e719296ea31743e758a9c4e97422ff170c2731ba3e0f693fd9900e0f4f5632a8

Sharing

Copy URL Twitter E-mail

General

Target

e719296ea31743e758a9c4e97422ff170c2731ba3e0f693fd9900e0f4f5632a8
Size

748KB
MD5

88b55f835554d9c06be3b3bd580c9804
SHA1

35bee94402ac7a27a0aaa0f5690b31a825e865a6
SHA256

e719296ea31743e758a9c4e97422ff170c2731ba3e0f693fd9900e0f4f5632a8
SHA512

1124b6abf2433c3b605d1bf1496e69cf884ecabbf954211f840155e87e83da06f4c3c15e73c5429df0c9a3576ce231dc98bded31740a599325097a2f78cab90b
SSDEEP

12288:0EW+TQGxM8vrD99ibfS1JLA3W29s9MpEN4fEOA7M6YcyiEOwo9ANp45rBQ5ki+wb:0f+TvxdrtM3W2SMpBlAoc2OwoRBQ5kit

Score

N/A

Malware Config

Signatures

Files

e719296ea31743e758a9c4e97422ff170c2731ba3e0f693fd9900e0f4f5632a8
.exe windows x86

a9432264181d444f2ec4c60a022b5300

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

_TrackMouseEvent
DestroyPropertySheetPage
ImageList_GetIconSize
ord17
InitCommonControlsEx
ImageList_Draw
ImageList_Destroy
ImageList_LoadImageA
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Create
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_Add

gdi32

GetWindowOrgEx
RestoreDC
GetDIBits
SelectPalette
CreateDIBitmap
CreateDCA
SetBkColor
SetROP2
ResizePalette
BeginPath
SetTextColor
TextOutW
Chord
SaveDC
RoundRect
CreatePalette
MoveToEx
Polygon
SetPixel
GetPixel
CreateCompatibleBitmap
GetClipBox
SetMapMode
EndPath
ExtTextOutA
GetObjectA
Polyline
SelectClipRgn
DeleteDC
RectInRegion
PtInRegion
FillPath
Arc
Ellipse
DeleteObject
CreatePen
SetWindowOrgEx
ExcludeClipRect
SetBrushOrgEx
SetTextJustification
LineTo
ExtSelectClipRgn
TextOutA
SelectObject
GetDeviceCaps
StretchDIBits
GetRegionData
GetViewportExtEx
Rectangle
SetViewportExtEx
GetBkMode
SetTextAlign
PolyPolygon

user32

GetDC
LoadIconA
GetMenuItemInfoA
RegisterClassExA
IsIconic
IsWindowVisible
TranslateMessage
SetRectEmpty
GetClipboardFormatNameA
ShowWindow
SetFocus
DispatchMessageA
CreateAcceleratorTableA
CreateWindowExA
DefWindowProcA
GetClassLongA
MessageBoxA
DestroyWindow
SetWindowTextA
RegisterClassA
SetWindowContextHelpId

comdlg32

CommDlgExtendedError
GetOpenFileNameA

ole32

CLSIDFromProgID
CreateFileMoniker
StgOpenStorageOnILockBytes
SetConvertStg
CreateGenericComposite
OleIsCurrentClipboard
ReadFmtUserTypeStg
CoLockObjectExternal
WriteFmtUserTypeStg
OleRegGetMiscStatus
CoTreatAsClass
StringFromCLSID
OleRegEnumVerbs
ReadClassStg
GetHGlobalFromILockBytes

kernel32

GlobalHandle
IsBadWritePtr
MulDiv
ExitThread
CopyFileA
lstrcmpiA
GetLocaleInfoW
FileTimeToLocalFileTime
GlobalFree
ResumeThread
TlsSetValue
GlobalAddAtomA
WritePrivateProfileStringA
GetFileSize
GetTempFileNameA
GetSystemTime
SetEvent
FindNextFileA
CloseHandle
lstrcmpA
HeapAlloc
SetConsoleCtrlHandler
LeaveCriticalSection
SetEndOfFile
TlsFree
GetWindowsDirectoryA
GetPrivateProfileIntA
LCMapStringA
GetTimeFormatA
GetOEMCP
GlobalFindAtomA
VirtualAlloc
CreateFileA
SetEnvironmentVariableA
OutputDebugStringA
HeapValidate
SetUnhandledExceptionFilter
SizeofResource
GlobalAlloc
InterlockedDecrement
InterlockedIncrement
IsBadReadPtr
lstrcpynA
LocalReAlloc
LCMapStringW
SetFileTime
IsBadCodePtr
SetErrorMode
CreateProcessA
FindFirstFileA
DeleteFileA
HeapCreate
HeapReAlloc
SetStdHandle
GetExitCodeProcess
GetStringTypeA
QueryPerformanceCounter
GlobalLock
DuplicateHandle
LockFile
GetCurrentProcess
EnumSystemLocalesA
ExitProcess
MoveFileA
GetFileType
GetModuleFileNameA
WideCharToMultiByte
LoadResource
FreeEnvironmentStringsA
GetStringTypeW
GetEnvironmentStringsW
UnhandledExceptionFilter
FlushFileBuffers
FileTimeToSystemTime
lstrcpyA
GetFullPathNameA
GetVersionExA
SystemTimeToFileTime
FormatMessageA
DeleteCriticalSection
GetSystemInfo
CompareStringW
RaiseException
DebugBreak
GetEnvironmentStrings
CreateMutexA
GetCurrentThreadId
GetCurrentDirectoryA
RtlUnwind
GetLocalTime
SetHandleCount
HeapFree
GetPrivateProfileStringA
ReadFile
GetLocaleInfoA
LoadLibraryA
SuspendThread
FatalAppExitA
GetCurrentThread
VirtualProtect
GetVolumeInformationA
GetCPInfo
GlobalUnlock
GlobalDeleteAtom
GlobalGetAtomNameA
TlsAlloc
GetStdHandle
GetSystemDirectoryA
GetTickCount
GetTimeZoneInformation
LocalFileTimeToFileTime
GetSystemTimeAsFileTime
lstrlenA
InterlockedExchange
LocalFree
CompareStringA
MultiByteToWideChar
SetThreadPriority
GetVersion
GetShortPathNameA
GetCommandLineA
SetLastError
GetACP
InitializeCriticalSection
lstrcpyW
GlobalReAlloc
WriteFile
TlsGetValue
GetProcAddress
GetStartupInfoA
UnlockFile
LockResource
GlobalSize
CreateEventA
SetCurrentDirectoryA
GetUserDefaultLCID
GetModuleHandleA
FreeLibrary
GlobalFlags
GetLastError
GetFileAttributesA
HeapDestroy
CreateThread
GetFileTime
VirtualQuery
GetStringTypeExA
FindClose
GetDateFormatA
SetFilePointer
IsValidLocale
VirtualFree
FreeResource
FreeEnvironmentStringsW
SetFileAttributesA
TerminateProcess
LocalAlloc
EnterCriticalSection
GetThreadLocale
lstrlenW
IsValidCodePage
GetCurrentProcessId
FindResourceA
WaitForSingleObject

winspool.drv

DocumentPropertiesA
EnumPrinterDriversA
OpenPrinterA
GetPrinterDriverDirectoryA
EnumJobsA
EnumPrintersA
DeviceCapabilitiesA
AddPrinterDriverA
AddPrinterA
ord204
ClosePrinter

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 457KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9432264181d444f2ec4c60a022b5300

Headers

File Characteristics

Imports

comctl32

gdi32

user32

comdlg32

ole32

kernel32

winspool.drv

Sections

.text Size: 120KB - Virtual size: 118KB

.rdata Size: 460KB - Virtual size: 457KB

.data Size: 100KB - Virtual size: 98KB

.rsrc Size: 64KB - Virtual size: 60KB

.text
Size: 120KB - Virtual size: 118KB

.rdata
Size: 460KB - Virtual size: 457KB

.data
Size: 100KB - Virtual size: 98KB

.rsrc
Size: 64KB - Virtual size: 60KB