cf83b37d9d20eda22fe5748b89d25b20644b8d2e947f08d807141327a1f742da

Sharing

Copy URL Twitter E-mail

General

Target

cf83b37d9d20eda22fe5748b89d25b20644b8d2e947f08d807141327a1f742da
Size

414KB
MD5

76d9f122deec23526ec1d104c4691243
SHA1

9df60b23581f8a274e2fd43e9fdaad2fe8bb86b4
SHA256

cf83b37d9d20eda22fe5748b89d25b20644b8d2e947f08d807141327a1f742da
SHA512

aa19913fede83d676abd626626f2847d1fdf166c9de15ae57f3f2a77f4ecfb2e626dc67417bf0ea68c186bc0fc880fc6beeedd3be7733814f6c8412dd27491f8
SSDEEP

12288:UJ6ay2r8s6xOHMI7bvhOo5WsYYqbWqixQR:ixjRbvhVYYqbWqb

Score

N/A

Malware Config

Signatures

Files

cf83b37d9d20eda22fe5748b89d25b20644b8d2e947f08d807141327a1f742da
.exe windows x86

2ca8394e890407a7dae08e240084176b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PostMessageW
GetDC
DestroyMenu
GetParent
PeekMessageW
DrawTextExW
GetWindowLongW
UnhookWinEvent
SetWindowPlacement
CreateWindowExW
GetFocus
GetSystemMenu
GetWindowTextW
GetKeyboardLayout
MessageBeep
GetSubMenu
GetDlgItemTextW
SetScrollPos
DestroyWindow
GetActiveWindow
SetActiveWindow
GetDesktopWindow
LoadIconW
CreateDialogParamW
MoveWindow
TranslateAcceleratorW
TranslateMessage
CheckMenuItem
ChildWindowFromPoint
IsDialogMessageW
SetWinEventHook
EnumChildWindows
ShowWindow
GetMenuState
InvalidateRect
GetForegroundWindow
SetFocus
IsClipboardFormatAvailable
EnableWindow
ReleaseDC
GetPropA
SetWindowTextW
LoadCursorW
OpenClipboard
GetSysColor
BeginPaint
GetMessageW
CharUpperW
IsDialogMessageA
CharLowerW
ScreenToClient
SetWindowPos
IsIconic
GetCursorPos
WinHelpW
CloseClipboard
GetMenu
GetWindowPlacement
SendMessageW
MessageBoxW
wsprintfW
SetWindowLongW
PostQuitMessage
EnableMenuItem
LoadImageW
CharNextA
GetSystemMetrics
SetDlgItemTextW
DefWindowProcW
GetClientRect
RegisterWindowMessageW
GetDlgItem
DialogBoxParamW
RegisterClassExW
UnregisterClassA
DispatchMessageW
SendDlgItemMessageW
DispatchMessageA
UnhookWindowsHookEx
GetWindowLongA
UpdateWindow
LoadStringW
CharNextW
SetCursor
EndDialog
GetDlgCtrlID
LoadAcceleratorsW
CreateWindowExA
RegisterWindowMessageA

gdi32

GetObjectW
SetBkMode
StartPage
GetTextMetricsW
SetMapMode
SelectObject
DeleteObject
SetViewportExtEx
SetWindowExtEx
CreateDCW
AbortDoc
GetDeviceCaps
EndPage
EndDoc
LPtoDP
StartDocW
EnumFontsW
SetAbortProc
GetTextFaceW
TextOutW
DeleteDC
CreateFontIndirectW
GetTextExtentPoint32W
GetStockObject

kernel32

GetVolumeInformationW
InitializeCriticalSection
TlsGetValue
GetCurrentDirectoryA
FindFirstFileA
TerminateProcess
SetLastError
HeapCreate
GetCurrentProcess
GetProcAddress
MultiByteToWideChar
GetProcessHeap
WriteFile
QueryPerformanceCounter
GetEnvironmentStringsW
GetOEMCP
GetSystemInfo
lstrcpynW
FoldStringW
WriteConsoleA
CreateEventW
lstrcmpW
GlobalUnlock
LocalLock
GetVersionExW
SetUnhandledExceptionFilter
GetTimeFormatW
LocalReAlloc
FindClose
IsValidLocale
HeapSize
GetUserDefaultLCID
MulDiv
DisableThreadLibraryCalls
CreateFileA
CreateFileW
GetConsoleOutputCP
GetTickCount
ReadFile
InterlockedCompareExchange
FindFirstFileW
CreateProcessW
FormatMessageW
GetModuleHandleA
ExitProcess
LoadLibraryW
GetLocaleInfoW
GetFileSize
SizeofResource
UnhandledExceptionFilter
LeaveCriticalSection
InterlockedExchange
WideCharToMultiByte
GetCommandLineA
FindNextFileW
MapViewOfFile
ExpandEnvironmentStringsW
LCMapStringA
CreateEventA
SetEvent
GetEnvironmentStrings
SetHandleCount
GetVersion
GetLastError
DeleteFileW
GlobalLock
TlsFree
GetModuleFileNameA
ReleaseMutex
SetFileAttributesA
GetThreadLocale
ResetEvent
LoadLibraryA
GetStdHandle
GetStartupInfoA
GlobalAlloc
CreateFileMappingW
IsDBCSLeadByte
DeleteCriticalSection
GetSystemTimeAsFileTime
FindResourceExW
VirtualQuery
lstrcatW
EnterCriticalSection
UnlockFile
GetLocaleInfoA
VirtualProtect
UnmapViewOfFile
GetCurrentProcessId
GetSystemDefaultLangID
GetCommandLineW
GetACP
CompareStringW
GetDateFormatW
GlobalFree
SetEndOfFile
CloseHandle
IsBadWritePtr
GetFullPathNameA
lstrlenW
GetSystemDefaultLCID
GetFileType
InterlockedIncrement
GetCurrentThreadId
GetFileAttributesW
OpenMutexA
lstrcmpiW
LocalFree
LocalAlloc
Sleep
lstrcpyW
GetUserDefaultUILanguage
CreateThread
LocalSize
LoadResource
GetFileInformationByHandle
GetLocalTime
GetVersionExA
LocalUnlock

msvcrt

_cexit
__wgetmainargs
__getmainargs
exit
?terminate@@YAXXZ
time
_snwprintf
wcsncmp
memmove
memcpy
_wtol
iswctype
_purecall
_controlfp
_errno
__p__fmode
__p__commode
localtime
memset
_initterm
_c_exit
__set_app_type
wcsncpy
__setusermatherr
_adjust_fdiv
_exit
_XcptFilter
_acmdln

comdlg32

CommDlgExtendedError
PrintDlgExW
GetOpenFileNameW
ReplaceTextW
GetSaveFileNameW
GetFileTitleW
PageSetupDlgW
FindTextW
ChooseFontW

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyW
IsTextUnicode
RegQueryValueExW
RegSetValueExW

winspool.drv

GetPrinterDriverW
ClosePrinter
OpenPrinterW

shell32

ShellAboutW
DragFinish
DragAcceptFiles
DragQueryFileW

comctl32

CreateStatusWindowW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 326KB - Virtual size: 326KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 232B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ca8394e890407a7dae08e240084176b

Headers

File Characteristics

Imports

user32

gdi32

kernel32

msvcrt

comdlg32

advapi32

winspool.drv

shell32

comctl32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 326KB - Virtual size: 326KB

.data Size: 81KB - Virtual size: 81KB

.reloc Size: 512B - Virtual size: 232B

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 326KB - Virtual size: 326KB

.data
Size: 81KB - Virtual size: 81KB

.reloc
Size: 512B - Virtual size: 232B

.rsrc
Size: 3KB - Virtual size: 2KB