a9e0293183a7a684f8bd7ea9f01514021361d20a9edc4991cd1f129a0051d9b0

Sharing

Copy URL Twitter E-mail

General

Target

a9e0293183a7a684f8bd7ea9f01514021361d20a9edc4991cd1f129a0051d9b0
Size

676KB
MD5

8708e42e12a939b70dead99240ed4521
SHA1

85a5da079e18c075ad26d6bd13c5192f94cedfb4
SHA256

a9e0293183a7a684f8bd7ea9f01514021361d20a9edc4991cd1f129a0051d9b0
SHA512

c49da3a584f678377b25a7c581a8ae9e6ea2e07089d65b8ca4a02ee66a2c349c16052b0408324c8cd727ad2f04205aa706e787ec83aca709ed9b390429a1200f
SSDEEP

12288:wTVqSyaIe0yKdych/S00mqEOMO/iAISw1DkO9WGcjY/d6:s8oIjyKXS001qO/iArw1NcjKd6

Score

N/A

Malware Config

Signatures

Files

a9e0293183a7a684f8bd7ea9f01514021361d20a9edc4991cd1f129a0051d9b0
.exe windows x86

cda98195de530a3c5c3f78559fa5d5ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
EnterCriticalSection
FindNextFileA
LCMapStringA
LCMapStringW
SetFilePointer
SetConsoleCtrlHandler
GlobalReAlloc
HeapReAlloc
CompareStringA
MoveFileA
OutputDebugStringA
LockResource
LocalAlloc
SetEnvironmentVariableA
FindResourceA
LoadLibraryExA
GetCurrentThread
CreateFileA
GetACP
GetSystemDirectoryA
SetCurrentDirectoryA
ResetEvent
ExitThread
GetLogicalDriveStringsA
TerminateProcess
CreateThread
CreateDirectoryA
ResumeThread
GetWindowsDirectoryA
GetStartupInfoA
CreateProcessA
SetHandleCount
IsDebuggerPresent
ExpandEnvironmentStringsA
FreeEnvironmentStringsA
InterlockedIncrement
TlsSetValue
SetLastError
GlobalFree
GetModuleFileNameA
ReleaseMutex
CreateFileW
GetExitCodeProcess
GetStringTypeA
UnhandledExceptionFilter
CompareStringW
InterlockedDecrement
GetTickCount
GetEnvironmentVariableA
GetSystemInfo
GetDriveTypeA
SetFileAttributesA
WinExec
GetCurrentProcessId
GetCurrentDirectoryA
GetFileTime
WriteFile
VirtualFree
SetThreadPriority
GetModuleFileNameW
SetFileTime
GetTempFileNameA
GetUserDefaultLCID
GetCPInfo
GetSystemTimeAsFileTime
LoadResource
ExitProcess
GetFullPathNameA
DeviceIoControl
GlobalAlloc
DeleteCriticalSection
SetErrorMode
FreeEnvironmentStringsW
lstrlenW
GetCurrentThreadId
DuplicateHandle
LeaveCriticalSection
FlushFileBuffers
GetPrivateProfileIntA
GetStringTypeW
GlobalDeleteAtom
FormatMessageA
lstrcpynA
GetModuleHandleA
lstrlenA
TlsAlloc
GlobalSize
GetEnvironmentStrings
WaitForSingleObject
VirtualProtect
TerminateThread
GlobalLock
GetLocaleInfoA
SystemTimeToFileTime
MulDiv
GetVersionExA
IsValidCodePage
CreateMutexA
WideCharToMultiByte
GetTimeZoneInformation
ReadFile
HeapDestroy
GetLocalTime
GetCommandLineA
GlobalMemoryStatus
DeleteFileA
FindFirstFileA
HeapSize
RemoveDirectoryA
HeapFree
CloseHandle
WriteConsoleA
VirtualAlloc
GetVersion
HeapCreate
UnlockFile
CopyFileA
lstrcatA
GlobalFlags
IsBadCodePtr
SuspendThread
RtlUnwind
ConvertDefaultLocale
FindClose
lstrcmpA
GetOEMCP
FileTimeToSystemTime
LoadLibraryA
lstrcmpiA
GlobalHandle
GetStdHandle
GetDateFormatA
GetLastError
GetCurrentProcess
VirtualQuery
TlsGetValue
LockFile
GetProcAddress
HeapAlloc
SizeofResource
SetEndOfFile
InterlockedExchange
GetSystemTime
UnmapViewOfFile
GetPrivateProfileStringA
LocalFree
SetStdHandle
MultiByteToWideChar
FileTimeToLocalFileTime
GetThreadLocale
CreateEventA
GetVolumeInformationA
QueryPerformanceCounter
IsBadWritePtr
GetStringTypeExA
GetProcessHeap
IsBadReadPtr
lstrcpyA
GetTempPathA
LocalReAlloc
GetFileAttributesA
SetUnhandledExceptionFilter
InitializeCriticalSection
GlobalUnlock
GetEnvironmentStringsW
GetFileSize
GetFileType
RaiseException
Sleep

user32

CallWindowProcA
SetClassLongA
GetClassInfoExA
ReleaseDC
SetWindowPos
UnionRect
EnableMenuItem
EnableWindow
LockWindowUpdate
SetParent
GetClassNameA
ReleaseCapture
SystemParametersInfoA
wsprintfA
GetClassInfoA
GetKeyboardState
GetClientRect
CopyRect
DrawEdge
TrackPopupMenu
SetForegroundWindow
DestroyMenu
RegisterClassExA
DestroyIcon
MapDialogRect
FrameRect
DrawFrameControl
EnumChildWindows
CreateMenu
GetMessagePos
CallNextHookEx
CopyAcceleratorTableA
SetWindowTextA
LoadCursorA
GetMenuStringA
FindWindowA
SetRect
GetDesktopWindow
InflateRect
SetMenuItemBitmaps
MoveWindow
OffsetRect
GetIconInfo
TabbedTextOutA
CreatePopupMenu
GetParent
BringWindowToTop
GetWindowTextA
DefWindowProcA
CreateCaret
ShowWindow
DrawTextA
TranslateMessage
IsWindow
SetWindowLongA
RedrawWindow
GetDlgCtrlID
GetWindowTextLengthA
KillTimer
IsIconic
AppendMenuA
EndDialog
CheckMenuItem
SendDlgItemMessageA
SetTimer
GetScrollRange
LoadStringA
GetWindowPlacement
GetClassLongA
ScreenToClient
UpdateWindow
DrawFocusRect
DrawIconEx
ModifyMenuA
SetCapture
LoadBitmapA
WinHelpA
RegisterClassA

winspool.drv

OpenPrinterW
DocumentPropertiesW
ord204

advapi32

OpenSCManagerA
RegCreateKeyExA
RegOpenKeyA
RegOpenKeyExA
RegSetValueExA
RegEnumKeyA
RegQueryValueA
RegCloseKey
RegQueryValueExA
QueryServiceConfigA
RegCreateKeyA
RegSetValueA
RegDeleteKeyA

comdlg32

GetOpenFileNameA
ChooseFontA

comctl32

CreatePropertySheetPageA
ImageList_GetImageCount
DestroyPropertySheetPage
InitCommonControlsEx

ole32

RegisterDragDrop
CoRevokeClassObject
IsAccelerator
CoTaskMemFree
CLSIDFromString
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
WriteClassStm
CoCreateInstance
OleTranslateAccelerator
WriteClassStg
CoGetClassObject
OleRegGetUserType
CoTaskMemAlloc
CoInitializeSecurity
CoFreeUnusedLibraries
OleDuplicateData
CLSIDFromProgID

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 476KB - Virtual size: 473KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cda98195de530a3c5c3f78559fa5d5ed

Headers

File Characteristics

Imports

kernel32

user32

winspool.drv

advapi32

comdlg32

comctl32

ole32

Sections

.text Size: 72KB - Virtual size: 71KB

.rdata Size: 476KB - Virtual size: 473KB

.data Size: 100KB - Virtual size: 107KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 72KB - Virtual size: 71KB

.rdata
Size: 476KB - Virtual size: 473KB

.data
Size: 100KB - Virtual size: 107KB

.rsrc
Size: 24KB - Virtual size: 20KB