cf99e4ab1724d17cdbcc9fb5e1bd7a1616be4667ed814563417b7c08a0e1f798

Sharing

Copy URL Twitter E-mail

General

Target

cf99e4ab1724d17cdbcc9fb5e1bd7a1616be4667ed814563417b7c08a0e1f798
Size

726KB
MD5

8836d4d6c7f47b48d89ae31c24dc4c38
SHA1

222a4034ea647bef93918471d911fd3e599e282e
SHA256

cf99e4ab1724d17cdbcc9fb5e1bd7a1616be4667ed814563417b7c08a0e1f798
SHA512

fc1e5d44095cbd38f954a6dca047aa32f3be2c0f2efe5fae42aef32cccf7eea2d838d0f3c991cddbc6082bcd4b722a19f7ec0a8f2fbff3009218132067f329ba
SSDEEP

12288:ylnEY57pju9C2m3cA8Cp73spK8oTp1WLWKIHp:ylnT5FgC2QcAr73C4TDWLOH

Score

N/A

Malware Config

Signatures

Files

cf99e4ab1724d17cdbcc9fb5e1bd7a1616be4667ed814563417b7c08a0e1f798
.exe windows x86

cc175aa0ee60e666fe521a34a3d839af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEndOfFile
DuplicateHandle
GetCurrentProcess
GetVolumeInformationA
GetModuleHandleW
InterlockedIncrement
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GlobalFlags
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
SetErrorMode
HeapAlloc
HeapFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
GetCommandLineA
ExitThread
GetSystemTimeAsFileTime
RtlUnwind
RaiseException
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
UnlockFile
HeapSize
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
VirtualFree
HeapCreate
GetStdHandle
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
CompareStringW
SetEnvironmentVariableA
LockFile
FlushFileBuffers
SetFilePointer
GetThreadLocale
MoveFileA
GetFileSizeEx
InterlockedDecrement
GetModuleFileNameW
WritePrivateProfileStringA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
lstrcmpA
GetCurrentProcessId
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
lstrcmpW
GetModuleHandleA
SetLastError
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
MulDiv
CreateFileW
SetThreadPriority
ResumeThread
QueryPerformanceCounter
DeleteCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
GetTimeZoneInformation
InitializeCriticalSection
QueryPerformanceFrequency
GetSystemTime
CreateEventA
ResetEvent
GetLastError
LeaveCriticalSection
EnterCriticalSection
GetStartupInfoA
TerminateProcess
OpenProcess
Process32Next
Process32First
CreateToolhelp32Snapshot
CreateThread
GetModuleFileNameA
WinExec
lstrlenA
lstrcatA
lstrcpyA
GetWindowsDirectoryA
GetTickCount
GetVersionExA
GetProcAddress
LoadLibraryA
FreeLibrary
DeviceIoControl
FindClose
FindFirstFileA
MultiByteToWideChar
SetFilePointerEx
ReadFile
GetFileSize
GetFileTime
GetFileAttributesA
GetExitCodeProcess
WaitForSingleObject
CreateProcessA
SetVolumeMountPointA
GetVolumeNameForVolumeMountPointA
DefineDosDeviceA
GetLogicalDrives
GetDriveTypeA
GetLogicalDriveStringsA
Sleep
SizeofResource
WideCharToMultiByte
CopyFileA
GetFullPathNameA
WriteFile
LockResource
LoadResource
FindResourceA
CloseHandle
ExitProcess
CreateFileA

user32

RegisterClipboardFormatA
PostThreadMessageA
CharNextA
GetSysColorBrush
CharUpperA
DestroyMenu
GetMessageA
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
GetCursorPos
WindowFromPoint
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
TabbedTextOutA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
CheckMenuItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
GetKeyState
SetMenu
SetForegroundWindow
IsWindowVisible
UpdateWindow
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
SendMessageA
EnableWindow
OffsetRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
GetWindowLongA
SetWindowPos
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
UnregisterClassA
GetNextDlgGroupItem
InvalidateRgn
SetRect
IsRectEmpty
CallNextHookEx
CopyAcceleratorTableA
GetClientRect
GetSysColor
MessageBeep
PtInRect
ReleaseCapture
RedrawWindow
SetCapture
SetCursor
SetWindowLongA
IsWindow
InvalidateRect
GetWindowRect
GetParent
GetDC
ReleaseDC
InflateRect
LoadCursorA
CopyIcon
DrawTextA
LoadIconA
GetSystemMenu
AppendMenuA
IsIconic
GetSystemMetrics
DrawIcon
SetWindowRgn
PostMessageA
SetTimer
EnableMenuItem
KillTimer
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
CopyRect
SetWindowsHookExA

gdi32

SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
Escape
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
TextOutA
ExtTextOutA
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
CreateSolidBrush
SetMapMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreateRectRgnIndirect
GetDeviceCaps
CreateRoundRectRgn
BitBlt
DeleteDC
CreateDIBSection
DeleteObject
CreateCompatibleDC
SelectObject
GetTextExtentPoint32A
CreateFontIndirectA
GetObjectA
GetStockObject
CreateFontA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegEnumKeyA
RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
RegOpenKeyA
RegQueryValueA
RegCloseKey
RegQueryValueExA

shell32

ShellExecuteA

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameA
PathStripToRootA
PathAppendA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleIsCurrentClipboard
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

SysStringLen
SysFreeString
SysAllocStringByteLen
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString

Sections

.text
Size: 375KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 195KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cc175aa0ee60e666fe521a34a3d839af

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 375KB - Virtual size: 374KB

.rdata Size: 97KB - Virtual size: 97KB

.data Size: 15KB - Virtual size: 37KB

.rsrc Size: 195KB - Virtual size: 195KB

.reloc Size: 42KB - Virtual size: 41KB

.text
Size: 375KB - Virtual size: 374KB

.rdata
Size: 97KB - Virtual size: 97KB

.data
Size: 15KB - Virtual size: 37KB

.rsrc
Size: 195KB - Virtual size: 195KB

.reloc
Size: 42KB - Virtual size: 41KB