757ee463282726a352d7ba94a9d1c29dee6eb850c7780f134b2e9f4831ac86e1

Sharing

Copy URL Twitter E-mail

General

Target

757ee463282726a352d7ba94a9d1c29dee6eb850c7780f134b2e9f4831ac86e1
Size

615KB
MD5

58982b4360837506603f7b738e766e20
SHA1

f8308200308cda6cd6572159bdc28ab79e50a6ab
SHA256

757ee463282726a352d7ba94a9d1c29dee6eb850c7780f134b2e9f4831ac86e1
SHA512

a12c67299737f34a2b90bf8701d6e53c55f440b50a63c9feff743abaa07bd0680a6cca528c2b2a4297a369e746d3dbf871208d33db7c506515a4f50b2fb79eb9
SSDEEP

12288:zcr0eZS17J0LSFqnQlSHE8LWfx99GzfxL/pvL9XlMWd3P6B:zcrvs17J08qncQLW/SV/5BLd3Pc

Score

N/A

Malware Config

Signatures

Files

757ee463282726a352d7ba94a9d1c29dee6eb850c7780f134b2e9f4831ac86e1
.exe windows x86

59f9b2f9dbab8b6dff0aac33c28b3efe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFileScatter
_lwrite

comctl32

ImageList_Destroy
ImageList_Create
CreateStatusWindowW
ImageList_AddMasked

shell32

DragAcceptFiles

rpcrt4

RpcStringFreeW
RpcBindingToStringBindingW
NdrServerCall2
RpcRevertToSelf
RpcBindingVectorFree
RpcServerUnregisterIf
RpcImpersonateClient
RpcBindingSetAuthInfoExW
RpcServerInqBindings
RpcBindingFromStringBindingW
I_RpcBindingInqTransportType
RpcBindingFree
NdrClientCall2
RpcStringBindingParseW
RpcServerRegisterIfEx

setupapi

SetupDiOpenDeviceInterfaceRegKey
SetupDiGetDeviceInterfaceDetailW
SetupDiGetDeviceInstanceIdW
SetupDiGetDeviceInterfaceAlias
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiOpenDevRegKey
SetupDiOpenDeviceInterfaceW
SetupDiEnumDeviceInterfaces
SetupDiCreateDeviceInfoList
SetupDiOpenDeviceInfoW

winspool.drv

DeletePrinterConnectionA

ntdll

RtlInitializeResource
RtlAcquireResourceExclusive
RtlReleaseResource
NtDuplicateToken
NtClose
wcstoul
RtlAcquireResourceShared
_wcsicmp
RtlDeleteResource
NtQueryVirtualMemory
RtlOpenCurrentUser
RtlUnwind

winsta

WinStationQueryInformationW

ole32

CoCreateInstance
CLSIDFromString
CoUninitialize
CoInitialize

user32

EndDialog
GetSysColorBrush
GetWindowLongW
PostMessageW
RegisterDeviceNotificationW
TranslateMessage
CallWindowProcW
LoadImageW
UnregisterDeviceNotification
GetSystemMetrics
MessageBoxW
SetWindowPos
SendDlgItemMessageW
SetWindowLongW
KillTimer
DispatchMessageW
LoadBitmapW
DefWindowProcW
CharNextW
SendMessageW
SetDlgItemTextW
RegisterWindowMessageW
SystemParametersInfoW
ShowWindow
GetMessageW
CloseDesktop
SetTimer
DestroyWindow
SetForegroundWindow
MonitorFromRect
PostQuitMessage
CreateWindowExW
GetClientRect
GetMonitorInfoW
SetWindowTextW
wsprintfW
LoadStringW
FindWindowW

Sections

.text
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 203KB - Virtual size: 647KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 214KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59f9b2f9dbab8b6dff0aac33c28b3efe

Headers

File Characteristics

Imports

kernel32

comctl32

shell32

rpcrt4

setupapi

winspool.drv

ntdll

winsta

ole32

user32

Sections

.text Size: 169KB - Virtual size: 169KB

.data Size: 203KB - Virtual size: 647KB

.rdata Size: 27KB - Virtual size: 26KB

.rsrc Size: 214KB - Virtual size: 214KB

.text
Size: 169KB - Virtual size: 169KB

.data
Size: 203KB - Virtual size: 647KB

.rdata
Size: 27KB - Virtual size: 26KB

.rsrc
Size: 214KB - Virtual size: 214KB