2fd29182aec4e67963f8eb084a750fee1e8b39b5ef9d80fbee9d8de9fadede26

Sharing

Copy URL Twitter E-mail

General

Target

2fd29182aec4e67963f8eb084a750fee1e8b39b5ef9d80fbee9d8de9fadede26
Size

1.1MB
MD5

7c269846db3f8a4a7c47530b04b2c1f6
SHA1

cbd1d18d4793df68d7b410b805e4d8e87e265b64
SHA256

2fd29182aec4e67963f8eb084a750fee1e8b39b5ef9d80fbee9d8de9fadede26
SHA512

ea05045fa71f550ec886006cadab981d6bd04e93729ce921b86b60c3d38ccaf2ce7243b6de9828595be6a201eed432e86b0da3da137a6ceb597523aededd4c33
SSDEEP

24576:k9Rd10/3I7dOxc2HfocTpwntlrSYj1otYTF+6xhB:G0PcgwnHRj1oty7xhB

Score

N/A

Malware Config

Signatures

Files

2fd29182aec4e67963f8eb084a750fee1e8b39b5ef9d80fbee9d8de9fadede26
.exe windows x86

801888e8cc0d4fd6edf8a5b152f1c98e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
FileTimeToLocalFileTime
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetEnvironmentVariableA
CompareStringW
GetProcessHeap
GetTimeZoneInformation
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
IsValidCodePage
GetACP
HeapReAlloc
HeapSize
HeapAlloc
HeapFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetTickCount
QueryPerformanceCounter
SetHandleCount
LoadLibraryW
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
DebugBreak
GetSystemInfo
GetFileType
SetStdHandle
ExitProcess
RaiseException
RtlUnwind
IsBadReadPtr
HeapValidate
GetStartupInfoA
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetModuleHandleW
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSizeEx
GetShortPathNameA
lstrcmpiA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
GetAtomNameA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
InterlockedIncrement
GlobalFlags
InterlockedDecrement
GetModuleFileNameW
SetErrorMode
FormatMessageA
LocalFree
MulDiv
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
SetEvent
CloseHandle
GlobalFree
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
InterlockedExchange
GlobalAlloc
lstrcmpA
GetCurrentThread
GetLocaleInfoA
ConvertDefaultLocale
EnumResourceLanguagesA
GetModuleFileNameA
CompareStringA
lstrcmpW
GetCurrentThreadId
GlobalFindAtomA
GlobalDeleteAtom
GetVersionExA
GetModuleHandleA
FreeResource
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
GetLastError
SetLastError
MultiByteToWideChar
lstrlenA
GlobalLock
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
GetCurrentProcessId
FreeLibrary
Sleep
VirtualFree
VirtualAlloc
LoadLibraryA
OpenEventA

user32

InsertMenuItemA
GetMenuItemInfoA
EnableMenuItem
CheckMenuItem
DeleteMenu
CreatePopupMenu
GrayStringA
DrawTextExA
DrawTextA
FillRect
GetSysColorBrush
IsMenu
GetMenuState
GetMenuStringA
AppendMenuA
InsertMenuA
GetMenuItemID
GetCursorPos
GetMessageA
TranslateMessage
EndDialog
CreateDialogIndirectParamA
PostQuitMessage
SetWindowTextA
IsDialogMessageA
LoadCursorA
GetForegroundWindow
SetForegroundWindow
WindowFromPoint
SetParent
GetNextDlgTabItem
ModifyMenuA
SetCapture
KillTimer
SetTimer
LockWindowUpdate
GetDCEx
ShowOwnedPopups
IsWindowVisible
ValidateRect
InvalidateRect
UpdateWindow
GetWindowDC
EndPaint
BeginPaint
ClientToScreen
GetSystemMenu
GetMenuCheckMarkDimensions
LoadBitmapA
SetMenuItemBitmaps
RegisterWindowMessageA
MessageBoxA
CreateWindowExA
GetClassInfoExA
RegisterClassA
SendDlgItemMessageA
GetClientRect
MapWindowPoints
DispatchMessageA
GetFocus
SetActiveWindow
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
CopyRect
GetTopWindow
IsChild
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
GetCapture
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
OffsetRect
IntersectRect
SystemParametersInfoA
GetClipboardFormatNameA
CharUpperA
DestroyIcon
UnregisterClassA
PostMessageA
PeekMessageA
SetCursor
InflateRect
SetRect
PtInRect
IsRectEmpty
IsWindow
EnableWindow
SendMessageA
IsWindowEnabled
GetWindow
GetDesktopWindow
ShowWindow
GetWindowLongA
GetActiveWindow
GetWindowThreadProcessId
SetFocus
IsIconic
GetWindowPlacement
GetWindowRect
BeginDeferWindowPos
EndDeferWindowPos
TabbedTextOutA
GetDC
ReleaseDC
SetRectEmpty
GetParent
IsZoomed
GetSystemMetrics
GetClassInfoA
GetLastActivePopup
BringWindowToTop
GetClassNameA
GetSysColor
EqualRect
GetDlgItem
SetWindowLongA
SetWindowPos
GetDlgCtrlID
GetKeyState
GetMenuItemCount
GetSubMenu
UnpackDDElParam
ReuseDDElParam
WinHelpA
SetMenu
GetMenu
LoadIconA
LoadMenuA
DestroyMenu

gdi32

CreateSolidBrush
CreatePatternBrush
CreateFontIndirectA
SelectObject
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetBkColor
PtVisible
GetDeviceCaps
Rectangle
PatBlt
BitBlt
GetPixel
TextOutA
GetTextExtentPoint32A
GetTextMetricsA
Escape
RectVisible
CreateRectRgn
IntersectClipRect
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
DeleteObject
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
ExtTextOutA
GetObjectType
GetObjectA
CreateFontA
GetCharWidthA
StretchDIBits

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueA
SetThreadToken
RevertToSelf
OpenThreadToken
GetFileSecurityA
SetFileSecurityA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyA

shell32

DragFinish
DragQueryFileA
SHGetFileInfoA
ExtractIconA
SHGetSpecialFolderPathA

shlwapi

PathFindFileNameA
PathRemoveFileSpecW
PathIsUNCA
PathFindExtensionA
PathStripToRootA

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance
StringFromCLSID
CoTaskMemFree

oleaut32

SysAllocStringLen
VariantClear
VariantInit
VariantChangeType

Sections

.text
Size: 607KB - Virtual size: 607KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 300KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

801888e8cc0d4fd6edf8a5b152f1c98e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

Sections

.text Size: 607KB - Virtual size: 607KB

.rdata Size: 135KB - Virtual size: 134KB

.data Size: 300KB - Virtual size: 315KB

.rsrc Size: 38KB - Virtual size: 38KB

.reloc Size: 69KB - Virtual size: 69KB

.text
Size: 607KB - Virtual size: 607KB

.rdata
Size: 135KB - Virtual size: 134KB

.data
Size: 300KB - Virtual size: 315KB

.rsrc
Size: 38KB - Virtual size: 38KB

.reloc
Size: 69KB - Virtual size: 69KB