PolyBezier
Arc
Polyline
Ellipse
SetPolyFillMode
Polygon
Pie
Chord
PatBlt
SetPixel
ExtTextOutW

winspool.drv

OpenPrinterA
EnumPrintersA
GetPrinterDataA
DocumentPropertiesA
ClosePrinter
GetPrinterDriverA
GetPrinterDriverDirectoryA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

ShellExecuteA
DragAcceptFiles
DragFinish
DragQueryFileA

winmm

timeGetTime

comctl32

CreateToolbarEx
ord8
ord6
ord17

Sections

.text
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

PACK
Size: 148KB - Virtual size: 392KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8c1cff2f2e68dedab3cf48c3732b9d34

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

shell32

winmm

comctl32

Sections

.text Size: 100KB - Virtual size: 97KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 16KB - Virtual size: 21KB

.rsrc Size: 4KB - Virtual size: 2KB

PACK Size: 148KB - Virtual size: 392KB

.text
Size: 100KB - Virtual size: 97KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 16KB - Virtual size: 21KB

.rsrc
Size: 4KB - Virtual size: 2KB

PACK
Size: 148KB - Virtual size: 392KB