c3c6c38ae9f714103a6de4371e5a3e9fdf6b370975007aeed301f62530a8fe33

Sharing

Copy URL Twitter E-mail

General

Target

c3c6c38ae9f714103a6de4371e5a3e9fdf6b370975007aeed301f62530a8fe33
Size

267KB
MD5

dd6860119c22c5cc012cbd9cb43f8819
SHA1

93ae0c09f50e134efd2d21db4d3d52f709fb6637
SHA256

c3c6c38ae9f714103a6de4371e5a3e9fdf6b370975007aeed301f62530a8fe33
SHA512

d5f25e35848f34d7e46a2b1276a02aa9a430aadb02b18f997ca4e69b7e04277544de872832e3925b36d45bf04ec3b9953bed28d3a23e9dfd25b885a117c57351
SSDEEP

6144:5Aajbs7b4hB0hICBjfHQygk1Vh8jZlrNGm6mbK:5hbQYB0hrJHeIsjrt

Score

N/A

Malware Config

Signatures

Files

c3c6c38ae9f714103a6de4371e5a3e9fdf6b370975007aeed301f62530a8fe33
.exe windows x86

05a2d3ef657ec294d02f948009a53ef1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantTimeToSystemTime
VariantInit
VariantCopy
VariantClear
VariantChangeType
VarR8Pow
VarDecFromBool
OleCreateFontIndirect
SystemTimeToVariantTime
SysStringLen
SysAllocStringLen
SysAllocString
SafeArrayDestroy

winspool.drv

ClosePrinter
DocumentPropertiesW
EnumPrinterDataW
GetPrintProcessorDirectoryW
OpenPrinterW

shell32

SHGetSpecialFolderPathW
SHGetFolderPathW
ShellExecuteW

advapi32

RegSetValueExW
RegQueryValueW
RegOpenKeyW
RegOpenKeyExW
RegEnumKeyW
RegCloseKey
OpenTraceW
LsaOpenPolicy
GetTrusteeTypeW
RegisterEventSourceW

wininet

InternetReadFile
InternetOpenW
InternetHangUp
InternetGetLastResponseInfoW
HttpSendRequestW
HttpOpenRequestW
GetUrlCacheEntryInfoW
GetUrlCacheEntryInfoExW

gdi32

GetTextColor
GetStockObject
GetMapMode
GetDeviceCaps
GetClipBox
ExtTextOutW
GetViewportExtEx
Escape
DeleteObject
CreateSolidBrush
CreateRectRgnIndirect
CreateFontIndirectW
CreateCompatibleDC
GetWindowExtEx
OffsetViewportOrgEx
SelectObject
SetBkColor
SetMapMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
TextOutW
ExtSelectClipRgn
StartPage
CreateBitmap

user32

PostThreadMessageW
PtInRect
RedrawWindow
RegisterClassW
RegisterClipboardFormatW
ReleaseDC
RemovePropW
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageW
SetActiveWindow
SetCapture
SetCursor
SetFocus
PostQuitMessage
SetMenuItemBitmaps
SetRect
SetWindowContextHelpId
SetWindowTextW
ShowWindow
SystemParametersInfoA
TabbedTextOutW
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
ValidateRect
WinHelpW
PostMessageW
PeekMessageW
SetForegroundWindow
OffsetRect
AdjustWindowRectEx
ModifyMenuW
MessageBoxW
MapWindowPoints
MapDialogRect
LoadImageW
LoadIconW
IsWindowVisible
IsWindow
IsRectEmpty
IsIconic
IsChild
InvalidateRgn
InvalidateRect
IntersectRect
GrayStringW
GetWindowTextW
GetWindowTextLengthW
GetWindowRect
GetWindowDC
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropW
GetParent
GetNextDlgGroupItem
GetMessageW
GetMessageTime
GetMessagePos
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetFocus
GetDlgItem
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetClassLongW
GetClassInfoExW
GetCapture
GetActiveWindow
EqualRect
EndDialog
EnableWindow
EnableMenuItem
DrawTextW
DrawTextExW
DispatchMessageW
DestroyWindow
DestroyMenu
DefWindowProcW
CreateWindowExW
CopyRect
CopyAcceleratorTableW
ClientToScreen
CharNextW
CallNextHookEx
BeginPaint
AppendMenuW
LoadCursorW

comdlg32

GetFileTitleW
PageSetupDlgA
WantArrows
ChooseFontW

kernel32

TerminateProcess
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetStdHandle
SetLastError
SetFilePointer
TlsFree
UnhandledExceptionFilter
UnlockFile
VirtualAlloc
VirtualFree
VirtualProtect
WriteConsoleA
WriteFile
lstrcmpA
lstrcmpW
lstrlenW
FormatMessageW
FindResourceW
FindClose
FileTimeToLocalFileTime
EnumSystemLocalesA
DuplicateHandle
CreateHardLinkA
CreateFileW
CreateFileA
CreateDirectoryW
ConvertDefaultLocale
CompareStringW
CloseHandle
TlsGetValue
SetFileAttributesW
SetErrorMode
ReadFile
QueryPerformanceCounter
LockResource
LocalReAlloc
LocalFree
LoadLibraryA
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidLocale
IsDBCSLeadByteEx
InterlockedIncrement
InterlockedExchange
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalReAlloc
GlobalHandle
GlobalFree
GlobalFlags
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetVolumeInformationW
GetVersion
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetStringTypeA
GetProcessHeap
GetOEMCP
GetModuleHandleA
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameW
GetFileSize
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetConsoleMode
GetCommandLineA
GetCPInfo
GetBinaryTypeW
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
AreFileApisANSI

Sections

.text
Size: 54KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 149KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

05a2d3ef657ec294d02f948009a53ef1

Headers

File Characteristics

Imports

oleaut32

winspool.drv

shell32

advapi32

wininet

gdi32

user32

comdlg32

kernel32

Sections

.text Size: 54KB - Virtual size: 56KB

.rdata Size: 149KB - Virtual size: 152KB

.data Size: 35KB - Virtual size: 148KB

.idata Size: 6KB - Virtual size: 7KB

.rsrc Size: 21KB - Virtual size: 23KB

.text
Size: 54KB - Virtual size: 56KB

.rdata
Size: 149KB - Virtual size: 152KB

.data
Size: 35KB - Virtual size: 148KB

.idata
Size: 6KB - Virtual size: 7KB

.rsrc
Size: 21KB - Virtual size: 23KB