ffe82d9f8c3f75add8cc2df3f463af52054d6f3432bbf5210b4a8e48b6a6bf22

Sharing

Copy URL

Twitter E-mail

General

Target

ffe82d9f8c3f75add8cc2df3f463af52054d6f3432bbf5210b4a8e48b6a6bf22
Size

43KB
MD5

f069d3da101b0546d4a2398d07a40459
SHA1

894261515bed4092a508cc71d413aa7a401ae8cf
SHA256

ffe82d9f8c3f75add8cc2df3f463af52054d6f3432bbf5210b4a8e48b6a6bf22
SHA512

8af721aaf19296d6ce0b08fa89ff1e12bf5c8bb090c7c8c0c8046f83fdf6d472ffa57825ed6d498a4c9954684b7f32d63b0aa30e671668aced2be650e91b3088
SSDEEP

768:jHVjnffWtC5QMmP13oYg0hl8leYZG+gspudrpbED7fFwhxGeHs2F:jHVf+tkQV3hhalerXspuHgDRwhMep

Score

N/A

Malware Config

Signatures

Files

ffe82d9f8c3f75add8cc2df3f463af52054d6f3432bbf5210b4a8e48b6a6bf22
.exe windows x86

92dd3be6437808cbc5db49c6e77be7bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

TextOutW
SetBkMode
CreateDCW
EnumFontsW
EndDoc
GetDeviceCaps
SetMapMode
StartDocW
GetStockObject
DeleteObject
StartPage
AbortDoc
SetAbortProc
GetTextFaceW
GetObjectW
GetTextExtentPoint32W
SetWindowExtEx
SetViewportExtEx
SelectObject
EndPage
DeleteDC
GetTextMetricsW
CreateFontIndirectW
LPtoDP

user32

MessageBoxW
PostQuitMessage
FillRect
GetMenuState
CloseClipboard
GetCursorPos
ShowWindow
GetWindowPlacement
ReleaseDC
GetForegroundWindow
GetParent
ChildWindowFromPoint
PeekMessageW
OpenClipboard
DispatchMessageW
GetClassNameA
GetSubMenu
LoadCursorW
MessageBeep
UpdateWindow
CheckMenuItem
SetActiveWindow
RegisterWindowMessageW
LoadImageW
EnableMenuItem
ClientToScreen
CharNextW
GetMessageW
SendMessageW
CreateDialogParamW
DestroyIcon
IsClipboardFormatAvailable
IsIconic
DialogBoxParamW
DefWindowProcW
MoveWindow
GetFocus
TranslateAcceleratorW
TranslateMessage
InvalidateRect
SetFocus
GetDlgItemTextW
GetSystemMenu
GetDesktopWindow
SetWindowLongW
GetMessageA
LoadAcceleratorsW
WinHelpW
GetSystemMetrics
SetDlgItemTextW
DestroyWindow
GetMenu
DrawTextExW
GetDC
SetWindowTextW
RegisterClassExW
CreateWindowExW
GetAsyncKeyState
LoadStringW
EnableWindow
GetClientRect
SetCursor
LoadIconW
GetDlgItem
PostMessageW
SetScrollPos
CharLowerW
GetWindowTextW
ScreenToClient
IsDialogMessageW
SetWindowPlacement
DeleteMenu
wsprintfW
SetWinEventHook
SendDlgItemMessageW
UnhookWinEvent
OffsetRect
CharUpperW
GetDlgCtrlID
DestroyMenu
GetKeyboardLayout
EndDialog
GetKeyState
GetWindowLongW

kernel32

VirtualProtect
UnhandledExceptionFilter
GetTickCount
GetFullPathNameA
FormatMessageW
CreateFileMappingW
CreateThread
GetUserDefaultUILanguage
CreateFileW
GetFileSize
DeleteCriticalSection
ExitProcess
LocalLock
InterlockedIncrement
GetCurrentThreadId
GlobalFree
LocalUnlock
GetLocaleInfoW
GetConsoleCP
GetSystemTime
GetCurrentProcess
UnmapViewOfFile
MultiByteToWideChar
GetLocalTime
GetSystemTimeAsFileTime
GetModuleHandleW
CompareStringW
InterlockedExchange
GetACP
GetFileInformationByHandle
SetStdHandle
FoldStringW
LocalReAlloc
lstrlenA
FileTimeToSystemTime
GetDiskFreeSpaceA
LocalFree
SetFilePointer
lstrcatW
GetTimeFormatW
GetCommandLineA
WaitForSingleObject
LocalAlloc
TerminateProcess
FlushInstructionCache
lstrcpyW
HeapSize
lstrcmpiW
SetUnhandledExceptionFilter
LeaveCriticalSection
FindFirstFileW
MapViewOfFile
HeapDestroy
LocalSize
InterlockedDecrement
ExpandEnvironmentStringsW
WriteFile
lstrcmpW
WideCharToMultiByte
LoadLibraryA
GetSystemInfo
GetProcAddress
GetDriveTypeW
ReadFile
MulDiv
OutputDebugStringA
FindClose
GetFileAttributesW
DeleteFileW
HeapFree
GetCPInfo
SetLastError
GetDateFormatW
TlsFree
GetLastError
GetStartupInfoA
SetEndOfFile
GetUserDefaultLCID
GetStringTypeW
GlobalAlloc
lstrlenW
lstrcpynW
FileTimeToLocalFileTime
HeapAlloc
DisableThreadLibraryCalls
HeapReAlloc
GlobalLock
CreateDirectoryW
CloseHandle
QueryPerformanceCounter
GetModuleHandleA
GetCurrentProcessId
GlobalUnlock
InterlockedCompareExchange
GetCommandLineW

comdlg32

CommDlgExtendedError
PrintDlgExW
ChooseFontW
GetSaveFileNameW
PageSetupDlgW
ReplaceTextW
GetOpenFileNameW
FindTextW
GetFileTitleW

msvcrt

__p__fmode
_wtoi
_controlfp
_c_exit
_snwprintf
_acmdln
_CxxThrowException
__set_app_type
__getmainargs
_exit
localtime
??_V@YAXPAX@Z
wcsncmp
fclose
_wtol
_XcptFilter
iswctype
_unlock
_adjust_fdiv
__setusermatherr
exit
wcsncpy
__p__commode
_errno
_cexit
_amsg_exit
iswdigit
time
??1type_info@@UAE@XZ
_initterm

shell32

ShellAboutW
DragFinish
DragQueryFileW
DragAcceptFiles

advapi32

IsTextUnicode
RegCreateKeyW
RegSetValueExW
RegQueryValueExA
RegQueryValueExW
RegOpenKeyExA
RegCloseKey

comctl32

CreateStatusWindowW

winspool.drv

OpenPrinterW
GetPrinterDriverW
ClosePrinter

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 274B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

92dd3be6437808cbc5db49c6e77be7bc

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

user32

kernel32

comdlg32

msvcrt

shell32

advapi32

comctl32

winspool.drv

Sections

.text Size: 9KB - Virtual size: 8KB

.rdata Size: 48KB - Virtual size: 48KB

.data Size: 12KB - Virtual size: 13KB

.reloc Size: 512B - Virtual size: 274B

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 9KB - Virtual size: 8KB

.rdata
Size: 48KB - Virtual size: 48KB

.data
Size: 12KB - Virtual size: 13KB

.reloc
Size: 512B - Virtual size: 274B

.rsrc
Size: 2KB - Virtual size: 2KB