5a881df079a8992bba7cc19fbc60584af3f49189d9539c75f6f8e84d28a2d499

Sharing

Copy URL Twitter E-mail

General

Target

5a881df079a8992bba7cc19fbc60584af3f49189d9539c75f6f8e84d28a2d499
Size

847KB
MD5

6f144946409b0b594d752feadb525460
SHA1

52200c08bdb1effeb49ed179687408d20839ef44
SHA256

5a881df079a8992bba7cc19fbc60584af3f49189d9539c75f6f8e84d28a2d499
SHA512

bcdb3ad4478a940944ed63a308dc88be7923c6905416e06a66a3936cf43ff80d2ac7ca84222445956f2e50148e6d5cfef9af0e2caa474cb4a96bae2aae76ad1a
SSDEEP

12288:uUSqVebBc0Xwe5iYAUD0lvExBbRIP4lNXBypNX6/QC31ogn6:1Vx0Xw+6vlv9KxypNqx31V

Score

N/A

Malware Config

Signatures

Files

5a881df079a8992bba7cc19fbc60584af3f49189d9539c75f6f8e84d28a2d499
.exe windows x86

e317f895a5be26dc04906b22dab8f775

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
LocalFree
HeapReAlloc
ConvertDefaultLocale
LoadResource
GetOEMCP
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
FileTimeToSystemTime
LCMapStringA
GlobalUnlock
GlobalDeleteAtom
GetLocaleInfoA
GetCurrentThread
CloseHandle
SetHandleCount
QueryPerformanceCounter
GlobalFlags
SetStdHandle
TlsSetValue
GetStringTypeA
LocalFileTimeToFileTime
GetStdHandle
GetLastError
GlobalAlloc
TlsFree
FileTimeToLocalFileTime
RtlUnwind
IsDebuggerPresent
GetFileType
VirtualFree
HeapCreate
CreateFileA
TlsAlloc
GetVersion
GetEnvironmentStrings
SetErrorMode
TerminateProcess
RaiseException
GetACP
UnlockFile
GetConsoleOutputCP
GetCommandLineW
VirtualQuery
ReadFile
WriteConsoleA
GlobalFree
GetFileSize
GlobalHandle
GetSystemInfo
GetWindowsDirectoryA
LocalReAlloc
DuplicateHandle
GetThreadLocale
GlobalReAlloc
LockResource
SetEndOfFile
lstrcmpA
HeapAlloc
SetEnvironmentVariableA
FlushFileBuffers
HeapSize
FreeLibrary
GetFileTime
GlobalLock
FreeResource
GetSystemDirectoryA
CompareStringA
LockFile
GetCommandLineA
SetFileTime
SizeofResource
HeapFree
GetVersionExA
SystemTimeToFileTime
GetConsoleMode
HeapDestroy
lstrcpyA
GetCurrentProcessId
GetCurrentThreadId
DeleteCriticalSection
GetModuleHandleA
LocalAlloc
LoadLibraryA
GetProcAddress
lstrcatA
InitializeCriticalSection
GetModuleFileNameA
GetProcessHeap

user32

GetScrollPos
GetSystemMetrics
GetWindowPlacement
CopyRect
MapWindowPoints
ValidateRect
TrackPopupMenu
MessageBeep
GetWindowDC
ReuseDDElParam
ReleaseCapture
GetDC
GetLastActivePopup
SetWindowPos
GetDesktopWindow
EndDeferWindowPos
BeginPaint
GetClientRect
GetNextDlgGroupItem
GetWindowThreadProcessId
GetSysColor
OffsetRect
TranslateMessage
GetWindowRect
GetTopWindow
IsWindow
DeferWindowPos
ScreenToClient
FillRect
GetNextDlgTabItem
PtInRect
GetSysColorBrush
BeginDeferWindowPos
EqualRect
ShowScrollBar
IsChild
IntersectRect
GetDlgItem
SetWindowContextHelpId
GetFocus
SetRectEmpty
GetMenu
GetParent
SendDlgItemMessageA
IsWindowVisible
MoveWindow
SetParent
GetMenuItemID
GetMenuCheckMarkDimensions
AdjustWindowRectEx
SetActiveWindow
InflateRect
ShowWindow
SetMenuItemBitmaps
GetCapture
RedrawWindow
SetScrollPos
GetMessageTime
GetScrollInfo
GetActiveWindow
SetCapture
UpdateWindow
UnpackDDElParam
SetScrollInfo
SetScrollRange
GetSystemMenu
EnableMenuItem
IsRectEmpty
DestroyMenu
ReleaseDC
PostQuitMessage
EndDialog
CreatePopupMenu
InvalidateRect
KillTimer
GetScrollRange
EndPaint
ShowOwnedPopups
LockWindowUpdate
SetWindowRgn
IsWindowEnabled
IsZoomed
SetForegroundWindow
MapDialogRect
SetMenu
GetMenuItemCount
CheckMenuItem
GetWindow
SetFocus

gdi32

RectVisible
SetBkMode
OffsetRgn
SetMapMode
RestoreDC
DPtoLP
SetBkColor
ScaleWindowExtEx
GetBkColor
ExtSelectClipRgn
GetRgnBox
SetTextColor
CreatePatternBrush
CreateRectRgnIndirect
CreateRectRgn
PtVisible
SetRectRgn
GetPixel
ExcludeClipRect
SetViewportOrgEx
SelectClipRgn
GetClipBox
GetMapMode
CreateCompatibleBitmap
SetViewportExtEx
GetWindowExtEx
ScaleViewportExtEx
Ellipse
OffsetViewportOrgEx
BitBlt
Escape
CreateCompatibleDC
SetWindowExtEx
GetDeviceCaps
SelectObject
DeleteDC
StretchDIBits
GetStockObject
CreateSolidBrush
GetTextColor
CreateBitmap
SaveDC
IntersectClipRect
PatBlt
CombineRgn
DeleteObject

winspool.drv

ClosePrinter

advapi32

RegCloseKey
SetFileSecurityW

ole32

CoGetClassObject
CLSIDFromProgID
CLSIDFromString
OleInitialize
OleFlushClipboard
CoRevokeClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
OleUninitialize
OleIsCurrentClipboard

oleaut32

SysAllocStringLen
SysStringLen
SafeArrayDestroy
VariantCopy
VariantInit
OleCreateFontIndirect
SysFreeString
VariantTimeToSystemTime
VariantClear
VariantChangeType
SystemTimeToVariantTime

comctl32

ord17

msvcrt

_CIcos

Sections

.text
Size: 660KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 171KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e317f895a5be26dc04906b22dab8f775

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

ole32

oleaut32

comctl32

msvcrt

Sections

.text Size: 660KB - Virtual size: 660KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 171KB - Virtual size: 256KB

.rsrc Size: 1024B - Virtual size: 952B

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 660KB - Virtual size: 660KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 171KB - Virtual size: 256KB

.rsrc
Size: 1024B - Virtual size: 952B

.reloc
Size: 3KB - Virtual size: 3KB