e63dd3d4e6d1b6354f5fbf0600f291777fcdb28da0c95be279204ed912d3c754

Sharing

Copy URL Twitter E-mail

General

Target

e63dd3d4e6d1b6354f5fbf0600f291777fcdb28da0c95be279204ed912d3c754
Size

1.6MB
MD5

fdf42ae2b48bbc5d74ab13747f24a204
SHA1

a5c9a1261566c9c34a774b41b3d898d25050088b
SHA256

e63dd3d4e6d1b6354f5fbf0600f291777fcdb28da0c95be279204ed912d3c754
SHA512

0367a2358c6e0ae058147ca1a5c3ffe06022ddff8b23b113300a26cdede97463fcd653f48ccfca8a7d43e21694939c510041f845ddc8e3cff75c255cb6183438
SSDEEP

24576:WAdM2BQGJLQpc5OMKKpi3xT5EUQHtVCFYBttdkeQnJeOVMpV6M:W+KGWFOmE9NVC8us

Score

N/A

Malware Config

Signatures

Files

e63dd3d4e6d1b6354f5fbf0600f291777fcdb28da0c95be279204ed912d3c754
.exe windows x86

ae31a3dc0017f43efbdabfe2ccf80f20

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
InterlockedDecrement
GetLastError
GetProfileStringA
MultiByteToWideChar
lstrlenA
InterlockedIncrement
GetProcAddress
GetModuleHandleA
CloseHandle
WriteFile
CreateFileA
ExitProcess
Sleep
GetSystemInfo
GetLocalTime
Process32Next
lstrcmpiA
Process32First
CreateToolhelp32Snapshot
SetEvent
WaitForSingleObject
CreateEventA
GetCurrentProcess
GetCurrentThread
GetModuleFileNameA
WideCharToMultiByte
LoadResource
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
TerminateProcess
HeapFree
HeapAlloc
GetCommandLineA
GetStartupInfoA
ExitThread
CreateThread
RaiseException
RtlUnwind
GetFileTime
GetFileSize
GetFileAttributesA
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
DuplicateHandle
SetErrorMode
GetThreadLocale
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
SizeofResource
GlobalFlags
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrcpynA
MulDiv
SetLastError
GlobalAlloc
lstrcmpA
FormatMessageA
LoadLibraryA
FreeLibrary
LocalFree

user32

PostThreadMessageA
CopyAcceleratorTableA
CharNextA
SetRect
InflateRect
GetSysColorBrush
LoadCursorA
GetDesktopWindow
GetClassNameA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
DestroyMenu
LoadStringA
MapDialogRect
SetWindowContextHelpId
GetMessageA
GetCursorPos
SetCursor
PostQuitMessage
PtInRect
InvalidateRect
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
GetDC
ReleaseDC
PostMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
MessageBeep
CopyRect
IsWindowVisible
SendMessageA
EnableWindow
DispatchMessageA
TranslateMessage
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
RegisterClipboardFormatA
CharUpperA
ShowWindow
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
DrawFocusRect
DefDlgProcA
IsWindowUnicode
PeekMessageA
LoadIconA
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
MessageBoxA
GetWindowLongA
IsWindowEnabled
GetLastActivePopup
GetParent
GetDlgItem
DestroyWindow
CreateDialogIndirectParamA
IsWindow
SetActiveWindow
GetActiveWindow
EndDialog
GetNextDlgTabItem
GetWindowRect
GetWindowPlacement
SystemParametersInfoA
IntersectRect
OffsetRect
RegisterWindowMessageA
SetWindowPos
SetWindowLongA
GetWindow
SetForegroundWindow
GetNextDlgGroupItem
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
ValidateRect

gdi32

SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
OffsetViewportOrgEx
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetMapMode
DPtoLP
GetTextColor
GetBkColor
LPtoDP
BitBlt
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
RestoreDC
SaveDC
DeleteObject
CreateCompatibleDC
SelectObject
DeleteDC
CreateBitmap
PatBlt
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetTextExtentPointA
CreateDIBitmap

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

LookupPrivilegeValueA
OpenProcessToken
OpenThreadToken
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
AdjustTokenPrivileges

shell32

ShellExecuteA

comctl32

ord17
ImageList_Destroy

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleRun
CoInitialize
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleInitialize

olepro32

ord253

oleaut32

VariantClear
SysAllocStringByteLen
SysStringByteLen
VariantInit
SysAllocString
VariantChangeType
SysAllocStringLen
VariantTimeToSystemTime
VariantCopy
SysStringLen
GetErrorInfo
SysFreeString

Sections

.text
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae31a3dc0017f43efbdabfe2ccf80f20

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 212KB - Virtual size: 209KB

.rdata Size: 52KB - Virtual size: 48KB

.data Size: 64KB - Virtual size: 79KB

.rsrc Size: 1.2MB - Virtual size: 1.2MB

.text
Size: 212KB - Virtual size: 209KB

.rdata
Size: 52KB - Virtual size: 48KB

.data
Size: 64KB - Virtual size: 79KB

.rsrc
Size: 1.2MB - Virtual size: 1.2MB