75e69daf468b6102d8b8dd6b8a3c6a82f4bbc84eca7abae2c549b4f30bcbf473

Sharing

Copy URL Twitter E-mail

General

Target

75e69daf468b6102d8b8dd6b8a3c6a82f4bbc84eca7abae2c549b4f30bcbf473
Size

338KB
MD5

9cb13931a4e19e14e8fa964166a5f1ab
SHA1

382e7e6a2fab03fec380e3a0c2feda300b7e26c7
SHA256

75e69daf468b6102d8b8dd6b8a3c6a82f4bbc84eca7abae2c549b4f30bcbf473
SHA512

edd6bdc32428b938ff9e9e16a401699186b895fd1cf0cbf2e1b1f6e35a4643648f7205d1fce7b89e309e46745ad547f64973d0dd6ca4733509bfd7558b2f3579
SSDEEP

6144:JZUjy66ETjiO03cYcpHgJ4EME6wNOFlNIcHqkZh7Kol/xCVMpgY/e0dm:JZiTjiO0nMAWrE6wclNIcKkZ1Kolc6pG

Score

N/A

Malware Config

Signatures

Files

75e69daf468b6102d8b8dd6b8a3c6a82f4bbc84eca7abae2c549b4f30bcbf473
.exe windows x86

2e8d1e1883eaeff2e487dcde8c679112

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempFileNameA

user32

LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
SetActiveWindow
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
SetScrollInfo
GetTopWindow
MessageBoxA
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SystemParametersInfoA
IsIconic
LoadStringA
EnumChildWindows
EnableMenuItem
WindowFromPoint
GetCursorPos
KillTimer
SetTimer
InflateRect
PeekMessageA
GetAsyncKeyState
GetScrollRange
SetScrollPos
SetScrollRange
GetScrollPos
IsRectEmpty
ShowScrollBar
SetRectEmpty
GetSysColor
CopyRect
UnregisterClassA
GetClientRect
EndPaint
InvalidateRect
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
DestroyWindow
SetFocus
GetFocus
IsChild
GetClassInfoExA
RegisterClassExA
CharUpperA
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
CharNextA
CreateWindowExA
CallWindowProcA
GetWindowLongA
SetWindowLongA
ShowWindow
UnionRect
PtInRect
GetKeyState
DefWindowProcA
GetClassNameA
ScreenToClient
GetDC
GetSysColorBrush
PostMessageA
GetWindowPlacement
ReleaseDC
wsprintfA
LoadBitmapA
GetWindowRect
SetWindowPos
LoadCursorA
SetCursor
GetWindowTextA
IsWindow
SendMessageA
RegisterWindowMessageA
EnableWindow
GetParent
GetNextDlgTabItem
DestroyMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
GetMessageA
TranslateMessage
ValidateRect
ShowOwnedPopups
PostQuitMessage
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
GrayStringA
DrawTextA
TabbedTextOutA
ClientToScreen
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
BeginPaint
IsDialogMessageA
IsWindowEnabled
SetWindowTextA
MoveWindow
GetSystemMetrics
GetDlgCtrlID

gdi32

TextOutA
Rectangle
CreateRectRgnIndirect
DeleteMetaFile
CloseMetaFile
RestoreDC
SetWindowExtEx
SetWindowOrgEx
SaveDC
CreateMetaFileA
DeleteDC
SetViewportOrgEx
SetMapMode
CreateDCA
CreateSolidBrush
LPtoDP
SelectObject
GetStockObject
CreatePen
GetTextMetricsA
GetObjectA
Polygon
GetClipBox
SetTextColor
CreateBitmap
SetBkColor
SetBkMode
CreateFontIndirectA
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
ScaleWindowExtEx
LineTo
MoveToEx
DeleteObject
RectVisible
ExtTextOutA
PtVisible
Escape
GetDeviceCaps
SetTextAlign
GetTextExtentPoint32A

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
RegQueryValueExA

shell32

DragQueryFileA
DragFinish
FindExecutableA
ShellExecuteA

ole32

CoCreateGuid
CoGetMalloc
CreateOleAdviseHolder
OleSaveToStream
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoDisconnectObject
CoCreateInstance
WriteClassStm
OleLoadFromStream

olepro32

ord250

oleaut32

VarUI4FromStr
LoadTypeLi
SysStringLen
SysAllocString
GetErrorInfo
VariantClear
RegisterTypeLi
VariantChangeType
SysAllocStringByteLen
SysStringByteLen
LoadRegTypeLi
SysAllocStringLen
SysFreeString

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.orpc
Size: 301KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e8d1e1883eaeff2e487dcde8c679112

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

ole32

olepro32

oleaut32

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 7KB - Virtual size: 8KB

.data Size: 3KB - Virtual size: 8KB

.orpc Size: 301KB - Virtual size: 372KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 7KB - Virtual size: 8KB

.data
Size: 3KB - Virtual size: 8KB

.orpc
Size: 301KB - Virtual size: 372KB

.rsrc
Size: 9KB - Virtual size: 9KB