1d31534f213e0ca9f076d7f53a5937174d5f8081ff6f4314f4d974e4cf5d36c7

Sharing

Copy URL Twitter E-mail

General

Target

1d31534f213e0ca9f076d7f53a5937174d5f8081ff6f4314f4d974e4cf5d36c7
Size

252KB
MD5

6e646fbb1b6053f6bbedc29d77132441
SHA1

a905d368929b14b067824fc891d840a8a6eec60c
SHA256

1d31534f213e0ca9f076d7f53a5937174d5f8081ff6f4314f4d974e4cf5d36c7
SHA512

a8846241b719a2bedd2afa5f2efb2e1d98b6d7d9f8c5e538f4a14c491c8f100082610c1d3faae88c0107d2ebc804a36457acf751b5b9f811ba7af6acc4cb1046
SSDEEP

6144:wJlQL0VG1LtzXunHCA8iPKHKxSsQLH5AdK:eWIfnifiJSsPdK

Score

N/A

Malware Config

Signatures

Files

1d31534f213e0ca9f076d7f53a5937174d5f8081ff6f4314f4d974e4cf5d36c7
.exe windows x86

97e48517fbf180f4cf4286b2b247a579

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
OpenProcess
GetUserDefaultLCID
Sleep
ReadFile
FreeResource
LockResource
LoadResource
FindResourceA
GetTickCount
CreateThread
MulDiv
GlobalFlags
_lclose
_hread
_llseek
_lopen
SetLastError
GetUserDefaultLangID
GetModuleFileNameA
CreateProcessA
LocalAlloc
WaitForSingleObject
MultiByteToWideChar
LocalFree
lstrcatA
CreateFileA
DeviceIoControl
CloseHandle
lstrcmpA
lstrcpyA
WideCharToMultiByte
SizeofResource
GetVersionExA
EnterCriticalSection
WriteFile
VirtualFree
InitializeCriticalSection
HeapDestroy
GetEnvironmentVariableA
HeapCreate
GetFileType
GetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
SetHandleCount
FreeEnvironmentStringsA
UnhandledExceptionFilter
FreeEnvironmentStringsW
TlsGetValue
TlsSetValue
GetCurrentThreadId
TlsAlloc
HeapSize
HeapAlloc
HeapFree
GetCurrentProcess
TerminateProcess
HeapReAlloc
GetVersion
GetCommandLineA
ExitProcess
GetModuleHandleA
RtlUnwind
GetStartupInfoA
GlobalFree
GlobalUnlock
lstrlenA
GlobalAlloc
GetLastError
GlobalLock
FreeLibrary
GetProcAddress
lstrcmpiA
IsDBCSLeadByte
LeaveCriticalSection
LoadLibraryA
IsBadWritePtr
GetComputerNameA
VirtualAlloc
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
InterlockedIncrement
GetOEMCP
LCMapStringA
InterlockedDecrement
LCMapStringW

user32

PostQuitMessage
CharNextA
GetSystemMetrics
IsCharAlphaA
IsCharAlphaNumericA
CharPrevA
MessageBoxA
wsprintfA
LoadCursorA
LoadIconA
DefWindowProcA
RegisterWindowMessageA
DestroyWindow
LoadStringA
SendMessageA
GetParent
KillTimer
SetWindowLongA
GetClientRect
SetTimer
ClientToScreen
EnableWindow
InvalidateRect
SetFocus
SetDlgItemTextA
UpdateWindow
IsIconic
GetClassInfoExA
GetWindowTextLengthA
GetWindowTextA
GetMessageA
RegisterClassExA
SetCursor
EndDialog
TranslateMessage
DispatchMessageA
DestroyIcon
CreateDialogIndirectParamA
DialogBoxIndirectParamA
DrawIcon
EndPaint
IntersectRect
CreateWindowExA
BeginPaint
LoadBitmapA
SetWindowTextA
ShowWindow
ScreenToClient
ReleaseDC
GetDlgItem
GetWindowRect
SetWindowPos
GetWindow
PeekMessageA
PostMessageA
GetDC
GetWindowLongA

gdi32

RealizePalette
CreateCompatibleDC
GetDeviceCaps
DeleteObject
CreateDIBitmap
SelectPalette
CreatePalette
GetTextExtentPointA
BitBlt
SelectObject
FillRgn
CombineRgn
CreateRectRgn
GetObjectA
GetStockObject

winspool.drv

SetPrinterA
GetPrinterA
GetPrinterDriverA
GetPrinterDataA
DeletePrinterConnectionA
DeletePrinter
AddPrinterA
ClosePrinter
OpenPrinterA
GetPrinterDriverDirectoryA
EnumPortsA
EnumPrintersA

advapi32

RegEnumKeyExA
RegEnumValueA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA

Sections

.text
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97e48517fbf180f4cf4286b2b247a579

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

Sections

.text Size: 88KB - Virtual size: 86KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 16KB - Virtual size: 14KB

.rsrc Size: 128KB - Virtual size: 125KB

.text
Size: 88KB - Virtual size: 86KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 128KB - Virtual size: 125KB