8c7292960f821a57d049793eb56b6b79ae63cabcdc584808271dbbc4dbbb6f21

Sharing

Copy URL Twitter E-mail

General

Target

8c7292960f821a57d049793eb56b6b79ae63cabcdc584808271dbbc4dbbb6f21
Size

446KB
MD5

635a498b3c39b7b2d57daa24e4355cb2
SHA1

b2855e07cb6300e5b5a973cbc91d21106ef6e7e2
SHA256

8c7292960f821a57d049793eb56b6b79ae63cabcdc584808271dbbc4dbbb6f21
SHA512

b946939985da0df3bcb484eb1ef63cfc92cc417199f792d69d3fd33d2085f788fb21504e98af8a6325dfc7599e9bfbf21b920f737e01e62549dc432ef03fab80
SSDEEP

12288:mKt2SOXTg5Dw+2CXdMlqIlctxctJcx5z9u+wTORgS0gNo:mKt2SOjg5DwniSlZgxy+5z0+wCRQU

Score

N/A

Malware Config

Signatures

Files

8c7292960f821a57d049793eb56b6b79ae63cabcdc584808271dbbc4dbbb6f21
.exe windows x86

8c978d4583962bf829e17352e429b77a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

??2@YAPAXI@Z
_except_handler3
free
_initterm
??3@YAXPAX@Z
_adjust_fdiv
malloc

kernel32

LeaveCriticalSection
TerminateProcess
EnterCriticalSection
SetLastError
lstrlenW
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
GetLastError
GetProcAddress
GetModuleHandleW
lstrcmpiW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
DeleteCriticalSection
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount

ole32

CoCreateInstance
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree

advapi32

RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExW

winspool.drv

OpenPrinterW
ClosePrinter

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 2KB - Virtual size: 21B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iq
Size: 128KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oooa
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.obb
Size: 128KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.sef
Size: 128KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qwqw
Size: 2KB - Virtual size: 537B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdsd
Size: 2KB - Virtual size: 103B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xczxc
Size: 2KB - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.asqea
Size: 2KB - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.asqeax
Size: 2KB - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oapa
Size: 2KB - Virtual size: 82B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gjdk
Size: 2KB - Virtual size: 122B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nbmv
Size: 2KB - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mzna
Size: 2KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 2KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 18KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 266B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c978d4583962bf829e17352e429b77a

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

ole32

advapi32

winspool.drv

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 940B

.tls Size: 2KB - Virtual size: 21B

.iq Size: 128KB - Virtual size: 126KB

.oooa Size: 4KB - Virtual size: 2KB

.obb Size: 128KB - Virtual size: 126KB

.sef Size: 128KB - Virtual size: 126KB

.qwqw Size: 2KB - Virtual size: 537B

.sdsd Size: 2KB - Virtual size: 103B

.xczxc Size: 2KB - Virtual size: 200B

.asqea Size: 2KB - Virtual size: 200B

.asqeax Size: 2KB - Virtual size: 200B

.oapa Size: 2KB - Virtual size: 82B

.gjdk Size: 2KB - Virtual size: 122B

.nbmv Size: 2KB - Virtual size: 160B

.mzna Size: 2KB - Virtual size: 176B

.CRT Size: 2KB - Virtual size: 8B

.rsrc Size: 18KB - Virtual size: 16KB

.reloc Size: 2KB - Virtual size: 266B

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 940B

.tls
Size: 2KB - Virtual size: 21B

.iq
Size: 128KB - Virtual size: 126KB

.oooa
Size: 4KB - Virtual size: 2KB

.obb
Size: 128KB - Virtual size: 126KB

.sef
Size: 128KB - Virtual size: 126KB

.qwqw
Size: 2KB - Virtual size: 537B

.sdsd
Size: 2KB - Virtual size: 103B

.xczxc
Size: 2KB - Virtual size: 200B

.asqea
Size: 2KB - Virtual size: 200B

.asqeax
Size: 2KB - Virtual size: 200B

.oapa
Size: 2KB - Virtual size: 82B

.gjdk
Size: 2KB - Virtual size: 122B

.nbmv
Size: 2KB - Virtual size: 160B

.mzna
Size: 2KB - Virtual size: 176B

.CRT
Size: 2KB - Virtual size: 8B

.rsrc
Size: 18KB - Virtual size: 16KB

.reloc
Size: 2KB - Virtual size: 266B