213df2ee03fe3e30018df1ac527517a96f884d324aeb6b1099b2708b79c4cd55

Sharing

Copy URL Twitter E-mail

General

Target

213df2ee03fe3e30018df1ac527517a96f884d324aeb6b1099b2708b79c4cd55
Size

336KB
MD5

330db5dfff46a6bf988955b49208b0c0
SHA1

0321fd749f96e521d65b0d0b543b248c9b985b1c
SHA256

213df2ee03fe3e30018df1ac527517a96f884d324aeb6b1099b2708b79c4cd55
SHA512

5809b2400bc1c2699cff1cd99d4150f8fa3d0fbc33648322c73caa40c0864f73ba8887de998d208cf76b194816be0f1b75bbf749dd833a09d851efcc90348715
SSDEEP

6144:ydR1jWfMVNIh7/ykf/4H3DSZPzjYOU8X66pL/AZFzFqH8:+R5VNG3ni3D2z0OUOjpLyFqH8

Score

N/A

Malware Config

Signatures

Files

213df2ee03fe3e30018df1ac527517a96f884d324aeb6b1099b2708b79c4cd55
.exe windows x86

8db10642de80c6056f0da5eb3bc28400

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ScaleWindowExtEx
GetStockObject
SetMapMode
Escape
GetViewportExtEx
SetViewportExtEx
CreateDIBPatternBrushPt
SetBkColor
DeleteObject
GetWindowExtEx
GetObjectType
SelectPalette
StartDocA
SelectClipPath
PtVisible
OffsetClipRgn
RectVisible
SetViewportOrgEx
PolyBezierTo
OffsetViewportOrgEx
SetWindowOrgEx
SetTextJustification
ExtCreatePen
ExtSelectClipRgn
GetObjectA
GetClipBox
PlayMetaFileRecord
GetCurrentPositionEx
CreateSolidBrush
SetROP2
SelectClipRgn
GetDeviceCaps
IntersectClipRect
SetStretchBltMode
LineTo
ExtTextOutA
SetWindowExtEx
SaveDC
SetMapperFlags
ArcTo
RestoreDC
DeleteDC
PolylineTo
GetDCOrgEx
SetTextColor
PolyDraw
SetColorAdjustment
GetClipRgn
SetBkMode
CreatePatternBrush
ExcludeClipRect
CreateRectRgn
SetTextCharacterExtra
ScaleViewportExtEx
TextOutA
SetArcDirection
CreatePen
SetPolyFillMode
SelectObject
OffsetWindowOrgEx
PlayMetaFile
SetTextAlign
CreateHatchBrush
CreateBitmap
EnumMetaFile
MoveToEx

kernel32

FreeEnvironmentStringsA
GetLocalTime
GetModuleHandleA
IsBadCodePtr
FileTimeToLocalFileTime
LoadResource
GetLastError
LCMapStringA
GetCurrentDirectoryA
GlobalReAlloc
HeapSize
GetCommandLineA
SetConsoleCtrlHandler
VirtualFree
LocalAlloc
FatalAppExitA
SetErrorMode
CloseHandle
LocalFileTimeToFileTime
GetPrivateProfileIntA
GetStringTypeExA
ResumeThread
GlobalDeleteAtom
GlobalFree
IsValidCodePage
GetCPInfo
GetEnvironmentStrings
lstrlenA
GetModuleFileNameA
GetWindowsDirectoryA
DeleteFileA
InterlockedIncrement
GetCurrentProcessId
GetVersionExA
GetPrivateProfileStringA
HeapCreate
GetStartupInfoA
SetLastError
GetStringTypeW
InterlockedDecrement
GetVersion
SetEnvironmentVariableA
GetTimeZoneInformation
LeaveCriticalSection
HeapAlloc
GetCurrentProcess
FileTimeToSystemTime
GetSystemTime
LocalFree
DuplicateHandle
GlobalAlloc
SetHandleCount
GlobalHandle
lstrcpynA
GlobalLock
GetLocaleInfoA
GetShortPathNameA
SetFileTime
GetFullPathNameA
MulDiv
FreeLibrary
SuspendThread
GetStdHandle
CreateEventA
GetVolumeInformationA
GetProcessVersion
GlobalUnlock
UnlockFile
FlushFileBuffers
CompareStringW
EnterCriticalSection
WriteFile
SetThreadPriority
TlsGetValue
lstrcpyA
LockResource
GetFileSize
GetStringTypeA
SetEvent
ReadFile
GlobalFlags
EnumSystemLocalesA
FindClose
LocalReAlloc
SetEndOfFile
CompareStringA
SetUnhandledExceptionFilter
IsValidLocale
CreateThread
GetCurrentThread
FindFirstFileA
SetFilePointer
RtlUnwind
DeleteCriticalSection
CreateFileA
LoadLibraryW
HeapFree
GetFileAttributesA
GlobalGetAtomNameA
lstrcatA
WideCharToMultiByte
TlsAlloc
LCMapStringW
FindResourceA
GetFileTime
LockFile
GetUserDefaultLCID
lstrcmpA
IsBadReadPtr
SystemTimeToFileTime
TlsSetValue
WritePrivateProfileStringA
IsBadWritePtr
GetEnvironmentVariableA
SetFileAttributesA
GetFileType
RaiseException
GetLocaleInfoW
HeapDestroy
FreeEnvironmentStringsW
GetThreadLocale
GlobalAddAtomA
MultiByteToWideChar
HeapReAlloc
lstrcmpiA
WaitForSingleObject

user32

IsChild
GetWindowDC
SystemParametersInfoA
EnableWindow
SetFocus
SetWindowTextA
GetClassNameA
ModifyMenuA
EndPaint
GetTopWindow
GetDlgItemInt
GetWindowLongA
SetForegroundWindow
GetFocus
GetSystemMetrics
ValidateRect
GetScrollRange
GetMenu
ShowScrollBar
RegisterClassA
SetDlgItemInt
PeekMessageA
MapWindowPoints
GetCursorPos
GetWindow
GetMenuCheckMarkDimensions
UnhookWindowsHookEx
GetCapture
CallWindowProcA
ScrollWindowEx
IsWindow
LoadCursorA
CharToOemA
GetDlgItemTextA
ClientToScreen
SendDlgItemMessageA
BeginDeferWindowPos
GetClassInfoA
LoadStringA
MoveWindow
DispatchMessageA
RegisterWindowMessageA
GetDC
CheckDlgButton
CharUpperA
UpdateWindow
OemToCharA
LoadIconA
CreateWindowExA
GetMenuItemID
IntersectRect
ReleaseDC
GetWindowTextLengthA
GetClientRect
GetDlgCtrlID
ShowWindow
GetWindowPlacement
GetMenuStringA
AdjustWindowRectEx
SendMessageA
SetWindowsHookExA
GetClassLongA
PtInRect
IsIconic
GetScrollPos
GetForegroundWindow
TranslateMessage
DeferWindowPos
SetPropA
SetCursor
SetMenuItemBitmaps
SetDlgItemTextA
EndDeferWindowPos
DefWindowProcA
GetMessageA
SetScrollPos
GetWindowRect
MessageBoxA
SetWindowLongA
SetWindowPlacement
GetMenuState
CheckRadioButton
GetSubMenu
IsDialogMessageA
wsprintfA
TabbedTextOutA
GetMenuItemCount
SetWindowPos
GetWindowTextA
RemovePropA
IsDlgButtonChecked
EqualRect
PostMessageA
SetScrollInfo
GetScrollInfo
GetActiveWindow
OffsetRect
GetSysColorBrush
ScreenToClient
CallNextHookEx
DestroyMenu
CheckMenuItem
GetNextDlgTabItem
IsWindowVisible
InsertMenuA
GetMessageTime
GrayStringA
DeleteMenu
CopyRect
LoadBitmapA
GetPropA
GetMessagePos
PostQuitMessage
ShowOwnedPopups
WinHelpA
GetDlgItem
GetParent
GetKeyState
SetActiveWindow
BeginPaint
GetDesktopWindow
DrawTextA
ScrollWindow
SetScrollRange
EnableMenuItem
DestroyWindow
IsWindowEnabled
TrackPopupMenu

advapi32

OpenProcessToken
RegOpenKeyExA
LookupPrivilegeValueA
RegSetValueExA
RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
AdjustTokenPrivileges
RegRestoreKeyA
RegQueryInfoKeyA
RegDeleteValueA
RegOpenKeyA
RegQueryValueExA
RegEnumValueA

setupapi

SetupDiSetDeviceInstallParamsA
SetupDiGetDeviceInstallParamsA
SetupDiSetSelectedDriverA
SetupDiEnumDriverInfoA
SetupGetStringFieldA
SetupOpenInfFileA
SetupFindNextLine
SetupDiClassGuidsFromNameA
SetupCloseInfFile
SetupDiSetDeviceRegistryPropertyA
SetupDiOpenDevRegKey
SetupFindFirstLineA
SetupDiBuildDriverInfoList
SetupDiCreateDeviceInfoA

shell32

DragAcceptFiles
SHGetFileInfoA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

comdlg32

GetFileTitleA

Sections

.text
Size: 170KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8db10642de80c6056f0da5eb3bc28400

Headers

File Characteristics

Imports

gdi32

kernel32

user32

advapi32

setupapi

shell32

winspool.drv

comdlg32

Sections

.text Size: 170KB - Virtual size: 170KB

.rdata Size: 42KB - Virtual size: 41KB

.rdata Size: 4KB - Virtual size: 4KB

.rdata Size: 6KB - Virtual size: 6KB

.rdata Size: 18KB - Virtual size: 99KB

.rsrc Size: 93KB - Virtual size: 92KB

.text
Size: 170KB - Virtual size: 170KB

.rdata
Size: 42KB - Virtual size: 41KB

.rdata
Size: 4KB - Virtual size: 4KB

.rdata
Size: 6KB - Virtual size: 6KB

.rdata
Size: 18KB - Virtual size: 99KB

.rsrc
Size: 93KB - Virtual size: 92KB