f7e94ee0fa05d174d46b45786e811524eb11d71258eee65803a40ec480c4f74d

General

Target

f7e94ee0fa05d174d46b45786e811524eb11d71258eee65803a40ec480c4f74d
Size

96KB
MD5

2b28e2f4b8b35adf8f5c8deaf7c19ded
SHA1

47b4303a25c1aeaceeffe8c447c0a0ccdb6e0da4
SHA256

f7e94ee0fa05d174d46b45786e811524eb11d71258eee65803a40ec480c4f74d
SHA512

f7bd4a218718a42139d3a2c2d724b699253025c97764d475c2d2b6b60cf5dd8b0434077bbfc5de3f89bea0cfa532be22e9e86dac0696537c6dee00ecd5772ae6
SSDEEP

3072:nlrbhQCY7Q+yzHt/Ro06kMMMkkkkkkkDxMMMkkkkkkkJc:hSWZ/Rh6kMMMkkkkkkkDxMMMkkkkkkkJ

Score

N/A

Malware Config

Signatures

Files

f7e94ee0fa05d174d46b45786e811524eb11d71258eee65803a40ec480c4f74d
.exe windows x86

8c997b49225c198aa45c0ade8171c762

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_snprintf
_splitpath
_mbscmp
_c_exit
_cexit
_XcptFilter
_exit
_mbsnbcpy

kernel32

GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoA
GetTickCount
QueryPerformanceCounter
SetEnvironmentVariableA
LoadLibraryA
GetProcAddress
FreeLibrary
GetModuleFileNameA
HeapFree
HeapAlloc
GetProcessHeap
SetLastError
ExpandEnvironmentStringsA
GetLastError
GetVersionExA
GetVersion

gdi32

CreateDCA
StartDocA
EndDoc
DeleteDC

user32

MoveWindow
WinHelpA
MessageBoxA
SendMessageA
GetDlgItem
GetWindowRect
GetDesktopWindow
LoadStringA
GetWindowContextHelpId
SetWindowLongA
MessageBeep
GetWindowLongA
EndDialog
DialogBoxParamA

comctl32

ord17

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

winspool.drv

ClosePrinter
OpenPrinterA
EnumPrintersA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c997b49225c198aa45c0ade8171c762

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

gdi32

user32

comctl32

advapi32

winspool.drv

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 64KB - Virtual size: 64KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 64KB - Virtual size: 64KB

.rsrc
Size: 24KB - Virtual size: 24KB