9b0d19477cfd619325e6838ec80e950e0182929f8eb3addc5d9e5d52b6a16cae

Sharing

Copy URL Twitter E-mail

General

Target

9b0d19477cfd619325e6838ec80e950e0182929f8eb3addc5d9e5d52b6a16cae
Size

616KB
MD5

8fbe05bcc489f192bc2dc1856bd7355b
SHA1

47faa17ca5261308ba67d72d37d2e5596bd8f984
SHA256

9b0d19477cfd619325e6838ec80e950e0182929f8eb3addc5d9e5d52b6a16cae
SHA512

e4a88f1155f076e3b63cba138725f5b6bec50ce1f0cf76aaee8f385665db1d01daf7489253f9801e04e2f7ee2b0cee4351e5df799ec74d8fe0b426395a400458
SSDEEP

12288:b9dfXdYrZo2vvwMZ7//RTlX0gZVcWe4Bk0C77QnZtxq:ay2vvwMZbRybn7EZtY

Score

N/A

Malware Config

Signatures

Files

9b0d19477cfd619325e6838ec80e950e0182929f8eb3addc5d9e5d52b6a16cae
.exe windows x86

cbbfc3a61ad856e4f86b428328bfa0b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gswdll32

ord2
ord1

ltkrn13n

ord143
ord101
ord125
ord134
ord120
ord117
ord116
ord197
ord122

ltfil13n

ord103
ord131
ord100
ord101

ltefx13n

ord100

kernel32

HeapSize
GetCommandLineA
ExitProcess
HeapAlloc
RaiseException
GetStartupInfoA
HeapReAlloc
GetTimeZoneInformation
HeapFree
TerminateProcess
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetACP
GetStdHandle
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetStdHandle
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileType
RtlUnwind
SetEndOfFile
GetOEMCP
GetCPInfo
GlobalUnlock
GlobalLock
GlobalFree
GlobalReAlloc
_lwrite
GlobalAlloc
_lread
_llseek
LocalFree
LocalAlloc
GlobalHandle
MulDiv
_lclose
OpenFile
_hread
_hwrite
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetProfileStringA
GetCurrentThreadId
GetLastError
CreateMutexA
GetVersion
CreateFileA
GetModuleFileNameA
GetModuleHandleA
WriteFile
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
SetLastError
lstrcpynA
GetProcAddress
DuplicateHandle
GetCurrentProcess
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
FileTimeToLocalFileTime
GetFileAttributesA
LoadLibraryA
lstrcpyA
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
lstrcmpiA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
lstrcmpA
GlobalFlags
GlobalGetAtomNameA
GetFileSize
GetFileTime
lstrcatA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
FreeLibrary
GetProcessVersion
FileTimeToSystemTime

user32

GetMenu
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
SetPropA
GetPropA
CopyRect
AdjustWindowRectEx
MapWindowPoints
GetSysColorBrush
DestroyMenu
GetDlgItem
GetWindow
GetDlgCtrlID
GetClassNameA
GetLastActivePopup
IsWindowEnabled
EnableWindow
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetFocus
GetParent
GetNextDlgTabItem
UnregisterClassA
UnhookWindowsHookEx
CharUpperA
GrayStringA
DrawTextA
TabbedTextOutA
ClientToScreen
LoadMenuA
GetSubMenu
CallNextHookEx
GetForegroundWindow
TrackPopupMenu
SetWindowsHookExA
GetKeyState
PostQuitMessage
GetProcessWindowStation
GetThreadDesktop
GetUserObjectInformationA
SetRectEmpty
PeekMessageA
IsDialogMessageA
CreateDialogParamA
MoveWindow
GetWindowTextA
GetCursorPos
WindowFromPoint
ReleaseDC
PtInRect
MessageBoxA
GetDC
RegisterClassA
RegisterWindowMessageA
EnableMenuItem
GetMessageA
TranslateMessage
DispatchMessageA
GetSysColor
PostThreadMessageA
CreateWindowExA
ShowWindow
UpdateWindow
DestroyWindow
SetClipboardData
OffsetRect
IntersectRect
EmptyClipboard
OpenClipboard
EnumClipboardFormats
GetClipboardData
CloseClipboard
FillRect
SetRect
InvalidateRect
MessageBeep
ScrollWindow
SetScrollPos
GetUpdateRect
ValidateRect
SetFocus
SetCursor
BeginPaint
EndPaint
SetScrollRange
GetClassLongA
SetWindowLongA
GetClientRect
GetScrollRange
GetSystemMetrics
GetSystemMenu
GetMenuItemCount
GetMenuItemID
DeleteMenu
AppendMenuA
CallWindowProcA
RemovePropA
GetWindowLongA
DefWindowProcA
EndDialog
LoadStringA
SetWindowTextA
SetDlgItemTextA
PostMessageA
GetMessageTime
GetMessagePos
SendMessageA
DialogBoxParamA
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetMenuDefaultItem
SetForegroundWindow
IsWindow
SetWindowPos
LoadIconA
LoadCursorA
GetWindowRect

gdi32

ExtTextOutA
RectVisible
PtVisible
GetClipBox
ScaleWindowExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
Escape
SelectClipRgn
SetWindowOrgEx
CreateRectRgn
CombineRgn
EndPage
StartPage
EndDoc
SetAbortProc
StartDocA
CreateDCA
PtInRegion
CreateICA
CreatePolygonRgn
CreateMetaFileA
CloseMetaFile
PlayMetaFile
GetViewportExtEx
CreateBitmap
SetBitmapDimensionEx
SetMetaFileBitsEx
SetMapMode
GetViewportOrgEx
SetWindowExtEx
SetViewportExtEx
SetViewportOrgEx
LPtoDP
DPtoLP
StretchDIBits
GetMetaFileBitsEx
SetWinMetaFileBits
CopyEnhMetaFileA
DeleteEnhMetaFile
EnumMetaFile
DeleteMetaFile
GetWindowExtEx
BitBlt
SaveDC
SetStretchBltMode
StretchBlt
RestoreDC
PlayMetaFileRecord
SetBkColor
SetROP2
GetDeviceCaps
FloodFill
Pie
Arc
MoveToEx
LineTo
GetTextExtentPointA
GetTextMetricsA
CreateFontIndirectA
CreateSolidBrush
CreateHatchBrush
CreateCompatibleBitmap
PatBlt
CreateDIBPatternBrush
CreatePen
DeleteObject
IntersectClipRect
Rectangle
Ellipse
SetTextAlign
SetBkMode
SetTextColor
SelectObject
TextOutA
SetPolyFillMode
Polyline
Polygon
GetPaletteEntries
CreatePalette
GetStockObject
GetObjectA
CreateCompatibleDC
SelectPalette
RealizePalette
GetDIBits
DeleteDC

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueExA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyExA
RegCloseKey

shell32

Shell_NotifyIconA

comctl32

ord17

Exports

Exports

DrawingWndProc
PrintAbortProc
PrintDialogProc
ServerWndProc

Sections

.text
Size: 360KB - Virtual size: 357KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 192KB - Virtual size: 496KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cbbfc3a61ad856e4f86b428328bfa0b9

Headers

File Characteristics

Imports

gswdll32

ltkrn13n

ltfil13n

ltefx13n

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Exports

Exports

Sections

.text Size: 360KB - Virtual size: 357KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 20KB - Virtual size: 33KB

.rsrc Size: 8KB - Virtual size: 5KB

.vmp0 Size: 192KB - Virtual size: 496KB

.text
Size: 360KB - Virtual size: 357KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 20KB - Virtual size: 33KB

.rsrc
Size: 8KB - Virtual size: 5KB

.vmp0
Size: 192KB - Virtual size: 496KB