b6f33eb3f13e15894eaad38cf42b4483c2ac146800d1b5fd45b76faafb606cfa

Sharing

Copy URL Twitter E-mail

General

Target

b6f33eb3f13e15894eaad38cf42b4483c2ac146800d1b5fd45b76faafb606cfa
Size

292KB
MD5

47d356f5fd158f7a33f823552ca49c00
SHA1

d71eeca8844f033110d5e2c57e83d15f7f28d060
SHA256

b6f33eb3f13e15894eaad38cf42b4483c2ac146800d1b5fd45b76faafb606cfa
SHA512

19ca1bb7ae37d86ecb321694a2a5578eba2e41af58b118beb5c202357f3b49631748988e6c48f6035a1def050e3d30189282482fd3840c4af9ee6cf65de791b5
SSDEEP

6144:0Jgx+4JicoQ5Cqvrjf2bxNg1HH7rnckOIw:0mo4AcokCqvA47rnC3

Score

N/A

Malware Config

Signatures

Files

b6f33eb3f13e15894eaad38cf42b4483c2ac146800d1b5fd45b76faafb606cfa
.exe windows x86

2c5b09636480878f5cacf1e650391bba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetFileTitleA

comctl32

ImageList_LoadImageA
ImageList_Destroy
ord17
ImageList_SetBkColor

shell32

DragQueryFileA
ShellExecuteA
Shell_NotifyIconA
DragFinish

winmm

PlaySoundA

nnotes

ord2325
ord3108
ord3107
ord284
ord165
ord232
ord236
ord401
ord237
ord435
ord194
ord689
ord12
ord3008
ord3135
ord246
ord408
ord375
ord1510
ord1006
ord13
ord2486
ord2452
ord2584
ord939
ord3149
ord3148
ord376
ord358
ord203
ord1007
ord853
ord1008
ord197
ord1570
ord849
ord850
ord1005
ord1517
ord2558
ord4104
ord15
ord2005
ord1562
ord2256
ord324
ord2001
ord14
ord707
ord8584
ord462
ord460
ord199
ord8582
ord2910
ord1508
ord2549
ord2801
ord2848
ord182
ord2369
ord193
ord2177
ord741
ord628
ord2180
ord224
ord5175
ord183
ord143
ord2802
ord200
ord8570
ord198
ord8592
ord8572
ord8580
ord8594
ord8578
ord1509
ord392
ord416
ord1536
ord1524
ord1603
ord851
ord2133

kernel32

CompareStringW
ExitProcess
WriteFile
SetEnvironmentVariableA
Sleep
GetVersionExA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetProcAddress
GetModuleHandleA
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
FreeLibrary
LoadLibraryA
lstrlenA
SetLastError
MulDiv
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
MultiByteToWideChar
LocalFree
lstrcpynA
GetCurrentThread
lstrcmpA
GlobalAlloc
GetModuleFileNameA
CloseHandle
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GlobalFlags
GetLastError
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
GlobalReAlloc
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
SetErrorMode
GetCurrentProcess
CompareStringA
GetACP
SetFilePointer
FlushFileBuffers
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
GetStartupInfoA
GetCommandLineA
GetFileType
TerminateProcess
RtlUnwind
RaiseException
HeapAlloc
HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
IsBadReadPtr
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeW
IsBadCodePtr
SetStdHandle

user32

IsWindowEnabled
SystemParametersInfoA
SetCursor
SendMessageA
GetSysColor
SetWindowLongA
GetWindowLongA
KillTimer
GetClassInfoA
SetTimer
FindWindowA
MessageBeep
PostMessageA
GetMenuItemID
TrackPopupMenu
SetForegroundWindow
GetCursorPos
SetMenuDefaultItem
GetSubMenu
GetSystemMetrics
GetWindowRect
UpdateWindow
InvalidateRect
GetClientRect
EnableWindow
GetDlgItem
GetParent
DestroyWindow
CreateDialogIndirectParamA
IsWindow
SetActiveWindow
GetActiveWindow
EndDialog
GetNextDlgTabItem
GetWindowPlacement
IsIconic
SetWindowPos
GetWindow
GetForegroundWindow
GetLastActivePopup
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
UnhookWindowsHookEx
SetPropA
RegisterWindowMessageA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
DefWindowProcA
GetKeyState
GetDlgCtrlID
GetWindowTextA
GetWindowTextLengthA
GetMenuItemCount
GetMenu
RegisterClassA
wsprintfA
WinHelpA
GetCapture
MessageBoxA
GetTopWindow
IsWindowVisible
EndDeferWindowPos
CopyRect
BeginDeferWindowPos
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
GetFocus
DispatchMessageA
PeekMessageA
MapWindowPoints
SendDlgItemMessageA
GetDlgItemTextA
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
ShowWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
ReleaseDC
GetDC
ClientToScreen
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
wvsprintfA
SetRectEmpty
TranslateAcceleratorA
ReleaseCapture
GetDesktopWindow
DestroyMenu
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
PostQuitMessage
ShowOwnedPopups
ValidateRect
TranslateMessage
GetMessageA
GetClassNameA
PtInRect
GetSysColorBrush
InsertMenuA
DeleteMenu
GetMenuStringA
CharUpperA
GetClassLongA
UnregisterClassA

gdi32

Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateFontIndirectA
DeleteObject
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
CreateCompatibleBitmap
GetMapMode
BitBlt
MaskBlt
GetObjectA
GetDeviceCaps
CreateCompatibleDC

advapi32

RegOpenKeyExA
RegOpenKeyA
RegFlushKey
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegQueryValueA
RegEnumKeyA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

Sections

.text
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2c5b09636480878f5cacf1e650391bba

Headers

File Characteristics

Imports

comdlg32

comctl32

shell32

winmm

nnotes

kernel32

user32

gdi32

advapi32

winspool.drv

Sections

.text Size: 124KB - Virtual size: 120KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 16KB - Virtual size: 28KB

.rsrc Size: 120KB - Virtual size: 120KB

.text
Size: 124KB - Virtual size: 120KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 16KB - Virtual size: 28KB

.rsrc
Size: 120KB - Virtual size: 120KB