f2e6bad2df21c4d6ee0a844f0ffc02806b0ee13ee9132e5ddd3141dd6432c75f

Sharing

Copy URL

Twitter E-mail

General

Target

f2e6bad2df21c4d6ee0a844f0ffc02806b0ee13ee9132e5ddd3141dd6432c75f
Size

265KB
MD5

62c0ee0885d7b0df45328dca59e3922f
SHA1

0008f50a519b1a784b94685c02afd41f5143a3c6
SHA256

f2e6bad2df21c4d6ee0a844f0ffc02806b0ee13ee9132e5ddd3141dd6432c75f
SHA512

ef0abbc1eaa8a792a89d8e3cd5775b6b04938694a1ef811d2f4d30d56b865d92dedb9082cfbfbb284196da635d6a6548e20cb920b3c8f07c985103e0cae69410
SSDEEP

6144:6SrNtu0Cj2MfCx5xcDd93L6JbcS/AMe1EbjTW3as9x+K:6CNUVj2MfCx5xcDL3e5cSDniaox

Score

N/A

Malware Config

Signatures

Files

f2e6bad2df21c4d6ee0a844f0ffc02806b0ee13ee9132e5ddd3141dd6432c75f
.exe windows x86

05a2d3ef657ec294d02f948009a53ef1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantTimeToSystemTime
VariantInit
VariantCopy
VariantClear
VariantChangeType
VarR8Pow
VarDecFromBool
OleCreateFontIndirect
SystemTimeToVariantTime
SysStringLen
SysAllocStringLen
SysAllocString
SafeArrayDestroy

winspool.drv

ClosePrinter
DocumentPropertiesW
EnumPrinterDataW
GetPrintProcessorDirectoryW
OpenPrinterW

shell32

SHGetSpecialFolderPathW
SHGetFolderPathW
ShellExecuteW

advapi32

RegSetValueExW
RegQueryValueW
RegOpenKeyW
RegOpenKeyExW
RegEnumKeyW
RegCloseKey
OpenTraceW
LsaOpenPolicy
GetTrusteeTypeW
RegisterEventSourceW

wininet

InternetReadFile
InternetOpenW
InternetHangUp
InternetGetLastResponseInfoW
HttpSendRequestW
HttpOpenRequestW
GetUrlCacheEntryInfoW
GetUrlCacheEntryInfoExW

gdi32

GetTextColor
GetStockObject
GetMapMode
GetDeviceCaps
GetClipBox
ExtTextOutW
GetViewportExtEx
Escape
DeleteObject
CreateSolidBrush
CreateRectRgnIndirect
CreateFontIndirectW
CreateCompatibleDC
GetWindowExtEx
OffsetViewportOrgEx
SelectObject
SetBkColor
SetMapMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
TextOutW
ExtSelectClipRgn
StartPage
CreateBitmap

user32

PostThreadMessageW
PtInRect
RedrawWindow
RegisterClassW
RegisterClipboardFormatW
ReleaseDC
RemovePropW
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageW
SetActiveWindow
SetCapture
SetCursor
SetFocus
PostQuitMessage
SetMenuItemBitmaps
SetRect
SetWindowContextHelpId
SetWindowTextW
ShowWindow
SystemParametersInfoA
TabbedTextOutW
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
ValidateRect
WinHelpW
PostMessageW
PeekMessageW
SetForegroundWindow
OffsetRect
AdjustWindowRectEx
ModifyMenuW
MessageBoxW
MapWindowPoints
MapDialogRect
LoadImageW
LoadIconW
IsWindowVisible
IsWindow
IsRectEmpty
IsIconic
IsChild
InvalidateRgn
InvalidateRect
IntersectRect
GrayStringW
GetWindowTextW
GetWindowTextLengthW
GetWindowRect
GetWindowDC
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropW
GetParent
GetNextDlgGroupItem
GetMessageW
GetMessageTime
GetMessagePos
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetFocus
GetDlgItem
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassLongW
GetClassInfoExW
GetCapture
GetActiveWindow
EqualRect
EndDialog
EnableWindow
EnableMenuItem
DrawTextW
DrawTextExW
DispatchMessageW
DestroyWindow
DestroyMenu
DefWindowProcW
CreateWindowExW
CopyRect
CopyAcceleratorTableW
ClientToScreen
CharNextW
CallNextHookEx
BeginPaint
AppendMenuW
LoadCursorW

comdlg32

GetFileTitleW
PageSetupDlgA
WantArrows
ChooseFontW

kernel32

TerminateProcess
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetStdHandle
SetLastError
SetFilePointer
TlsFree
UnhandledExceptionFilter
UnlockFile
VirtualAlloc
VirtualFree
VirtualProtect
WriteConsoleA
WriteFile
lstrcmpA
lstrcmpW
lstrlenW
FormatMessageW
FindResourceW
FindClose
FileTimeToLocalFileTime
EnumSystemLocalesA
DuplicateHandle
CreateHardLinkA
CreateFileW
CreateFileA
CreateDirectoryW
ConvertDefaultLocale
CompareStringW
CloseHandle
TlsGetValue
SetFileAttributesW
SetErrorMode
ReadFile
QueryPerformanceCounter
LockResource
LocalReAlloc
LocalFree
LoadLibraryA
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidLocale
IsDBCSLeadByteEx
InterlockedIncrement
InterlockedExchange
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalReAlloc
GlobalHandle
GlobalFree
GlobalFlags
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetVolumeInformationW
GetVersion
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetStringTypeA
GetProcessHeap
GetOEMCP
GetModuleHandleA
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameW
GetFileSize
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetConsoleMode
GetCommandLineA
GetCPInfo
GetBinaryTypeW
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
AreFileApisANSI

Sections

.text
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 145KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05a2d3ef657ec294d02f948009a53ef1

Headers

File Characteristics

Imports

oleaut32

winspool.drv

shell32

advapi32

wininet

gdi32

user32

comdlg32

kernel32

Sections

.text Size: 54KB - Virtual size: 56KB

.rdata Size: 145KB - Virtual size: 148KB

.data Size: 37KB - Virtual size: 152KB

.idata Size: 6KB - Virtual size: 7KB

.rsrc Size: 21KB - Virtual size: 23KB

.text
Size: 54KB - Virtual size: 56KB

.rdata
Size: 145KB - Virtual size: 148KB

.data
Size: 37KB - Virtual size: 152KB

.idata
Size: 6KB - Virtual size: 7KB

.rsrc
Size: 21KB - Virtual size: 23KB