fee9dc292b617166d91274cfb622c032c7613c299a6bb7bbc718ec28c96f0b31

Sharing

Copy URL

Twitter E-mail

General

Target

fee9dc292b617166d91274cfb622c032c7613c299a6bb7bbc718ec28c96f0b31
Size

484KB
MD5

6ad43ed9c7da1eea512ded4d1aa61bc9
SHA1

5c294837149ab0c138512379969ce2dc550afa8c
SHA256

fee9dc292b617166d91274cfb622c032c7613c299a6bb7bbc718ec28c96f0b31
SHA512

5252ab28745a5fe16d077e46328a62ba66e69e07769e58e728d96f0c1f9aff37ab1fb02df0eac35597f5941b9542fab21282c4f47d031bd22f32daaea28c9655
SSDEEP

6144:F/5s/XoqAmHrzViy6BFExRTc2ZbI3dQ0fBpJ+3ml+vYuo3OQaarJUwlL5IJERF51:FifoqAmLYFyNV4JXl+vOeQuwlLOm

Score

N/A

Malware Config

Signatures

Files

fee9dc292b617166d91274cfb622c032c7613c299a6bb7bbc718ec28c96f0b31
.exe windows x86

9913f348daaed0c5826810f1e081109a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
GlobalFlags
GetProcessVersion
GetCPInfo
GetOEMCP
TlsGetValue
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
HeapFree
EnterCriticalSection
LocalReAlloc
GetACP
TlsSetValue
GetSystemTime
GetLocalTime
GetStartupInfoA
GetCommandLineA
RaiseException
SetStdHandle
GetFileType
HeapSize
HeapReAlloc
GetEnvironmentVariableA
HeapAlloc
TerminateProcess
VirtualFree
GetTimeZoneInformation
LeaveCriticalSection
GlobalAlloc
InterlockedDecrement
GetStringTypeW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
GetDriveTypeA
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
lstrlenA
lstrcpyA
WritePrivateProfileStringA
GetModuleFileNameA
GetPrivateProfileStringA
GetModuleHandleA
GetCurrentThread
SetThreadPriority
ExitProcess
GetCurrentProcessId
OpenProcess
SetPriorityClass
OutputDebugStringA
GlobalReAlloc
GlobalFree
GlobalHandle
InitializeCriticalSection
DeleteCriticalSection
TlsAlloc
LocalFree
LocalAlloc
IsBadWritePtr
IsBadReadPtr
FindNextFileA
GlobalLock
GlobalUnlock
GetFileAttributesA
GetFileTime
GetFileSize
SetLastError
GetVolumeInformationA
GetFullPathNameA
DeleteFileA
FindFirstFileA
FindClose
UnlockFile
SetEndOfFile
FlushFileBuffers
LockFile
CloseHandle
ReadFile
SetFilePointer
WriteFile
DuplicateHandle
CreateFileA
GetCurrentProcess
WideCharToMultiByte
GetLastError
MultiByteToWideChar
LCMapStringA
InterlockedIncrement
lstrcpynA
GetVersionExA
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetProcAddress
GetCurrentDirectoryA
GetTickCount
WinExec
LCMapStringW
GetStringTypeA
HeapDestroy
HeapCreate
VirtualAlloc

user32

AdjustWindowRectEx
SetFocus
GetFocus
GetSysColor
MapWindowPoints
LoadIconA
IsWindowEnabled
GetNextDlgTabItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
CharUpperA
ClientToScreen
TabbedTextOutA
DrawTextA
GrayStringA
GetClassNameA
PtInRect
GetSysColorBrush
LoadStringA
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
GetMenu
GetMenuItemCount
GetMenuItemID
CopyRect
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
IsIconic
GetWindowPlacement
DialogBoxParamA
EnableMenuItem
SendDlgItemMessageA
GetDlgItemTextA
GetDlgItem
SetDlgItemTextA
EndDialog
GetParent
EnableWindow
TrackPopupMenu
LoadAcceleratorsA
LoadMenuA
CloseWindow
GetWindowRect
SetCursor
PostMessageA
PostQuitMessage
MessageBoxA
InvalidateRect
GetWindowLongA
BeginPaint
EndPaint
DestroyMenu
GetCursorPos
ScreenToClient
GetWindowTextA
SendMessageA
GetClientRect
DefWindowProcA
SetMenu
SetWindowTextA
LoadCursorA
DestroyWindow
RegisterClassA
CreateWindowExA
UpdateWindow
GetAsyncKeyState
MoveWindow
SetWindowLongA
ShowWindow
PeekMessageA
GetMessageA
TranslateAcceleratorA
TranslateMessage
GetKeyState
GetDlgCtrlID
UnhookWindowsHookEx
DispatchMessageA
FindWindowA
SetForegroundWindow
ChangeDisplaySettingsA
EnumDisplaySettingsA
SystemParametersInfoA
GetSystemMetrics
GetDC
ReleaseDC
GetSubMenu
GetMessageTime

gdi32

CreateSolidBrush
PatBlt
TextOutA
DeleteDC
GetClipBox
SetTextColor
SetBkColor
GetObjectA
CreateBitmap
ExtTextOutA
SaveDC
RestoreDC
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreateDIBSection
RectVisible
Escape
PtVisible
CreateCompatibleDC
SelectObject
BitBlt
DeleteObject
GetDeviceCaps
GetStockObject

comdlg32

GetOpenFileNameA
ChooseColorA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegFlushKey
RegSetValueExA

shell32

SHFileOperationA
SHGetPathFromIDListA
SHBrowseForFolderA

comctl32

ord17
ord2

ole32

CoTaskMemFree

winmm

timeBeginPeriod
timeGetDevCaps
mmioRead
waveOutWrite
waveOutGetDevCapsA
waveOutReset
waveOutUnprepareHeader
waveOutClose
mmioAscend
mmioOpenA
mmioDescend
mmioClose
mmioSeek
timeSetEvent
mciSendCommandA
timeGetTime
timeEndPeriod
timeKillEvent
waveOutPrepareHeader
waveOutRestart
waveOutGetErrorTextA
waveOutOpen

msvfw32

ord2
MCIWndCreateA

Sections

.text
Size: 384KB - Virtual size: 383KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9913f348daaed0c5826810f1e081109a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

winmm

msvfw32

Sections

.text Size: 384KB - Virtual size: 383KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 44KB - Virtual size: 1.4MB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 384KB - Virtual size: 383KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 44KB - Virtual size: 1.4MB

.rsrc
Size: 20KB - Virtual size: 16KB