55cec5a20ae882b376549c85d095686f92970b14dd148bb22f0107af613a4683

Sharing

Copy URL Twitter E-mail

General

Target

55cec5a20ae882b376549c85d095686f92970b14dd148bb22f0107af613a4683
Size

270KB
MD5

e5e9ea353c71b6444b3c8f6c3e8fe10b
SHA1

a3cdeaddfb70e65792077c3935f42047f7cf4988
SHA256

55cec5a20ae882b376549c85d095686f92970b14dd148bb22f0107af613a4683
SHA512

84d855ae7e5c28788536b35307d69b97a1c41b8ba659dd4ca067bd570a2f9455e88fec28c6468aec6cf17b9a3e2aff92e290285845dd227f33be3bdcbccd44dd
SSDEEP

6144:76kw6/t/1ARRoEMfLo3QyX/cnME5rv7VIP0Q:z/t/1MZyU3Q3nMiTQ

Score

N/A

Malware Config

Signatures

Files

55cec5a20ae882b376549c85d095686f92970b14dd148bb22f0107af613a4683
.exe windows x86

18241ccf342b2696de763f4ed985c9c7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocStringByteLen
OleLoadPicture
SysFreeString

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

shlwapi

PathRemoveFileSpecA

winmm

timeGetTime

gdi32

CreatePolygonRgn
SetTextCharacterExtra
GetClipBox
StretchDIBits
BitBlt
GetNearestPaletteIndex
SelectObject
GetTextAlign
GetClipRgn
SelectClipPath
CreateCompatibleDC
BeginPath
CreateEllipticRgnIndirect
Pie
StretchBlt
PatBlt
CreateDIBitmap
MoveToEx
CreateRoundRectRgn
StrokePath
SetBkColor
SelectClipRgn
Arc
GetObjectW
LineTo
GetDIBColorTable
ExtSelectClipRgn
DeleteObject
GetBkColor
SetArcDirection
GetTextExtentPoint32W
ResizePalette
CreateFontIndirectW
StrokeAndFillPath
ExtCreatePen
RoundRect
ArcTo
SetTextAlign
SelectPalette
SetROP2
Polyline
TextOutW
WidenPath
EndPath
SetPixel
GetDIBits
SetBkMode
GetBkMode
PtVisible
GetMapMode
RealizePalette
SaveDC
CreateSolidBrush
CreateDIBSection
GetPaletteEntries
Ellipse
CreateRectRgn
GetTextCharacterExtra
SetGraphicsMode
CreatePalette
CreateHalftonePalette
Polygon
SetTextColor
GetTextExtentExPointW
SetStretchBltMode
MaskBlt
Rectangle
LPtoDP
DeleteDC
CreateCompatibleBitmap
GetDCOrgEx
GetDeviceCaps
GetStockObject
GdiFlush
RestoreDC
CreateBitmap

ole32

CoCreateInstance
CoUninitialize
IsEqualGUID
CreateStreamOnHGlobal
CoInitializeEx

shell32

SHGetFileInfoW
ShellExecuteW

comctl32

ImageList_Draw
ImageList_GetIconSize

advapi32

RegCloseKey
InitializeSecurityDescriptor
RevertToSelf
RegOpenKeyExA
RegSetValueExA
ImpersonateSelf
RegQueryValueExA
SetSecurityDescriptorDacl

user32

FillRect
LoadIconA
SetFocus
ScreenToClient
CreateWindowExA
SetWindowRgn
MessageBoxW
TranslateMessage
CharUpperA
PeekMessageA
SendMessageW
DefWindowProcA
PostMessageA
ReleaseDC
ExitWindowsEx
SendMessageA
GetDC
GetClipboardData
DrawTextW
DestroyWindow
BeginPaint
wsprintfA
DrawTextExW
GetCursorPos
InflateRect
GetSystemMetrics
RegisterClassExA
GetWindowLongA
IntersectRect
ClientToScreen
GetIconInfo
RegisterClipboardFormatW
LoadCursorW
CharPrevA
DispatchMessageA
EqualRect
PostQuitMessage
DrawFrameControl
EndPaint
OffsetRect
MessageBoxA
SetWindowLongA
SystemParametersInfoA
IsIconic
InvalidateRect
GetWindowPlacement
GetWindowRect
SetForegroundWindow
FindWindowExW

kernel32

GlobalHandle
CreateEventA
WaitForSingleObject
GetCurrentDirectoryA
DeleteFileA
GlobalSize
DeleteCriticalSection
GetSystemInfo
HeapReAlloc
GetCurrentThreadId
QueryPerformanceFrequency
lstrcmpiA
GetShortPathNameA
GetThreadLocale
WideCharToMultiByte
GetDateFormatA
GlobalFree
GetModuleHandleA
MulDiv
FreeLibrary
GetProcessHeap
lstrcpynA
FindResourceW
GetACP
GlobalLock
EnterCriticalSection
LocalFree
GetSystemTime
SystemTimeToFileTime
SetErrorMode
FormatMessageW
OpenMutexA
lstrlenA
GetLocalTime
CreateMutexA
LeaveCriticalSection
ReleaseMutex
CloseHandle
GlobalAlloc
OpenEventA
HeapFree
HeapAlloc
LoadLibraryExA
FormatMessageA
CreateThread
GetCommandLineW
GlobalUnlock
GetTimeFormatA
GetModuleHandleW
VirtualAllocEx

winspool.drv

OpenPrinterA
AddJobW
ResetPrinterA
PerfClose
GetPrinterDriverA
DeletePrintProvidorW
CloseSpoolFileHandle
SetPrinterDataW
AddJobA
AddPrinterDriverExW
StartDocPrinterA
DeleteMonitorW
GetFormA
DocumentPropertiesW
DeletePrinterDriverExW
EnumPrintersA
AddFormW
GetPrinterDataW
EnumPortsW
ConnectToPrinterDlg

inetmib1

SnmpExtensionInitEx
SnmpExtensionTrap

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.YDcFajf
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.jGcmHXr
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ebwZvn
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nJiB
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.JJIseKb
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hQhe
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bdfAN
Size: 109KB - Virtual size: 734KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 109KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kIfO
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PfQlGR
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.MKQam
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18241ccf342b2696de763f4ed985c9c7

Headers

DLL Characteristics

File Characteristics

Imports

oleaut32

version

shlwapi

winmm

gdi32

ole32

shell32

comctl32

advapi32

user32

kernel32

winspool.drv

inetmib1

Sections

.text Size: 19KB - Virtual size: 18KB

.YDcFajf Size: 1KB - Virtual size: 1KB

.jGcmHXr Size: 2KB - Virtual size: 2KB

.ebwZvn Size: 2KB - Virtual size: 1KB

.nJiB Size: 2KB - Virtual size: 2KB

.rdata Size: 6KB - Virtual size: 5KB

.JJIseKb Size: 2KB - Virtual size: 2KB

.hQhe Size: 3KB - Virtual size: 2KB

.bdfAN Size: 109KB - Virtual size: 734KB

.data Size: 109KB - Virtual size: 1.3MB

.kIfO Size: 3KB - Virtual size: 2KB

.PfQlGR Size: 2KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 3KB

.MKQam Size: 2KB - Virtual size: 1KB

.text
Size: 19KB - Virtual size: 18KB

.YDcFajf
Size: 1KB - Virtual size: 1KB

.jGcmHXr
Size: 2KB - Virtual size: 2KB

.ebwZvn
Size: 2KB - Virtual size: 1KB

.nJiB
Size: 2KB - Virtual size: 2KB

.rdata
Size: 6KB - Virtual size: 5KB

.JJIseKb
Size: 2KB - Virtual size: 2KB

.hQhe
Size: 3KB - Virtual size: 2KB

.bdfAN
Size: 109KB - Virtual size: 734KB

.data
Size: 109KB - Virtual size: 1.3MB

.kIfO
Size: 3KB - Virtual size: 2KB

.PfQlGR
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 3KB

.MKQam
Size: 2KB - Virtual size: 1KB