7e5808103d00b9bbdadebddbe47cbae4127a291f7f6f32c2e9e28fde107e01b4

Sharing

Copy URL Twitter E-mail

General

Target

7e5808103d00b9bbdadebddbe47cbae4127a291f7f6f32c2e9e28fde107e01b4
Size

260KB
MD5

05b65fb05c8d86a3ab1c82b40701a110
SHA1

64c218f4ba361b5f15b69d6d587fccdcd1cb931c
SHA256

7e5808103d00b9bbdadebddbe47cbae4127a291f7f6f32c2e9e28fde107e01b4
SHA512

d38e647e3506e39f993141862aa4ee60fda2e1a8e38528a1e0cf43de903a9c35f0b00535ee450602a01049774b6db96f40f4e7a3a4686b9e87e968a8cc1e01a2
SSDEEP

6144:yvi40jwU/31ooy/OMZdguZqjJ4JnEwJSjELh:yqzwI1/y/OMZdVsJGnEYSo

Score

N/A

Malware Config

Signatures

Files

7e5808103d00b9bbdadebddbe47cbae4127a291f7f6f32c2e9e28fde107e01b4
.exe windows x86

97fcaa8587ca4000e658faa385d3199d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

SetSecurityDescriptorControl
RegOpenKeyExA
GetAclInformation
RegCreateKeyExA
AddUsersToEncryptedFile
LsaICLookupNamesWithCreds
AddAccessDeniedAceEx
MSChapSrvChangePassword
ElfOldestRecord
ElfCloseEventLog
RegSetValueExA
SystemFunction016
RegDeleteValueA
LsaEnumeratePrivileges
LockServiceDatabase
RegCloseKey
SystemFunction030

user32

LoadBitmapA
GetMessageA
GetMenuState
IsWindowEnabled
ReleaseDC
PeekMessageA
SetForegroundWindow
GetCapture
IsWindow
GetTopWindow
SetWindowsHookExA
DefWindowProcA
CreateWindowExA
CharUpperA
SetWindowTextA
TranslateMessage
PostQuitMessage
SetCursor
IsDialogMessageA
GetPropA
GetMessageTime
PostMessageA
CallWindowProcA
MessageBoxA
GetForegroundWindow
AdjustWindowRectEx
ModifyMenuA
GetSysColor
EndDialog
CreateDialogIndirectParamA
GetMessagePos
SetWindowPos
GetDlgItem
GetMenuItemID
GetActiveWindow
GetMenuCheckMarkDimensions
ClientToScreen
EndPaint
GetClientRect
GrayStringA
SetActiveWindow
DdeEnableCallback
GetClassInfoA
SendDlgItemMessageA
BeginPaint
IsWindowVisible
UpdateWindow
GetCursorPos
SystemParametersInfoA
RemovePropA
DestroyMenu
GetWindowTextLengthA
SetFocus
GetClassNameA
CallNextHookEx
ValidateRect
MapWindowPoints
GetLastActivePopup
GetFocus
SetPropA
GetSystemMetrics
WinHelpA
GetKeyState
LoadCursorA
GetDlgCtrlID
DestroyWindow
GetWindowRect
EnableWindow
DrawIcon
wsprintfA
TabbedTextOutA
SetMenuItemBitmaps
GetWindow
GetNextDlgTabItem
SetWindowLongA
GetMenuItemCount
GetSubMenu
GetWindowLongA
GetMenu
GetParent
LoadStringA
DispatchMessageA
RegisterClassA
IsIconic
GetClassLongA
GetWindowPlacement
EnableMenuItem
UnregisterClassA
LoadIconA
SendMessageA
CheckMenuItem
ExitWindowsEx
GetSysColorBrush
UnhookWindowsHookEx
RegisterWindowMessageA
CopyRect
GetDC
ShowWindow
GetWindowTextA
DrawTextA
PtInRect

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA
DeletePrinterIC
EndDocPrinter
PlayGdiScriptOnPrinterIC

winmm

mixerOpen
waveOutGetPitch
mid32Message
mmioAdvance

gdi32

ScaleViewportExtEx
EnumEnhMetaFile
GetRelAbs
SetWindowExtEx
SaveDC
SetViewportOrgEx
GetDCPenColor
RectVisible
SetMapMode
SetBkColor
Escape
DeleteObject
SelectClipRgn
DeleteDC
TextOutA
GetStockObject
CreateEllipticRgn
ScaleWindowExtEx
OffsetViewportOrgEx
CreateDIBitmap
SetTextColor
ExtTextOutA
gdiPlaySpoolStream
RestoreDC
CreateBitmap
PtVisible
PtInRegion
SelectObject
GetObjectA
RoundRect
GetDeviceCaps
SetViewportExtEx
GdiPlayDCScript
GetClipBox

comdlg32

GetFileTitleA
dwOKSubclass

kernel32

GlobalFlags
lstrcmpA
GetCurrentDirectoryA
SystemTimeToTzSpecificLocalTime
GetFileAttributesA
Beep
HeapSize
InterlockedDecrement
ReleaseActCtx
SetLastError
FreeEnvironmentStringsA
MulDiv
LCMapStringA
CompareStringA
lstrcpynA
GetFileType
RtlUnwind
GetStringTypeA
GetCurrentThread
GlobalGetAtomNameA
GetProcessVersion
LoadLibraryA
GetProcAddress
GetSystemDirectoryA
GetOEMCP
Toolhelp32ReadProcessMemory
GetWindowsDirectoryA
HeapFree
TlsGetValue
GetStringTypeW
LocalFree
SetConsoleCursorInfo
TlsAlloc
GlobalDeleteAtom
GlobalUnlock
SetConsoleTextAttribute
WriteFile
GetDriveTypeA
InitializeSListHead
FreeEnvironmentStringsW
SetSystemTime
IsBadWritePtr
DosDateTimeToFileTime
SetTimeZoneInformation
CloseHandle
LocalFileTimeToFileTime
GlobalReAlloc
HeapReAlloc
ClearCommError
ExitProcess
SetFilePointer
GetVersion
SystemTimeToFileTime
GetThreadLocale
GetLastError
InitializeCriticalSection
FileTimeToLocalFileTime
HeapAlloc
FindResourceA
lstrcmpiA
WritePrivateProfileStringA
GlobalFree
EnterCriticalSection
GetTimeZoneInformation
RaiseException
CompareStringW
TlsFree
lstrcpyA
GetACP
GetCommandLineA
UnlockFile
WideCharToMultiByte
GetStartupInfoA
TlsSetValue
GetFileTime
GetEnvironmentStringsA
GetEnvironmentStringsW
GetVersionExA
GlobalFindAtomA
IsDebuggerPresent
InterlockedIncrement
FindFirstFileA
LeaveCriticalSection
lstrcatA
Sleep
LocalAlloc
LCMapStringW
GetFullPathNameA
ReadProcessMemory
VirtualAlloc
GlobalHandle
SetCurrentDirectoryA
GetCPInfo
UnhandledExceptionFilter
FindNextFileA
LockFile
GetModuleFileNameA
GetModuleHandleA
GetCurrentProcess
IsBadCodePtr
CreateFileA
IsBadReadPtr
SetHandleCount
FatalExit
DeleteCriticalSection
TerminateProcess
ReadFile
GetStdHandle
MapUserPhysicalPages
HeapCreate
MultiByteToWideChar
GetEnvironmentVariableA
GetCurrentThreadId
LocalReAlloc
SetFileAttributesA
IsValidLocale
GlobalAlloc
VirtualFree
DuplicateHandle
lstrlenA
LockResource
HeapDestroy
GlobalAddAtomA
SetConsoleScreenBufferSize
SetEndOfFile
GetFileSize
SetConsoleCursorPosition
FindClose
SetEnvironmentVariableA
SetErrorMode
FileTimeToSystemTime
SetStdHandle
GetVolumeInformationA
FreeLibrary
DeleteFileA
SetUnhandledExceptionFilter
FlushFileBuffers
GlobalLock
LocalUnlock
SetFileTime
LoadResource
FlushInstructionCache

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97fcaa8587ca4000e658faa385d3199d

Headers

File Characteristics

Imports

advapi32

user32

winspool.drv

winmm

gdi32

comdlg32

kernel32

Sections

.text Size: 177KB - Virtual size: 177KB

.rdata Size: 17KB - Virtual size: 17KB

.data Size: 33KB - Virtual size: 35KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 177KB - Virtual size: 177KB

.rdata
Size: 17KB - Virtual size: 17KB

.data
Size: 33KB - Virtual size: 35KB

.rsrc
Size: 31KB - Virtual size: 30KB