412de240e5e237ab1c9acc063560679247f9878dec98d79d0e948a0a44fa5f56

Sharing

Copy URL Twitter E-mail

General

Target

412de240e5e237ab1c9acc063560679247f9878dec98d79d0e948a0a44fa5f56
Size

304KB
MD5

20a39273bd0bc5ccdbe51b05ea680a84
SHA1

a584ae1cec1640b37c98fe6d12dcd684d59a2887
SHA256

412de240e5e237ab1c9acc063560679247f9878dec98d79d0e948a0a44fa5f56
SHA512

465bfb941c774bc1c8a2dacaefe35048a5527acf57b9e18639ed50a67759e5bf61e4f72126b8e8936156e41377c976336578696b8afdf0ef554a4d62d0879870
SSDEEP

6144:6mF97+1O5AqCaOhLpCcmJxchrSK2YaSNOIng3i2IiOO:6Q9u+AqC1hLRYKhuK2V0Kn

Score

N/A

Malware Config

Signatures

Files

412de240e5e237ab1c9acc063560679247f9878dec98d79d0e948a0a44fa5f56
.exe windows x86

1860b40a59cd88727835f6a3fb088b0d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

OpenPrinterA
GetPrinterA
DocumentPropertiesA
ClosePrinter
GetJobA
ord204

ole32

CoRevokeClassObject
StgIsStorageILockBytes
OleSetContainedObject
OleCreateFromData
CreateFileMoniker
OleRun
CoTaskMemAlloc
GetClassFile
OleQueryLinkFromData
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
OleQueryCreateFromData
CoCreateInstance
OleUninitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
OleLockRunning
CoRegisterClassObject
OleFlushClipboard
CreateGenericComposite
CoRegisterMessageFilter
CreateOleAdviseHolder
CoTaskMemFree
OleLoad
StgOpenStorageOnILockBytes
OleGetClipboard
WriteClassStg
OleSaveToStream
OleInitialize

kernel32

WideCharToMultiByte
GetCurrentProcess
TlsGetValue
CloseHandle
TerminateProcess
SetThreadPriority
UnhandledExceptionFilter
GetTickCount
HeapAlloc
RtlUnwind
GetStdHandle
GetACP
WaitForSingleObject
GetVersion
lstrcmpA
lstrcmpiA
OutputDebugStringA
lstrlenW
GetFileType
ReadFile
CopyFileA
InterlockedIncrement
EnterCriticalSection
GetProfileStringA
GetProcAddress
DebugBreak
GetLastError
SetStdHandle
HeapValidate
GetCommandLineA
LoadLibraryA
FreeEnvironmentStringsA
FindResourceA
GlobalReAlloc
SetEnvironmentVariableA
FreeResource
IsBadWritePtr
VirtualAlloc
GetEnvironmentStrings
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
GetTimeZoneInformation
InterlockedDecrement
lstrcpynA
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
RaiseException
HeapCreate
CompareStringW
WriteFile
SetFilePointer
ExitProcess
VirtualFree
GetSystemTime
SetEvent
CreateFileA
TlsAlloc
IsBadCodePtr
CreateMutexA
QueryPerformanceCounter
LocalReAlloc
GetOEMCP
GetCurrentThreadId
LeaveCriticalSection
FindClose
GetThreadLocale
GetCurrentProcessId
DeviceIoControl
HeapReAlloc
DeleteCriticalSection
SetFileTime
GetModuleFileNameA
InterlockedExchange
GetModuleHandleA
CompareStringA
GlobalAddAtomA
FreeLibrary
FlushFileBuffers
SetHandleCount
TlsSetValue
GetEnvironmentStringsW
CreateEventA
GlobalUnlock
GetLocalTime
GetExitCodeProcess
InitializeCriticalSection
GetFileTime
LCMapStringA
SetLastError
LCMapStringW
VirtualQuery
HeapFree
HeapDestroy
GlobalGetAtomNameA
GetVersionExA
GetStartupInfoA
GetCPInfo
IsBadReadPtr
SetUnhandledExceptionFilter

gdi32

RealizePalette
IntersectClipRect
CreateDIBSection
CreateFontIndirectA
ExtTextOutA
CreateRectRgn
CreateBitmap
LineTo
GetBkColor
SetWindowOrgEx
OffsetWindowOrgEx
GetBkMode
GetTextColor
DeleteDC
SelectClipRgn
GetDeviceCaps
StartDocA
ExtTextOutW
GetStockObject
CreateRectRgnIndirect
DeleteObject
CreatePalette
GetTextExtentPoint32A
SetTextColor
Rectangle
GetTextFaceA
CreateCompatibleDC
PtVisible
CreateSolidBrush
StretchDIBits
SelectObject
EndPath
BeginPath
GetNearestPaletteIndex
TextOutA
LPtoDP
GetViewportOrgEx

user32

DestroyWindow
DestroyIcon
GetWindowTextA
MessageBoxA
RemovePropA
LoadIconA
LoadAcceleratorsA
CreateWindowExA
SendMessageA
SetTimer
SetMenuItemInfoA
SetWindowsHookExA
GetClassNameA
LoadBitmapA
LoadStringA
GetIconInfo
RegisterClassExA
RedrawWindow
LoadCursorA
GetDlgItem
SetWindowTextA
GetPropA
BeginPaint
SetParent
GetAsyncKeyState
PostQuitMessage
KillTimer
GetClassInfoA
SetPropA
LoadImageA
SetMenuDefaultItem
SetRectEmpty
DestroyAcceleratorTable
ShowWindow
TrackPopupMenuEx
TrackPopupMenu
SetActiveWindow
CreateIconIndirect
GetForegroundWindow
GrayStringA
RemoveMenu
DrawTextA
SetFocus
DefWindowProcA
RegisterClassA
EndPaint
GetWindowDC
GetSysColor

oleaut32

LoadTypeLi

winmm

waveOutOpen
midiOutGetVolume
midiOutOpen
waveOutGetDevCapsA
midiOutClose
midiOutGetDevCapsA
midiOutGetNumDevs

shell32

ord155
SHGetSpecialFolderLocation

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1860b40a59cd88727835f6a3fb088b0d

Headers

File Characteristics

Imports

winspool.drv

ole32

kernel32

gdi32

user32

oleaut32

winmm

shell32

Sections

.text Size: 84KB - Virtual size: 81KB

.rdata Size: 96KB - Virtual size: 95KB

.data Size: 60KB - Virtual size: 90KB

.rsrc Size: 60KB - Virtual size: 56KB

.text
Size: 84KB - Virtual size: 81KB

.rdata
Size: 96KB - Virtual size: 95KB

.data
Size: 60KB - Virtual size: 90KB

.rsrc
Size: 60KB - Virtual size: 56KB