cce9fa2136efda91d3be75f490df77acd626ed0860b84eb1f87a819f190e3072

Sharing

Copy URL Twitter E-mail

General

Target

cce9fa2136efda91d3be75f490df77acd626ed0860b84eb1f87a819f190e3072
Size

476KB
MD5

5706c6f632c647414bec99c967eb4fb3
SHA1

ae64b3f03dec9e733cfe0ef169ef86a4dea64da3
SHA256

cce9fa2136efda91d3be75f490df77acd626ed0860b84eb1f87a819f190e3072
SHA512

4b874f80d3bd0e3eaae4da4a18decf310a9fc121b7037f3e137a7af64b33b3958d9d01765d72d99ed8fd42e6abc108f6710d4bc2228f03ee3147d23187642dc7
SSDEEP

6144:TOtNBjY0Xd33Z7qpXm9Q+hrBQkCTthnyFzNiuW6xcZ4mW3xiSsQLH5Ai:QNBN3Zu0Lhr277y22xz3xiSsPi

Score

N/A

Malware Config

Signatures

Files

cce9fa2136efda91d3be75f490df77acd626ed0860b84eb1f87a819f190e3072
.exe windows x86

d2a95ce562a3a0df4d190a4b49d5e76f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleInputA
SetConsoleMode
GetConsoleMode
SetLastError
GetVersion
VirtualQuery
FlushInstructionCache
LoadLibraryA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
FreeLibrary
InterlockedExchange
CompareStringA
GetCurrentThreadId
FlushConsoleInputBuffer
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
GetVersionExA
GetCurrentThread
GlobalAlloc
GlobalDeleteAtom
WaitForSingleObject
SetEvent
ResumeThread
SetThreadPriority
SuspendThread
InterlockedIncrement
InterlockedDecrement
lstrlenA
LocalFree
LoadResource
LockResource
MulDiv
EnterCriticalSection
LocalAlloc
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
TlsAlloc
GlobalHandle
TlsFree
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
GetProcessVersion
FindClose
DuplicateHandle
GetCurrentProcess
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
SetErrorMode
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
RaiseException
CreateThread
HeapReAlloc
GetTimeZoneInformation
GetSystemTime
SetConsoleCtrlHandler
TerminateProcess
HeapSize
SetStdHandle
GetFileType
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineA
SetHandleCount
GetStartupInfoA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
LCMapStringA
IsBadReadPtr
IsBadCodePtr
CreateFileA
GetACP
GetOEMCP
SetEnvironmentVariableA
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
GetPrivateProfileIntA
Sleep
GetTickCount
GetFileSize
GetLocalTime
ExitThread
GetLastError
CloseHandle
GetCommandLineW

advapi32

RegCloseKey

user32

GetSystemMetrics
IsWindow
SetActiveWindow
EndDialog
GetWindowPlacement
IsIconic
SetWindowPos
GetWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
UnhookWindowsHookEx
GetDlgCtrlID
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
DestroyWindow
GetMenuState
PtInRect
GetSysColorBrush
DestroyMenu
GetNextDlgTabItem
TranslateMessage
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
GetParent
GetLastActivePopup
IsWindowEnabled
SetCursor
PostQuitMessage
ShowWindow
SetForegroundWindow
LoadImageA
SetRect
SetWindowRgn
GetDlgItem
ClientToScreen
GetMenuCheckMarkDimensions
GetWindowRect
ScreenToClient
GetDC
ReleaseDC
GetDesktopWindow
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus

gdi32

CreateBitmap
GetClipBox
SetTextColor
SetBkColor
SaveDC
RestoreDC
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetDeviceCaps
Escape
RectVisible
PtVisible
SelectObject
CreateCompatibleDC
BitBlt
DeleteDC
DeleteObject
CombineRgn
ExtCreateRegion
CreateDIBSection

packdll

CalcCompressFile
ReleasePackBuf
DecompressFile

comctl32

ord17

wininet

InternetConnectW
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExW
InternetCloseHandle
InternetOpenW
InternetCanonicalizeUrlW
InternetCrackUrlW
HttpOpenRequestW
HttpAddRequestHeadersW
HttpSendRequestW
HttpQueryInfoW
InternetGetLastResponseInfoW

winspool.drv

ClosePrinter

Sections

.text
Size: 284KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d2a95ce562a3a0df4d190a4b49d5e76f

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

packdll

comctl32

wininet

winspool.drv

Sections

.text Size: 284KB - Virtual size: 280KB

.rdata Size: 56KB - Virtual size: 54KB

.data Size: 52KB - Virtual size: 72KB

.rsrc Size: 80KB - Virtual size: 77KB

.text
Size: 284KB - Virtual size: 280KB

.rdata
Size: 56KB - Virtual size: 54KB

.data
Size: 52KB - Virtual size: 72KB

.rsrc
Size: 80KB - Virtual size: 77KB