75e3dcb94db95c3e6fc3f51b08038312f921404e98c28a938ec6043f6737b290

General

Target

75e3dcb94db95c3e6fc3f51b08038312f921404e98c28a938ec6043f6737b290
Size

249KB
MD5

362873f6cbb2abcfbc9599024696cca8
SHA1

e00429f168b59888e654104ea938b2a3e42c4e35
SHA256

75e3dcb94db95c3e6fc3f51b08038312f921404e98c28a938ec6043f6737b290
SHA512

85ed86b429f03c1415a4a46bc01e0d0a8fc3ff7518e7791a6a5bfa81ad4ceee01b9f2111f7f124413ceabaeecdc08a351b390151adc02ec2a6b5654752a21bd6
SSDEEP

6144:MN8jdquERf0XXUQZzaf8u09lmsPtqf2jE+:MN8jSRf0nUQZzaj09sAwq

Score

N/A

Malware Config

Signatures

Files

75e3dcb94db95c3e6fc3f51b08038312f921404e98c28a938ec6043f6737b290
.exe windows x86

37fadb0ef2640363158e20c6810df716

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsW
IsValidLocale
LocalUnlock
CompareStringW
HeapCreate
FreeEnvironmentStringsW
HeapAlloc
LoadLibraryA
GetCurrentThread
VirtualProtect
DeleteCriticalSection
GetEnvironmentStrings
FreeEnvironmentStringsA
GetLocaleInfoA
InterlockedExchange
TlsSetValue
GetFileType
InitializeCriticalSection
IsBadWritePtr
EnterCriticalSection
GetStringTypeW
GetStdHandle
IsValidCodePage
GetStringTypeA
CreateWaitableTimerW
LeaveCriticalSection
GetUserDefaultLCID
HeapSize
GetProcAddress
GetCPInfo
HeapDestroy
HeapFree
CompareStringA
GetStartupInfoA
SetEvent
MultiByteToWideChar
VirtualQuery
VirtualFree
SetEnvironmentVariableA
WriteFile
GetLastError
SetHandleCount
GetCommandLineA
GetVersionExA
HeapReAlloc
UnhandledExceptionFilter
ExitProcess
GetACP
EnumSystemLocalesA
VirtualAlloc
TerminateProcess
QueryPerformanceCounter
GetCurrentProcess
TlsFree
GetModuleHandleA
GetTimeFormatA
SetLastError
TlsAlloc
GetCurrentThreadId
RtlUnwind
LCMapStringA
GetOEMCP
GetTimeZoneInformation
GetCurrentProcessId
GetModuleFileNameA
TlsGetValue
GetLocaleInfoW
ResetEvent
GetTickCount
LCMapStringW
GetDateFormatA
GetSystemInfo
GetSystemTimeAsFileTime
WideCharToMultiByte

user32

SetWindowRgn
EnumDesktopWindows

comdlg32

GetOpenFileNameW
GetOpenFileNameA
PageSetupDlgW
PageSetupDlgA
ReplaceTextA
GetFileTitleA
PrintDlgA
PrintDlgW
FindTextW
ChooseColorA
FindTextA
GetSaveFileNameW
LoadAlterBitmap
ChooseFontW
ReplaceTextW
ChooseColorW

shell32

SHInvokePrinterCommandA

Sections

.text
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

37fadb0ef2640363158e20c6810df716

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

shell32

Sections

.text Size: 106KB - Virtual size: 106KB

.data Size: 136KB - Virtual size: 161KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 106KB - Virtual size: 106KB

.data
Size: 136KB - Virtual size: 161KB

.rsrc
Size: 6KB - Virtual size: 5KB