bb8814a729b371772c76e7f43e0eeb3a953773b5067c72df63569a6a6b1d664c

Sharing

Copy URL Twitter E-mail

General

Target

bb8814a729b371772c76e7f43e0eeb3a953773b5067c72df63569a6a6b1d664c
Size

892KB
MD5

13e186ac796cf0c29935f84501557620
SHA1

e97479b4fd8abde5ad26b351f4e806eb85cd363f
SHA256

bb8814a729b371772c76e7f43e0eeb3a953773b5067c72df63569a6a6b1d664c
SHA512

f78ceb4522ab60369f0befa4f8bcf86aa3e5a520a6a2390e199cf6d7ecd57a357fb5dbc2cc38030dd92ab7bde5c8c29e101d13eb48475f68e0ca0f9cb86795f6
SSDEEP

12288:7NOZKnQ1B6A+e9s5pBrHxbHbMM05m5H4X9zdia6GkakOMvGfyB4KGnM6Hy:7NOmA+e9SppHxEBr96XEYeyaFM6H

Score

N/A

Malware Config

Signatures

Files

bb8814a729b371772c76e7f43e0eeb3a953773b5067c72df63569a6a6b1d664c
.exe windows x86

43cf76dbd2ea20bce8a42fd3a12a3343

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winspool.drv

ClosePrinter
GetPrinterDriverA
GetPrinterDriverDirectoryA
EnumJobsA
GetPrinterDataA
OpenPrinterA
SetPrinterDataA
GetPrinterA
EnumPortsA
DocumentPropertiesA
EnumPrintersA
EndDocPrinter
EndPagePrinter
WritePrinter
StartPagePrinter
StartDocPrinterA

kernel32

GetFileAttributesA
GetLocalTime
RtlUnwind
HeapFree
ExitProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
GetSystemTime
ExitThread
GetTimeZoneInformation
RaiseException
GetACP
SetUnhandledExceptionFilter
GetEnvironmentVariableA
HeapDestroy
HeapAlloc
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
LCMapStringA
LCMapStringW
GetFileType
GetOEMCP
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
LoadLibraryA
ReleaseMutex
GetCurrentDirectoryA
SetCurrentDirectoryA
CreateThread
SetEvent
FindResourceA
LoadResource
SizeofResource
LockResource
MulDiv
WaitForSingleObject
GetVersionExA
Sleep
CreateFileA
GetLastError
lstrcpyA
lstrlenA
lstrcatA
GetModuleHandleA
GetSystemDirectoryA
GetWindowsDirectoryA
GlobalAlloc
GlobalLock
GetProfileIntA
GlobalUnlock
GlobalFree
GetSystemDefaultLCID
CreateProcessA
SetEndOfFile
GetCurrentProcess
FlushFileBuffers
SetFilePointer
WritePrivateProfileStringA
SetErrorMode
FindResourceExA
SetStdHandle
GetCPInfo
GetProcessVersion
CloseHandle
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
GlobalFlags
lstrcpynA
GetModuleFileNameA
GetCurrentThread
SuspendThread
SetThreadPriority
ResumeThread
VirtualProtect
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpA
GetVersion
WaitForMultipleObjects
GetExitCodeThread
TerminateThread
LocalFree
ReleaseSemaphore
CreateSemaphoreA
InterlockedDecrement
EnterCriticalSection
LeaveCriticalSection
GetCurrentThreadId
InterlockedIncrement
IsBadWritePtr
IsBadReadPtr
GetComputerNameA
GetProcAddress
GetProfileStringA
InitializeCriticalSection
LocalAlloc
MultiByteToWideChar
lstrlenW
WideCharToMultiByte
DeviceIoControl
WriteFile
ReadFile
SetLastError
OutputDebugStringA
CreateEventA
FreeLibrary
CreateMutexA
OpenMutexA
GetStringTypeA
GetStringTypeW
HeapReAlloc
HeapSize
HeapCreate

user32

SetCursor
DestroyMenu
GetClassNameA
PtInRect
LoadCursorA
GetSysColorBrush
TabbedTextOutA
ClientToScreen
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
GetMessageA
CheckRadioButton
CheckDlgButton
PostMessageA
SendDlgItemMessageA
MapWindowPoints
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
GetTopWindow
GetCapture
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetCursorPos
ValidateRect
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DrawTextA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
GetWindowPlacement
EndDialog
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
IsWindowEnabled
wsprintfA
GetSystemMenu
EnableMenuItem
AppendMenuA
GetFocus
GetActiveWindow
SetFocus
SetActiveWindow
FindWindowA
ShowWindow
LoadStringA
MessageBoxA
IsIconic
GetSystemMetrics
MapDialogRect
GetAsyncKeyState
GrayStringA
PostQuitMessage
PeekMessageA
DispatchMessageA
TranslateMessage
InvalidateRect
IsWindow
GetWindowDC
GetWindowRect
OffsetRect
FrameRect
InflateRect
GetClientRect
SetForegroundWindow
GetDlgItem
GetSysColor
WinHelpA
GetSubMenu
GetMenuItemID
CreateWindowExA
BeginPaint
EndPaint
UpdateWindow
CharUpperA
SendMessageA
GetDC
DrawIcon
ReleaseDC
DestroyIcon
LoadIconA
EnableWindow
LoadBitmapA
GetKeyState
GetNextDlgTabItem
UnhookWindowsHookEx
UnregisterClassA

gdi32

GetStockObject
GetSystemPaletteEntries
MoveToEx
SelectObject
CreateSolidBrush
CreatePalette
LineTo
GetDeviceCaps
CreatePen
DeleteObject
GetObjectA
EndPage
StartPage
StartDocA
BitBlt
RealizePalette
SelectPalette
CreateCompatibleDC
DeleteDC
SetEnhMetaFileBits
DeleteEnhMetaFile
PlayEnhMetaFile
GetEnhMetaFileHeader
CreateDCA
SetBkColor
CreateBitmap
GetPixel
GetClipBox
SetTextColor
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreateDIBSection
PtVisible
TextOutA
ExtTextOutA
RectVisible
Escape
EnumFontFamiliesExA
EndDoc
StretchDIBits
CreateFontIndirectA

comdlg32

PrintDlgA

advapi32

RegEnumValueA
RegQueryValueExA
RegQueryInfoKeyA
RegFlushKey
RegOpenKeyA
RegEnumValueW
RegEnumKeyW
RegEnumKeyA
RegSetValueExA
RegEnumKeyExA
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

shell32

ShellExecuteA

comctl32

ImageList_Create
ImageList_Destroy
ImageList_AddMasked
DestroyPropertySheetPage
PropertySheetA
ord17
CreatePropertySheetPageA

ole32

CoUninitialize
CoInitialize

oleaut32

SafeArrayGetLBound
SysAllocStringByteLen
VariantClear
SafeArrayPutElement
SafeArrayCreate
VariantInit
SafeArrayGetUBound
SafeArrayUnaccessData
SafeArrayAccessData
LoadRegTypeLi
SysFreeString
SysStringLen
SysAllocString
SysAllocStringLen

Sections

.text
Size: 300KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 496KB - Virtual size: 1.6MB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

43cf76dbd2ea20bce8a42fd3a12a3343

Headers

File Characteristics

Imports

version

winspool.drv

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

ole32

oleaut32

Sections

.text Size: 300KB - Virtual size: 296KB

.rdata Size: 60KB - Virtual size: 56KB

.data Size: 24KB - Virtual size: 40KB

.rsrc Size: 8KB - Virtual size: 5KB

.vmp0 Size: 496KB - Virtual size: 1.6MB

.text
Size: 300KB - Virtual size: 296KB

.rdata
Size: 60KB - Virtual size: 56KB

.data
Size: 24KB - Virtual size: 40KB

.rsrc
Size: 8KB - Virtual size: 5KB

.vmp0
Size: 496KB - Virtual size: 1.6MB