5bdaab99b9bc24a292a315cc2f70fcd8a5836f5d76748704887369e140657e7d

Sharing

Copy URL

Twitter E-mail

General

Target

5bdaab99b9bc24a292a315cc2f70fcd8a5836f5d76748704887369e140657e7d
Size

847KB
MD5

030a85605dcbad5ab2e76197a51773b0
SHA1

14412b08f4ed847c1c442e682e9990f1e9fa2398
SHA256

5bdaab99b9bc24a292a315cc2f70fcd8a5836f5d76748704887369e140657e7d
SHA512

55982fb73085432b1712a3fafd9f946b8bfebce23cad8a2745425f00576ae476fff0025a38d682fe9cf3f2ca3f129859717af62c895304e82b7a8694ac1e2f51
SSDEEP

12288:DcCyEQR8/FIZxdV841GoqE6bxl9a/OXvcd7ERtEUqvgdX59RW3lC3TE3NhBClkII:3yX3ZxdV39+oEckdqvcX53WEEX0KII

Score

N/A

Malware Config

Signatures

Files

5bdaab99b9bc24a292a315cc2f70fcd8a5836f5d76748704887369e140657e7d
.exe windows x86

9ecd2a3cf2f66b1fb71723a702292c25

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
SetStdHandle
GetThreadLocale
LockFile
LockResource
CloseHandle
GetFileTime
GetFileSize
SystemTimeToFileTime
FreeEnvironmentStringsA
GetFileType
GetModuleFileNameA
GetEnvironmentStrings
HeapReAlloc
GlobalAlloc
LCMapStringA
GlobalDeleteAtom
GetStringTypeA
IsDebuggerPresent
FreeLibrary
FlushFileBuffers
GetSystemInfo
FileTimeToLocalFileTime
QueryPerformanceCounter
VirtualQuery
GlobalFlags
GetCommandLineA
GlobalFree
GlobalUnlock
FileTimeToSystemTime
RaiseException
GlobalHandle
ConvertDefaultLocale
SetEnvironmentVariableA
SetEndOfFile
LocalReAlloc
UnlockFile
TerminateProcess
SetHandleCount
lstrlenA
GetConsoleOutputCP
GetLocaleInfoA
TlsAlloc
TlsFree
RtlUnwind
HeapDestroy
GetSystemDirectoryA
ReadFile
LocalFileTimeToFileTime
HeapFree
GlobalLock
FreeResource
SetUnhandledExceptionFilter
SetFileTime
GetACP
GetVersionExA
GetConsoleMode
CreateFileA
GlobalReAlloc
HeapSize
GetVersion
LoadResource
HeapCreate
WriteConsoleA
GetLastError
SetErrorMode
VirtualFree
lstrcmpA
GetWindowsDirectoryA
GetCommandLineW
LocalFree
SizeofResource
DuplicateHandle
GetOEMCP
TlsSetValue
HeapAlloc
CompareStringA
lstrcpyA
GetCurrentProcessId
GetCurrentThreadId
DeleteCriticalSection
GetModuleHandleA
LocalAlloc
LoadLibraryA
GetProcAddress
lstrcatA
InitializeCriticalSection
GetStdHandle
GetProcessHeap

user32

GetWindow
GetWindowThreadProcessId
DestroyMenu
GetScrollRange
CheckMenuItem
CopyRect
GetMenuItemCount
GetScrollInfo
BeginPaint
GetSysColor
EndPaint
RedrawWindow
ReleaseCapture
SetActiveWindow
GetActiveWindow
SetScrollInfo
UpdateWindow
ValidateRect
GetNextDlgGroupItem
SendDlgItemMessageA
IsWindowVisible
GetDlgItem
ShowWindow
SetRectEmpty
AdjustWindowRectEx
MapDialogRect
BeginDeferWindowPos
GetMenuItemID
FillRect
SetParent
ReleaseDC
InvalidateRect
PtInRect
SetFocus
GetFocus
LockWindowUpdate
GetParent
EndDeferWindowPos
GetWindowPlacement
IsWindow
GetLastActivePopup
GetWindowRect
SetScrollRange
GetDC
IsRectEmpty
TranslateMessage
ReuseDDElParam
KillTimer
SetMenu
GetNextDlgTabItem
MessageBeep
IsChild
EndDialog
SetForegroundWindow
IntersectRect
MapWindowPoints
TrackPopupMenu
IsWindowEnabled
UnpackDDElParam
OffsetRect
SetWindowPos
GetClientRect
EqualRect
SetCapture
GetSystemMenu
ShowScrollBar
EnableMenuItem
SetWindowContextHelpId
SetMenuItemBitmaps
DeferWindowPos
GetSystemMetrics
InflateRect
GetCapture
IsZoomed
CreatePopupMenu
ScreenToClient
SetWindowRgn
GetSysColorBrush
PostQuitMessage
GetScrollPos
GetTopWindow
SetScrollPos
GetDesktopWindow
GetMenu
GetWindowDC
GetMessageTime
MoveWindow
GetMenuCheckMarkDimensions
ShowOwnedPopups

gdi32

GetWindowExtEx
CreateRectRgn
GetTextColor
SaveDC
CombineRgn
StretchDIBits
SetMapMode
GetClipBox
OffsetViewportOrgEx
OffsetRgn
SelectObject
SetWindowExtEx
CreateCompatibleBitmap
CreateSolidBrush
SelectClipRgn
CreateRectRgnIndirect
ScaleViewportExtEx
SetViewportExtEx
ExtSelectClipRgn
DeleteObject
SetBkColor
Escape
CreateBitmap
SetTextColor
SetBkMode
ExcludeClipRect
ScaleWindowExtEx
GetMapMode
CreateCompatibleDC
GetStockObject
SetRectRgn
BitBlt
RestoreDC
GetDeviceCaps
GetPixel
PatBlt
Ellipse
SetViewportOrgEx
IntersectClipRect
RectVisible
GetBkColor
CreatePatternBrush
GetRgnBox
DeleteDC
DPtoLP
PtVisible

winspool.drv

ClosePrinter

ole32

OleInitialize
CLSIDFromString
OleIsCurrentClipboard
OleUninitialize
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CLSIDFromProgID
OleFlushClipboard
CoRevokeClassObject

oleaut32

VariantChangeType
VariantCopy
VariantTimeToSystemTime
OleCreateFontIndirect
VariantInit
SysFreeString
SysStringLen
SysAllocStringLen
SafeArrayDestroy
SystemTimeToVariantTime
VariantClear

comctl32

ord17

msvcrt

_CIcos

Sections

.text
Size: 660KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 171KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ecd2a3cf2f66b1fb71723a702292c25

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

ole32

oleaut32

comctl32

msvcrt

Sections

.text Size: 660KB - Virtual size: 660KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 171KB - Virtual size: 256KB

.rsrc Size: 1024B - Virtual size: 952B

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 660KB - Virtual size: 660KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 171KB - Virtual size: 256KB

.rsrc
Size: 1024B - Virtual size: 952B

.reloc
Size: 3KB - Virtual size: 3KB