b49dd572d5e5da6b6dc1b1e415a63223a37dd3a000d0849735052581a1ca863a

Sharing

Copy URL Twitter E-mail

General

Target

b49dd572d5e5da6b6dc1b1e415a63223a37dd3a000d0849735052581a1ca863a
Size

86KB
MD5

61c57b9e828a52015730c1846a4f7ba2
SHA1

659fefab153eda2a9c2645cde17f62be0ccfc26e
SHA256

b49dd572d5e5da6b6dc1b1e415a63223a37dd3a000d0849735052581a1ca863a
SHA512

e564a632576bf86865f491319ec3c0819bcaef3529f8c8ec4be5208a81e7ff8f351f721f167d221cab5406534dc96b07bdf52e588f8c5ff229505822804857f9
SSDEEP

1536:ONXltjkS095buMC0gDpCj2wSwtLoo7+P1n9TAZmifnFJjgLwL:2XbjkS09huMCBptS/nFV

Score

N/A

Malware Config

Signatures

Files

b49dd572d5e5da6b6dc1b1e415a63223a37dd3a000d0849735052581a1ca863a
.exe windows x86

3d28aa693febce812c4a7b35dcfebaeb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFile
CreateFileMappingA
WaitForSingleObject
CreateMutexA
Sleep
SearchPathA
CloseHandle
CreateProcessA
RtlZeroMemory
GetTickCount
lstrcatA
GetSystemDirectoryA
GlobalDeleteAtom
ReleaseMutex
ResetEvent
UnmapViewOfFile
CreateEventA
GetPrivateProfileIntA
InitializeCriticalSection
ExitProcess
DeleteCriticalSection
LeaveCriticalSection
TerminateThread
EnterCriticalSection
GlobalFindAtomA
RtlMoveMemory
ExitThread
SetEvent
GlobalAddAtomA
GetLastError
LocalAlloc
GlobalGetAtomNameA
CreateThread
HeapCreate
SetHandleCount
GetOEMCP
GetFileType
GetCPInfo
WideCharToMultiByte
GetACP
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
RtlUnwind
GetVersion
UnhandledExceptionFilter
GetStartupInfoA
LocalFree
GetCommandLineA
GetModuleHandleA
WriteFile
SetFilePointer
HeapFree
HeapAlloc
LoadLibraryA
GetProcAddress
SetStdHandle
FlushFileBuffers

user32

CheckMenuItem
LoadCursorA
RegisterClassA
CreateWindowExA
UpdateWindow
SendDlgItemMessageA
SetDlgItemTextA
EndDialog
GetMessageA
TranslateMessage
IsDialogMessageA
DispatchMessageA
DefWindowProcA
GetWindowRect
CreateDialogParamA
LoadIconA
PostQuitMessage
PostMessageA
GetSystemMenu
SetClassLongA
AppendMenuA
DestroyWindow
SetWindowPos
SetWindowTextA
wsprintfA
SendMessageA
WaitForInputIdle
FindWindowA
GetWindowTextA
GetClassNameA
LoadStringA
FindWindowExA
DialogBoxParamA
DeleteMenu
ShowWindow

gdi32

GetStockObject

winspool.drv

EnumPrintersA

bustm99a

brUsbGetPortStatus
brPrinterReset
brUsbGetJobStatus
brUsbGetUStatus
CloseFileheader
CreateFileheader

Sections

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 213B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 49KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3d28aa693febce812c4a7b35dcfebaeb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

bustm99a

Sections

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 512B - Virtual size: 213B

.data Size: 5KB - Virtual size: 13KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 9KB - Virtual size: 8KB

.reloc Size: 49KB - Virtual size: 52KB

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 512B - Virtual size: 213B

.data
Size: 5KB - Virtual size: 13KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 9KB - Virtual size: 8KB

.reloc
Size: 49KB - Virtual size: 52KB