1ef3a0401c50adcf20c888b5cc2c5c74e1fa251d3ccb8534164b598613fd1c95

Sharing

Copy URL

Twitter E-mail

General

Target

1ef3a0401c50adcf20c888b5cc2c5c74e1fa251d3ccb8534164b598613fd1c95
Size

240KB
MD5

2f3ae5e5a0d7b8b0c34e80bacc2a1508
SHA1

63b788b9ae1801ef44f4802c19a3efbe728f4187
SHA256

1ef3a0401c50adcf20c888b5cc2c5c74e1fa251d3ccb8534164b598613fd1c95
SHA512

686bc94ac99085d4b8716a973f830ca345c2c6a7b21d2b2692db7c2a4d118064c5da63861300ea9598e7bb72b79293783b9d5cd45b26d99fd11176833092a862
SSDEEP

3072:jtu8WXsDfH+uinlgj3FBLR7odTb3f/Ce21KWl3AQUZeyfFSoumChs0Zh:jtu882v+u1LREdHP/iKWl2Ze4ihBZh

Score

N/A

Malware Config

Signatures

Files

1ef3a0401c50adcf20c888b5cc2c5c74e1fa251d3ccb8534164b598613fd1c95
.dll windows x86

0ebd8dc6b0c538fb38cc331419d818a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
LCMapStringA
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTimeZoneInformation
GetACP
HeapSize
TerminateProcess
ExitProcess
RaiseException
GetCommandLineA
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileTime
GetFileSize
GetFileAttributesA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetModuleFileNameA
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
GlobalReAlloc
SetEndOfFile
UnlockFile
LockFile
CloseHandle
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
lstrcmpA
GlobalFree
GlobalAlloc
LocalFree
GlobalLock
MulDiv
SetLastError
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GetProcAddress
GetCurrentThreadId
GetTickCount
HeapFree
HeapReAlloc
GetProcessHeap
HeapAlloc
GlobalUnlock
LCMapStringW

user32

LoadBitmapA
GetMenuCheckMarkDimensions
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
PostQuitMessage
UnregisterClassA
GetClassNameA
GetSysColorBrush
DestroyMenu
LoadStringA
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
ShowWindow
SetWindowTextA
LoadIconA
PostMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
GetMenuState
GetTopWindow
MessageBoxA
GetParent
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextA
GetKeyState
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
KillTimer
UnhookWindowsHookEx
CallNextHookEx
SetWindowsHookExA
CopyRect
GetSystemMetrics
SetWindowPos
IsWindow
IsWindowVisible
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
WindowFromPoint
LoadCursorA
ReleaseDC
GetClientRect
GetDC
GetSysColor
SetWindowLongA
ScreenToClient
IsWindowEnabled
SetTimer
GetCursorPos
SetRect
IsRectEmpty
PtInRect
SendMessageA
ModifyMenuA
SetMenuItemBitmaps
EnableWindow
InvalidateRect
GetWindowLongA

gdi32

SelectObject
DeleteObject
FillRgn
CombineRgn
CreateRectRgn
CreateEllipticRgn
Pie
Arc
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SetBrushOrgEx
MoveToEx
LineTo
GetViewportExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
StretchBlt
Polygon
CreatePen
CreateSolidBrush
Rectangle
GetTextColor
GetCurrentObject
GetObjectA
GetTextExtentPoint32A
CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetDeviceCaps
GetWindowExtEx
LPtoDP
DPtoLP
GetStockObject

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

comctl32

ord17

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0ebd8dc6b0c538fb38cc331419d818a6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

comctl32

Sections

.text Size: 152KB - Virtual size: 149KB

.rdata Size: 28KB - Virtual size: 25KB

.data Size: 24KB - Virtual size: 85KB

.rsrc Size: 12KB - Virtual size: 11KB

.data Size: 20KB - Virtual size: 18KB

.text
Size: 152KB - Virtual size: 149KB

.rdata
Size: 28KB - Virtual size: 25KB

.data
Size: 24KB - Virtual size: 85KB

.rsrc
Size: 12KB - Virtual size: 11KB

.data
Size: 20KB - Virtual size: 18KB