d98b315cdd9d12d4e5b38954d7c7871d6df35b3dfa5e0877ddb299b4c1eca4bd

Sharing

Copy URL Twitter E-mail

General

Target

d98b315cdd9d12d4e5b38954d7c7871d6df35b3dfa5e0877ddb299b4c1eca4bd
Size

212KB
MD5

4b2e34f0aa049289408161f44b98c7a1
SHA1

8ac38ed8e0462055e7c50a5871e3270432e9e0e7
SHA256

d98b315cdd9d12d4e5b38954d7c7871d6df35b3dfa5e0877ddb299b4c1eca4bd
SHA512

4167bf2a6a32febbf521c4a070687575b516007708fdf873d02a2600e7f2828d9794f8619d96e012df1225c5e9bd674ae07fa76205d58dfaa5f016a2591defbb
SSDEEP

3072:/llWfQ/oOvCZUXN1bwBX4qj5sHeeJ3dr/umSQp8Czh8VF1Ub5hWlT4:/llx/lOUduIWedVGmXp8gKSr

Score

N/A

Malware Config

Signatures

Files

d98b315cdd9d12d4e5b38954d7c7871d6df35b3dfa5e0877ddb299b4c1eca4bd
.exe windows x86

40edd7f9e93829327c1ab636e79787f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA
GetSystemMetrics
GetSysColorBrush
ReleaseDC
WinHelpA
GetPropA
CallNextHookEx
DefWindowProcA
GetFocus
GetMenuState
GetMenuCheckMarkDimensions
CopyRect
GetClassInfoA
GetWindowPlacement
GetSubMenu
PostQuitMessage
CharNextA
ClientToScreen
GetMessageTime
SetMenuItemBitmaps
IsIconic
EnableWindow
GetNextDlgTabItem
SetWindowTextA
ModifyMenuA
GetClassLongA
MapWindowPoints
GetMessagePos
DestroyMenu
GetWindow
GetClientRect
CheckMenuItem
GetParent
LoadIconA
GetMenuItemCount
MessageBoxA
GetMenuItemID
SetWindowLongA
GetCapture
GetTopWindow
GetDC
DrawTextA
UnhookWindowsHookEx
GetDlgCtrlID
RegisterClassA
wsprintfA
GetClassNameA
SystemParametersInfoA
DestroyWindow
PeekMessageA
SetWindowsHookExA
GrayStringA
LoadCursorA
RemovePropA
PostMessageA
CreateWindowExA
RegisterWindowMessageA
GetKeyState
SetForegroundWindow
GetLastActivePopup
EnableMenuItem
GetSysColor
GetForegroundWindow
GetWindowTextA
LoadBitmapA
DispatchMessageA
SendMessageA
CallWindowProcA
SetWindowPos
TabbedTextOutA
GetMenu
SetPropA
GetWindowLongA
PtInRect
GetWindowRect
GetDlgItem
IsWindowEnabled
AdjustWindowRectEx

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

comctl32

ord17

gdi32

SaveDC
SetViewportExtEx
GetObjectA
GetClipBox
ScaleViewportExtEx
SetWindowExtEx
ExtTextOutA
SetTextColor
SetMapMode
GetStockObject
PtVisible
OffsetViewportOrgEx
ScaleWindowExtEx
SelectObject
RestoreDC
RectVisible
SetBkColor
DeleteObject
TextOutA
SetViewportOrgEx
Escape
GetDeviceCaps

kernel32

GlobalLock
InterlockedDecrement
UnhandledExceptionFilter
GlobalGetAtomNameA
WriteFile
LocalAlloc
GlobalUnlock
VirtualFree
LCMapStringW
SetUnhandledExceptionFilter
GlobalFlags
GetCurrentProcess
LocalFree
GetLastError
GetOEMCP
IsBadReadPtr
RaiseException
GetStartupInfoA
GetLocaleInfoW
lstrcatA
SetStdHandle
SetFilePointer
ExitProcess
GetEnvironmentStringsA
HeapFree
lstrcpyA
IsBadCodePtr
InterlockedIncrement
FreeEnvironmentStringsW
GetACP
GetFileType
GetStdHandle
lstrcpynA
HeapReAlloc
LCMapStringA
TlsGetValue
EnterCriticalSection
HeapDestroy
GlobalDeleteAtom
TlsSetValue
lstrlenA
FreeLibrary
WideCharToMultiByte
GetVersion
FreeEnvironmentStringsA
GlobalAlloc
HeapSize
GetStringTypeA
lstrcmpA
SetHandleCount
CloseHandle
LoadLibraryA
GetProcAddress
FlushFileBuffers
HeapCreate
SetLastError
GetModuleHandleA
GlobalReAlloc
HeapAlloc
GetEnvironmentStringsW
GetStringTypeW
TlsAlloc
lstrcmpiA
GlobalFree
MultiByteToWideChar
GlobalHandle
InitializeCriticalSection
LeaveCriticalSection
GetCommandLineA
IsBadWritePtr
DeleteCriticalSection
TerminateProcess
GetCPInfo
VirtualAlloc
RtlUnwind
GetModuleFileNameA
GlobalFindAtomA
LocalReAlloc
GetLocaleInfoA
GetCurrentThreadId
GlobalAddAtomA

setupapi

SetupCopyOEMInfA
SetupDiCreateDeviceInfoListExA
SetupDiEnumDeviceInfo
SetupDiSetDeviceRegistryPropertyA
SetupDiOpenDeviceInfoA
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInfoListDetailA

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40edd7f9e93829327c1ab636e79787f2

Headers

File Characteristics

Imports

user32

winspool.drv

comctl32

gdi32

kernel32

setupapi

Sections

.text Size: 176KB - Virtual size: 175KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 904B

.text
Size: 176KB - Virtual size: 175KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 904B