ed1f079eae9397ba5fed2ed01261b9aca168b9719f4d9d68d135b7bf53058504

Sharing

Copy URL

Twitter E-mail

General

Target

ed1f079eae9397ba5fed2ed01261b9aca168b9719f4d9d68d135b7bf53058504
Size

708KB
MD5

123369ff5ec7daf7dc5cf963d69fed90
SHA1

c63ef12ac09c744315a0ac15a25236bc20bba0de
SHA256

ed1f079eae9397ba5fed2ed01261b9aca168b9719f4d9d68d135b7bf53058504
SHA512

91f7fc83bf8e8312c99741d3a75f849b281ecef895c025b20605821674140141cb27ffa8f7a3a01380688b4aa7295d4c3af1fca6a6126a41c91cea463e702232
SSDEEP

12288:8cy/DBtujLOFHgxsOhqJ28IOmJvr/r4cFZNC8z/RGHD4z5xFlE:8cyrBq4JOvYuNC8rKe

Score

N/A

Malware Config

Signatures

Files

ed1f079eae9397ba5fed2ed01261b9aca168b9719f4d9d68d135b7bf53058504
.exe windows x86

1982c2c783783fbdcf2b1578eadd803a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReuseDDElParam
IsDialogMessageA
FillRect
TrackPopupMenu
GetActiveWindow
DestroyWindow
RegisterClassExA
PostMessageA
InvalidateRect
SetWindowPos
GetFocus
ClientToScreen
SetActiveWindow
CloseClipboard
CreateCaret
LoadBitmapA
GetMenuStringA
FrameRect
DestroyIcon
GetWindowTextA
WindowFromPoint
LoadCursorA
GetKeyState
GetMenuItemCount
GetForegroundWindow
GetWindow
CopyIcon
wsprintfA
LoadStringA
ShowWindow
PostQuitMessage
GetSystemMenu
CreateIconIndirect
SetWindowTextA
IsChild
MapDialogRect
GetMessageTime
UnionRect
GetDesktopWindow
PtInRect
LoadIconA
SetCaretPos
DefWindowProcA
DeleteMenu
RegisterClipboardFormatA
DrawEdge
CopyRect
LoadAcceleratorsA
InsertMenuItemA
GetKeyboardLayout
KillTimer
OffsetRect
AppendMenuA
CharNextA
SetFocus
EnableMenuItem
SetWindowPlacement
AdjustWindowRectEx
PostThreadMessageA
SetScrollPos
EnableWindow
EndPaint
FindWindowA
SetWindowLongA
SetDlgItemTextA
GetMessageA
PeekMessageA
SetCapture
DestroyCursor
SetRect
SetRectEmpty
GetWindowPlacement
BeginPaint
GetDC
GetTabbedTextExtentA
SetParent
GetSystemMetrics
CheckMenuItem
GetDCEx
InsertMenuA
RemovePropA
RegisterClassA
SetClassLongA
TranslateMessage
GetNextDlgGroupItem

oleaut32

LoadTypeLi

gdi32

RoundRect
EndPath
DeleteDC
SelectClipRgn
DeleteObject
GetBitmapDimensionEx
EndDoc
SetMapMode
GetDeviceCaps
CreateDIBitmap
BeginPath
SetBkColor
Ellipse
FrameRgn
StartDocA
CreateDCA
ScaleWindowExtEx
GetClipRgn
GetFontData
SelectObject
OffsetRgn
SetRectRgn
EndPage
ScaleViewportExtEx
SetBitmapDimensionEx
SetWindowExtEx
StartPage
GetObjectA
CreateCompatibleDC
LineTo

shlwapi

PathFindExtensionA
PathIsUNCA
PathFindFileNameA

wsock32

WSACleanup

comdlg32

ChooseColorA
PageSetupDlgA

comctl32

_TrackMouseEvent
ImageList_ReplaceIcon
InitCommonControlsEx
ord17

kernel32

HeapCreate
DeleteCriticalSection
GetStringTypeW
FlushFileBuffers
LoadLibraryA
GetCommandLineA
QueryPerformanceCounter
GetEnvironmentStringsW
CloseHandle
RaiseException
GetVersion
GetStringTypeA
TlsSetValue
CompareStringA
GetModuleHandleA
HeapAlloc
GetLocalTime
SetUnhandledExceptionFilter
WriteFile
GetTickCount
SetStdHandle
InterlockedExchange
GetEnvironmentStrings
RtlUnwind
VirtualFree
GetOEMCP
ReadFile
SetFilePointer
GetStdHandle
GetFileType
GetCurrentProcess
GetLastError
EnterCriticalSection
GetCPInfo
SetEnvironmentVariableA
CompareStringW
GetStartupInfoA
FreeEnvironmentStringsW
GetCurrentThreadId
LCMapStringA
GetSystemTimeAsFileTime
HeapFree
InterlockedIncrement
LCMapStringW
SetLastError
GetTimeZoneInformation
TlsAlloc
VirtualQuery
HeapDestroy
GetSystemTime
WideCharToMultiByte
TlsGetValue
MultiByteToWideChar
SetHandleCount
TerminateProcess
FreeEnvironmentStringsA
CreateMutexA
UnhandledExceptionFilter
InitializeCriticalSection
IsBadCodePtr
ExitProcess
HeapReAlloc
GetProcAddress
GetModuleFileNameA
InterlockedDecrement
VirtualAlloc
GetACP
GetCurrentProcessId
LeaveCriticalSection

advapi32

RegDeleteValueA
RegSetValueExA
RegCloseKey
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueExA

winspool.drv

ord204
EnumPrintersA
DeviceCapabilitiesA

Sections

.text
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 463KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1982c2c783783fbdcf2b1578eadd803a

Headers

File Characteristics

Imports

user32

oleaut32

gdi32

shlwapi

wsock32

comdlg32

comctl32

kernel32

advapi32

winspool.drv

Sections

.text Size: 72KB - Virtual size: 68KB

.rdata Size: 464KB - Virtual size: 463KB

.data Size: 112KB - Virtual size: 108KB

.rsrc Size: 56KB - Virtual size: 53KB

.text
Size: 72KB - Virtual size: 68KB

.rdata
Size: 464KB - Virtual size: 463KB

.data
Size: 112KB - Virtual size: 108KB

.rsrc
Size: 56KB - Virtual size: 53KB