88360ff8a32eb6a96188fef6ff75ac5afa1d4da56c878de81f2280a728e2bae9

Sharing

Copy URL Twitter E-mail

General

Target

88360ff8a32eb6a96188fef6ff75ac5afa1d4da56c878de81f2280a728e2bae9
Size

468KB
MD5

8551abc1b40a96dc69d971cf36b152ba
SHA1

d316d1669e4d68e38fbc63d22e41ee5837ada61a
SHA256

88360ff8a32eb6a96188fef6ff75ac5afa1d4da56c878de81f2280a728e2bae9
SHA512

698cc91a11d41e10a5077eaff3d9fc79d63ba1a35b635a9e1113ca551a533f97183658e925a2fd4a61471e7fe572514fd9474000fa4cd510231bb2e910aceaa3
SSDEEP

12288:K9HZ73t3LiudhyoVG0cfZUKyWWrr4U1jGpOe1m:K95739iWyBboH1jnkm

Score

N/A

Malware Config

Signatures

Files

88360ff8a32eb6a96188fef6ff75ac5afa1d4da56c878de81f2280a728e2bae9
.exe windows x86

e60eec3e781e804b00c671590891bb4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

WSACleanup

advapi32

SetSecurityDescriptorDacl
AllocateAndInitializeSid
RegCreateKeyExA
RegCloseKey
OpenThreadToken
RegDeleteValueA
RegDeleteKeyA
RegEnumValueA
RegQueryValueA
RegSetValueExA
InitializeSecurityDescriptor
RegOpenKeyExA
FreeSid
GetLengthSid

winmm

joySetCapture
waveOutGetNumDevs
midiInGetDevCapsW
waveOutReset
midiInGetNumDevs
midiInStop
waveInGetNumDevs
midiInOpen
midiInClose
joyGetPos
waveOutGetPosition
joyReleaseCapture
midiInStart

comdlg32

GetFileTitleW
ChooseFontW
ChooseColorW
CommDlgExtendedError
GetSaveFileNameW
GetOpenFileNameW
PrintDlgW

kernel32

VirtualAlloc
GetStringTypeA
GetEnvironmentStringsW
DeleteCriticalSection
FlushFileBuffers
RaiseException
GetCommandLineA
VirtualFree
GetStartupInfoA
SetLastError
RemoveDirectoryA
CompareStringW
FindFirstFileA
HeapDestroy
GetLastError
InterlockedExchange
TlsGetValue
SetHandleCount
WriteFile
IsBadReadPtr
SuspendThread
GetFullPathNameA
GlobalAlloc
QueryPerformanceCounter
GetFileAttributesA
SetEnvironmentVariableA
MulDiv
GetStdHandle
GlobalHandle
LCMapStringW
WideCharToMultiByte
CreateEventA
FreeEnvironmentStringsA
GetCurrentProcess
SetFilePointer
CreateThread
lstrcmpA
IsBadCodePtr
LoadLibraryA
GetEnvironmentStrings
TlsAlloc
GetStringTypeW
FreeLibrary
GetDiskFreeSpaceA
UnhandledExceptionFilter
RtlUnwind
FreeResource
GetCurrentThreadId
ResumeThread
GlobalFree
GlobalFindAtomA
GetTempFileNameA
LCMapStringA
HeapAlloc
CopyFileA
VirtualQuery
GlobalSize
GlobalLock
OutputDebugStringA
GetModuleFileNameA
GetFileType
GetProcAddress
LockResource
IsBadWritePtr
InterlockedDecrement
ExitProcess
SizeofResource
SetThreadPriority
DeviceIoControl
GetExitCodeProcess
lstrcpynA
GetCPInfo
SetFileAttributesA
GlobalGetAtomNameA
WritePrivateProfileStringA
GetModuleHandleA
FreeEnvironmentStringsW
InitializeCriticalSection
ReadFile
GetVersion
lstrcpyW
LeaveCriticalSection
GlobalFlags
CreateMutexA
lstrlenW
GetVolumeInformationA
GlobalAddAtomA
GetVersionExA
SetStdHandle
TerminateProcess
CloseHandle
DebugBreak
GetThreadLocale
CreateFileA
TlsFree
GlobalDeleteAtom
SetUnhandledExceptionFilter
GetACP
InterlockedIncrement
TlsSetValue
GetShortPathNameA
MultiByteToWideChar
GetTickCount
GetTimeZoneInformation
WaitForSingleObject
GetSystemTime
HeapReAlloc
FileTimeToSystemTime
GetCurrentProcessId
HeapFree
CompareStringA
GetWindowsDirectoryA
GetSystemTimeAsFileTime
SetFileTime
HeapValidate
HeapCreate
GetLocalTime
EnterCriticalSection
LocalFileTimeToFileTime
MoveFileA
GetStringTypeExA
GetOEMCP
GetPrivateProfileIntA
GlobalReAlloc

winspool.drv

ord204
DocumentPropertiesA
OpenPrinterA

user32

AdjustWindowRectEx
PtInRect
SetActiveWindow
DrawIcon
GetClientRect
LoadImageA
KillTimer
SetForegroundWindow
GetClipboardData
CreateIconIndirect
PostMessageA
OpenClipboard
BeginPaint
IsChild
GetCursorPos
RegisterClassA
DispatchMessageA
GetMenuItemID
SetRect
GetMenuState
TrackPopupMenu
GetDCEx
SetCursor
keybd_event
ShowCaret
EndDeferWindowPos
SetWindowTextA
SetWindowLongA
mouse_event
ScreenToClient
GetIconInfo
GetScrollInfo
CheckDlgButton
WaitMessage
SetTimer
GetKeyState
GetWindowLongA
SetWindowPlacement
InvalidateRgn
SetMenuItemBitmaps
SendMessageA
SetMenuDefaultItem
MsgWaitForMultipleObjects
MapDialogRect
GetNextDlgGroupItem
DestroyWindow
GetWindowTextLengthA
GetWindowPlacement
SetWindowPos
DrawEdge
CreatePopupMenu
EnableWindow
CreateMenu
GetWindowTextA
GetWindow
GetScrollRange
DrawTextA
CallWindowProcA
SetDlgItemTextA
CopyImage
AttachThreadInput
IsWindow
SetWindowsHookExA
GetClassInfoExA
PostThreadMessageA
EnumWindows
SetScrollInfo
BeginDeferWindowPos
GetDlgCtrlID
GetFocus
GetDlgItem
DeleteMenu
GetSubMenu
GetWindowThreadProcessId
SetScrollRange
ReuseDDElParam
GetSysColorBrush
CloseClipboard
GetSystemMenu
MessageBeep
DestroyCaret
GetScrollPos
InvertRect
CheckMenuItem
SetCapture
GetSysColor
EmptyClipboard
PostQuitMessage
EqualRect
DrawStateA
IsWindowVisible
GetKeyboardLayout
GetWindowRect
GetForegroundWindow
TranslateMessage
CopyRect
ShowWindow
FillRect
GetParent
ValidateRect
DrawFrameControl
SetFocus
wsprintfA
GetDC
IsZoomed
IsWindowEnabled
GetMenu
SystemParametersInfoA
LoadMenuA
GetMessageA
InvalidateRect
SendDlgItemMessageA
RegisterClassExA
GetWindowDC
ShowScrollBar
DrawIconEx
LoadAcceleratorsA
LoadCursorA
DefWindowProcA
RegisterClipboardFormatA
DestroyMenu
RemoveMenu
LoadBitmapA
GetMenuItemCount
DestroyIcon
GetTopWindow
IsRectEmpty
DestroyCursor
CreateAcceleratorTableA
GetSystemMetrics
IntersectRect
LoadStringA
SetMenu
LoadIconA
GetMessagePos
ReleaseCapture
UpdateWindow
InsertMenuA
SetClipboardData
GetClassNameA
MapWindowPoints
IsIconic
GetActiveWindow
AppendMenuA
EndDialog
InflateRect
LoadStringW
ClientToScreen
EndPaint
InsertMenuItemA
DestroyAcceleratorTable

gdi32

GetDCOrgEx
CreatePen
CreateDIBitmap
GetNearestColor
GetCurrentObject
EndPage
RectVisible
SetBkMode
BeginPath
CreatePolygonRgn
GetViewportExtEx
EndDoc
SetROP2
GetBkMode
GetPaletteEntries
GetClipBox
StartPage
Rectangle
StartDocA
DeleteObject
StretchDIBits
EndPath
CreateDCA
PolyPolygon
RectInRegion
SelectClipRgn
PlayEnhMetaFile
SetBrushOrgEx
SetTextColor
GetDIBits
CreateRectRgnIndirect

ole32

CLSIDFromString
WriteClassStg
StgCreateDocfileOnILockBytes
CreateBindCtx
OleIsCurrentClipboard
OleLockRunning
CoTaskMemAlloc
OleRun
DoDragDrop
CreateDataAdviseHolder
CreateILockBytesOnHGlobal
OleUninitialize
CoRegisterClassObject
ReleaseStgMedium
CoRegisterMessageFilter
OleInitialize
OleSetClipboard
RegisterDragDrop
WriteClassStm
CLSIDFromProgID
OleGetClipboard
OleDuplicateData
CoGetClassObject
StringFromCLSID
CoLockObjectExternal
CoDisconnectObject
StringFromGUID2
StgOpenStorageOnILockBytes
OleRegGetUserType
CoTaskMemFree
CreateStreamOnHGlobal

Sections

.text
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e60eec3e781e804b00c671590891bb4a

Headers

File Characteristics

Imports

wsock32

advapi32

winmm

comdlg32

kernel32

winspool.drv

user32

gdi32

ole32

Sections

.text Size: 96KB - Virtual size: 92KB

.rdata Size: 264KB - Virtual size: 261KB

.data Size: 76KB - Virtual size: 98KB

.rsrc Size: 28KB - Virtual size: 24KB

.text
Size: 96KB - Virtual size: 92KB

.rdata
Size: 264KB - Virtual size: 261KB

.data
Size: 76KB - Virtual size: 98KB

.rsrc
Size: 28KB - Virtual size: 24KB