e389af98331af9e65f25e9fda28eb30d0be290abd5257e970bfb95f923683b6a

Sharing

Copy URL

Twitter E-mail

General

Target

e389af98331af9e65f25e9fda28eb30d0be290abd5257e970bfb95f923683b6a
Size

160KB
MD5

1242edb9e3b8f814f8b1cc624a1058ad
SHA1

b7896d8014b3adba179cee99367b767e62e72de2
SHA256

e389af98331af9e65f25e9fda28eb30d0be290abd5257e970bfb95f923683b6a
SHA512

2eca10d4cf5a618c3bbabdfdebd7e7fe09c23e7b3c6d70c37aed703767986022e787ffb4b34514fc928dda8c256ed541dc2354b33d1a855014fb3ad59077bbce
SSDEEP

3072:DbXif6frWQC9YRZz2ArWqGwooR8yiW6es1HKsqY6mE9GDyqfjL5RGSQO0:vXJ290XL8ptHK5Y6mEEZjzGxO0

Score

N/A

Malware Config

Signatures

Files

e389af98331af9e65f25e9fda28eb30d0be290abd5257e970bfb95f923683b6a
.exe windows x86

42ae50849f620f53f9c0d02b4f9849e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ClientToScreen
ValidateRect
UpdateWindow
UnregisterClassW
UnregisterClassA
TabbedTextOutW
ShowWindow
SetWindowsHookExW
SetWindowTextW
SetWindowPos
SetWindowLongW
SetMenuItemBitmaps
SetForegroundWindow
SetFocus
SetCursor
SetActiveWindow
SendMessageW
SendDlgItemMessageW
SendDlgItemMessageA
ScrollDC
RemovePropW
ReleaseDC
RegisterWindowMessageW
RegisterClassW
PtInRect
PostQuitMessage
PostMessageW
PeekMessageW
ModifyMenuW
MapWindowPoints
LoadIconW
LoadCursorW
LoadBitmapW
IsWindowVisible
IsWindowEnabled
IsWindow
CheckMenuItem
GetWindowTextW
GetWindowRect
GetWindowPlacement
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetShellWindow
GetPropW
GetParent
GetMessageW
GetMessageTime
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetDlgItem
GetDlgCtrlID
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetActiveWindow
EndDialog
EnableMenuItem
DrawTextW
DrawTextExW
DispatchMessageW
DestroyWindow
DestroyMenu
DdeSetUserHandle
CreateWindowExW
CreateDialogIndirectParamW
CopyRect
BeginPaint
IsDialogMessageW
AdjustWindowRectEx

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

shell32

SHGetFolderPathW
SHGetDataFromIDListA
SHFreeNameMappings

advapi32

RegSetValueExW
RegQueryValueW
RegQueryValueExW
RegOpenKeyExW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
UninstallApplication

kernel32

WriteConsoleW
WriteConsoleA
WideCharToMultiByte
VirtualProtect
VirtualFree
VirtualAlloc
VerSetConditionMask
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
TerminateJobObject
Sleep
SizeofResource
SetUnhandledExceptionFilter
WriteFile
SetStdHandle
SetLastError
WritePrivateProfileStringW
SetFilePointer
SetEvent
SetErrorMode
SetCriticalSectionSpinCount
SetCommState
ReadFile
RaiseException
QueryPerformanceCounter
OpenThread
LockResource
LocalReAlloc
LocalFree
LocalAlloc
LoadLibraryW
LCMapStringW
LCMapStringA
IsValidCodePage
IsSystemResumeAutomatic
IsDebuggerPresent
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
Heap32ListNext
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GlobalFindAtomW
GlobalDeleteAtom
GlobalCompact
GlobalAlloc
GetVersion
_lclose
lstrcmpW
lstrlenW
SetInformationJobObject
GetStdHandle
GetSystemDefaultUILanguage
GetThreadLocale
SetSystemPowerState
GetCPInfo
BackupSeek
CloseHandle
CompareStringW
ConvertDefaultLocale
CreateFileA
DebugBreak
DeviceIoControl
EnterCriticalSection
EnumResourceLanguagesW
EscapeCommFunction
ExitProcess
FindCloseChangeNotification
FindResourceW
FlushConsoleInputBuffer
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
FreeResource
GetACP
GetStartupInfoA
GetCommandLineA
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetEnvironmentStringsA
GetEnvironmentStringsW
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetProcessTimes
GetTickCount

gdi32

SetBkColor
SelectObject
ScaleViewportExtEx
SaveDC
RestoreDC
RectVisible
OffsetViewportOrgEx
GetStockObject
GetObjectW
GetDeviceCaps
GetClipBox
ExtTextOutW
Escape
DeleteObject
DeleteDC
CreateBitmap
AbortDoc
TextOutW
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetMapMode

shlwapi

PathFindExtensionW
PathFindFileNameW

oleaut32

VariantClear
VariantInit
VariantChangeType

Exports

Exports

AStartUp
CommitTransaction
CreateQuery
PszAllocA

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42ae50849f620f53f9c0d02b4f9849e2

Headers

DLL Characteristics

File Characteristics

Imports

user32

winspool.drv

shell32

advapi32

kernel32

gdi32

shlwapi

oleaut32

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 54KB

.rdata Size: 93KB - Virtual size: 92KB

.data Size: 14KB - Virtual size: 15KB

.rsrc Size: 1024B - Virtual size: 972B

.text
Size: 55KB - Virtual size: 54KB

.rdata
Size: 93KB - Virtual size: 92KB

.data
Size: 14KB - Virtual size: 15KB

.rsrc
Size: 1024B - Virtual size: 972B