be627ab5f37d31f48ff97355f97ece8b4d03454ad8504a762ba4a3993e993c36

General

Target

be627ab5f37d31f48ff97355f97ece8b4d03454ad8504a762ba4a3993e993c36
Size

299KB
MD5

4bba86537162910a529f43176bffe0e1
SHA1

6d37e32cde3007f81951ade81579050dc4dab1c2
SHA256

be627ab5f37d31f48ff97355f97ece8b4d03454ad8504a762ba4a3993e993c36
SHA512

332f6c5a6f47659e0ce485adc2e36869bb3ed6a44e702146d83ce32f2638131f2c7e6459607eee1befafafff27b90d1dc06c0ca53237f732af7f5fff3759118e
SSDEEP

6144:U5Nmh94G3DcVQ5Rm4kZOBL8aVWlAMWc3E+CWoypr81:U5ghOG3DeKRm1ZAwGAA/cEanpA

Score

N/A

Malware Config

Signatures

Files

be627ab5f37d31f48ff97355f97ece8b4d03454ad8504a762ba4a3993e993c36
.exe windows x86

1549db8eaf5d2b52f39ed210f45a13e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFindAtomW
FindCloseChangeNotification
_lread
SetThreadPriority
GetDefaultCommConfigW
SetThreadExecutionState
GetCommTimeouts
GetCurrencyFormatA
IsValidLocale
SetCalendarInfoA
CreateMailslotA
lstrcpynW
EnumTimeFormatsA
CreateSemaphoreA
IsDBCSLeadByte
GetProcessShutdownParameters
GetNumberFormatA
GlobalAddAtomW
GetNumberFormatW
GetCommProperties
EscapeCommFunction
ProcessIdToSessionId
GlobalCompact

winspool.drv

EndPagePrinter
EnumPrinterDataExW
DeletePrinterIC
EnumPrinterKeyW

user32

GetWindowTextW
CharNextW
GetDC
ReleaseDC
IsWindow
MessageBoxW
EndDialog
GetNextDlgTabItem
ShowWindow
FrameRect
SetWindowPos
GetDesktopWindow
GetDlgItem
SetScrollInfo
MoveWindow
EnumDisplayDevicesW
GetActiveWindow
GetWindowTextLengthW
GetWindow
GetWindowRect
GetScrollInfo
SetCursor
GetClassLongA
GetSysColor
EnableWindow
InvalidateRect
DestroyWindow
EndPaint
UpdateWindow
SetDlgItemTextW
GetFocus
PostMessageW
GetSysColorBrush
FillRect

advapi32

RegSetValueExA
RegRestoreKeyW
RegCreateKeyExW
AdjustTokenPrivileges
RegLoadKeyW
RegCloseKey
RegFlushKey
RegUnLoadKeyW
RegEnumKeyW
RegDeleteValueW
RegEnumValueW
LookupPrivilegeValueW
RegSetValueW
RegConnectRegistryW
RegCreateKeyW

Sections

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1549db8eaf5d2b52f39ed210f45a13e0

Headers

File Characteristics

Imports

kernel32

winspool.drv

user32

advapi32

Sections

.text Size: 112KB - Virtual size: 112KB

.data Size: 103KB - Virtual size: 119KB

.rdata Size: 2KB - Virtual size: 2KB

.rsrc Size: 80KB - Virtual size: 79KB

.text
Size: 112KB - Virtual size: 112KB

.data
Size: 103KB - Virtual size: 119KB

.rdata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 80KB - Virtual size: 79KB