a5ff04c095e802b7c35ebae6905977bbca2a4a35ddb034b8442e87e726d8700f

Sharing

Copy URL Twitter E-mail

General

Target

a5ff04c095e802b7c35ebae6905977bbca2a4a35ddb034b8442e87e726d8700f
Size

214KB
MD5

6136577739b1261e99d130cef6521cac
SHA1

f7ed87c324a42bcfa5c5af718e32f796a708caed
SHA256

a5ff04c095e802b7c35ebae6905977bbca2a4a35ddb034b8442e87e726d8700f
SHA512

698e93390f022c5dcbec86636c0f9b372bbd82c7aa18956348f2ed5197b8a39d6b2204df793901dbb10817b9359610fad0b6a64a23a2e0e03667be73c9fec618
SSDEEP

3072:eQmNhDITW5AJglKB7mq9TUIcDZy3tasr1AGHJ0yotssnuW3CEf:aATWSEE7wYtasSGppo6fT

Score

N/A

Malware Config

Signatures

Files

a5ff04c095e802b7c35ebae6905977bbca2a4a35ddb034b8442e87e726d8700f
.exe windows x86

3b0b20f0c59729df9acb8fec47b5695f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
SetCalendarInfoW
CopyFileExA
EnumCalendarInfoA
GetEnvironmentStringsW
QueryPerformanceFrequency
lstrcat
GetExpandedNameA
lstrcatW
SetUnhandledExceptionFilter
GetLastError
CreateNamedPipeA
ReplaceFileA
ExpandEnvironmentStringsA
lstrcpynA
GetProcAddress
GetWindowsDirectoryA
SleepEx
GetTempFileNameA
SetCurrentDirectoryW
GetStartupInfoW
IsBadCodePtr

user32

EnumWindows
WinHelpA
PeekMessageA
GetMenuInfo
GetWindowLongA
SetActiveWindow
ShowCursor
GetKeyboardType
CreatePopupMenu
GetClientRect
ShowWindow
SetParent
TrackPopupMenu
AnimateWindow
ReleaseDC
MoveWindow
SetCapture
GetAsyncKeyState
GetSubMenu
GetCursorPos
CharNextA
GetMenuItemCount
OpenClipboard
EnableMenuItem
CharPrevW
GetWindowRgn
GetForegroundWindow
LoadCursorA
DestroyCursor
GetMenuItemInfoA
GetDC
SetWindowPos
GetSysColor
MessageBeep
CharLowerW
GetWindowTextW
OffsetRect
InsertMenuItemW
LoadBitmapW
RemoveMenu
mouse_event
LoadMenuIndirectA
CharUpperW
GetFocus
IsChild
DefFrameProcW
GetCapture

gdi32

CreateDIBSection
GetBrushOrgEx
PtInRegion
GetCurrentObject
GetFontUnicodeRanges
GetDIBColorTable
GetBoundsRect
GetObjectW
SetDCPenColor
GetCharABCWidthsFloatA
GetOutlineTextMetricsA
CreateFontW
SetWorldTransform
GetTextFaceW
CreateScalableFontResourceA
GetDeviceCaps
GetNearestColor

advapi32

RegOpenKeyExW
RegOpenKeyA
RegSaveKeyW
RegCreateKeyExA
RegOpenKeyExW
RegSaveKeyA
RegDeleteKeyA

comctl32

ImageList_Remove

ole32

CoLoadLibrary

urlmon

CDLGetLongPathNameW
FindMimeFromData
FindMediaType
UrlMkSetSessionOption
PrivateCoInstall

winspool.drv

CreatePrinterIC
GetDefaultPrinterW
StartDocDlgW
PerfCollect
FindClosePrinterChangeNotification

Sections

.BK
Size: 10KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.*'p1'q
Size: 1024B - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.L1
Size: 1024B - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.c)?0
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gMWF
Size: 2KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.IqwLWf
Size: 2KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3h<#Z
Size: 1KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.3
Size: 3KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.D5a*!y
Size: 512B - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.#3yC
Size: 1KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 180KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b0b20f0c59729df9acb8fec47b5695f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

ole32

urlmon

winspool.drv

Sections

.BK Size: 10KB - Virtual size: 11KB

.*'p1'q Size: 1024B - Virtual size: 10KB

.L1 Size: 1024B - Virtual size: 38KB

.c)?0 Size: 4KB - Virtual size: 3KB

.gMWF Size: 2KB - Virtual size: 35KB

.IqwLWf Size: 2KB - Virtual size: 9KB

.3h<#Z Size: 1KB - Virtual size: 6KB

.3 Size: 3KB - Virtual size: 47KB

.D5a*!y Size: 512B - Virtual size: 46KB

.#3yC Size: 1KB - Virtual size: 11KB

.rsrc Size: 180KB - Virtual size: 184KB

.BK
Size: 10KB - Virtual size: 11KB

.*'p1'q
Size: 1024B - Virtual size: 10KB

.L1
Size: 1024B - Virtual size: 38KB

.c)?0
Size: 4KB - Virtual size: 3KB

.gMWF
Size: 2KB - Virtual size: 35KB

.IqwLWf
Size: 2KB - Virtual size: 9KB

.3h<#Z
Size: 1KB - Virtual size: 6KB

.3
Size: 3KB - Virtual size: 47KB

.D5a*!y
Size: 512B - Virtual size: 46KB

.#3yC
Size: 1KB - Virtual size: 11KB

.rsrc
Size: 180KB - Virtual size: 184KB