00fb3aef0efe2e2595f988cef060ab00e88de2936f379312cbd039843f1cd947

Sharing

Copy URL Twitter E-mail

General

Target

00fb3aef0efe2e2595f988cef060ab00e88de2936f379312cbd039843f1cd947
Size

378KB
MD5

563a8a4c5fb7ffd6db17a41c445a9f80
SHA1

b624018fa16858143a7324a2d925e91b9001febf
SHA256

00fb3aef0efe2e2595f988cef060ab00e88de2936f379312cbd039843f1cd947
SHA512

6ff3e865f9e5ecb876e0e56d8b9498f7a63783b40837617875cc7f36c6f750adf2e364880f9866026e138ef17406052abeece89583020c4112aef93e94c4e2a3
SSDEEP

6144:pRSKkHzuaXcE/rhi2070gv9M9k+G+BrFGZMGUuCvGG0kAczW6Wrsb+YkuIkTNki8:pRSKkTuQI2WvVM9kgPuxGbAcgsijF7L

Score

N/A

Malware Config

Signatures

Files

00fb3aef0efe2e2595f988cef060ab00e88de2936f379312cbd039843f1cd947
.exe windows x86

38dc05a4ad0268acf1a79c726e226cd9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateBrushIndirect
DeleteDC
GetRasterizerCaps
EnumICMProfilesA
CopyEnhMetaFileA
GetTextExtentPoint32A
SelectObject
GetPixel
RealizePalette
GetMetaFileA
SetBkMode
CopyMetaFileA
SetGraphicsMode
SetViewportOrgEx
SelectBrushLocal
GetBrushOrgEx
CreatePen
FillPath
GetFontLanguageInfo
SelectClipRgn
GetSystemPaletteEntries
IntersectClipRect
RectVisible
Pie
Ellipse
ChoosePixelFormat
ScaleViewportExtEx
TextOutA
GetEnhMetaFileHeader
GetStockObject
AnimatePalette
GetROP2
GetColorAdjustment
ResetDCA
GetMetaFileBitsEx
PlayEnhMetaFile
CloseEnhMetaFile
GetEnhMetaFileDescriptionA
GetTextAlign
GetClipBox
PolyBezier
CombineRgn
GdiEndDocEMF
SetMagicColors
SetMetaFileBitsEx
Polygon
GetCharacterPlacementA
GetViewportExtEx
EnumFontFamiliesA
PolyDraw
SetTextAlign
SetBitmapBits
PlayMetaFileRecord
GdiGetPageCount
SetWindowExtEx
FixBrushOrgEx
GetGlyphIndicesA
RemoveFontMemResourceEx
StartDocA
CloseMetaFile
DeleteColorSpace
GdiFlush
GetDCBrushColor
GetBitmapBits
CreateEllipticRgnIndirect
CombineTransform
SetTextJustification
GetCharABCWidthsFloatA
GetObjectA
GdiPlayDCScript
ExtTextOutA
SetLayout
LineDDA
CreateDIBSection
SetDIBitsToDevice
GetTextCharset
GetFontUnicodeRanges
DPtoLP
GetEnhMetaFileA
GetMiterLimit
SelectFontLocal
CreatePalette
CheckColorsInGamut
SetEnhMetaFileBits
GetRandomRgn
GetDCOrgEx
GetOutlineTextMetricsA
GetTextExtentPointI
GetWindowOrgEx
SetDeviceGammaRamp
PlayEnhMetaFileRecord
Escape
SetMapperFlags
SetWindowOrgEx
CreateCompatibleDC
GdiGetBatchLimit
SaveDC
GdiEndPageEMF
GetTextExtentExPointI
UpdateICMRegKeyA
CreateHatchBrush
SelectPalette
GetStretchBltMode
GetClipRgn
Rectangle
GetDeviceCaps
CreateScalableFontResourceA
GetRelAbs
GetWorldTransform
Chord
SetMapMode
CreateCompatibleBitmap
GetBitmapDimensionEx
CreateHalftonePalette
GetNearestColor
UnrealizeObject
GdiSetBatchLimit
CreateColorSpaceA
PlayMetaFile
SetMetaRgn
GetCurrentPositionEx

winspool.drv

DeleteFormA
DeletePrintProvidorA
QueryRemoteFonts
AddJobA
ord100
ConfigurePortA
DocumentEvent
ord214
ConnectToPrinterDlg
ADVANCEDSETUPDIALOG
AddPrinterA
EnumPortsA
FindClosePrinterChangeNotification
AddMonitorA
AdvancedSetupDialog
SetPrinterA
AddPrinterConnectionA
EndPagePrinter
ord202
DEVICEMODE
ord206
EnumMonitorsA
EXTDEVICEMODE
WaitForPrinterChange
EnumPrintProcessorsA
ConvertAnsiDevModeToUnicodeDevmode
OpenPrinterA
GetPrinterDriverA
ord212
EnumPrintProcessorDatatypesA
DeletePortA
GetPrinterDataExA
ord102
GetPrinterDriverDirectoryA
DeletePrintProcessorA
AddPrinterDriverA
ScheduleJob
SetPortA
ReadPrinter
FindFirstPrinterChangeNotification
AddFormA
DeletePrinterIC
EnumPrinterDataExA
ord205
AddPrintProvidorA
StartDocDlgA
CommitSpoolData
ExtDeviceMode
FreePrinterNotifyInfo
PrinterProperties
DevQueryPrintEx
ord256
SetPrinterDataA
PlayGdiScriptOnPrinterIC
EnumPrintersA
DocumentPropertiesA
CloseSpoolFileHandle
ord210
DeletePrinterDriverExA
ord103
DeletePrinterConnectionA
DEVICECAPABILITIES
GetPrinterDataA
StartDocPrinterA
ord213
AddPortExA
AbortPrinter
DeviceMode
AdvancedDocumentPropertiesA
AddPrinterDriverExA
DeletePrinter
DeletePrinterDriverA
SeekPrinter
GetJobA
SetJobA
DocumentPropertySheets
GetPrinterA
StartPagePrinter
ord208
AddPortA
DevQueryPrint

kernel32

SetVDMCurrentDirectories
GetDateFormatA
SetPriorityClass
GetConsoleOutputCP
IsBadCodePtr
IsValidCodePage
DisconnectNamedPipe
GetCommTimeouts
SetTapeParameters
GetConsoleAliasesLengthA
ReadConsoleInputExA
FindNextFileA
UnhandledExceptionFilter
PurgeComm
IsDBCSLeadByte
VerifyConsoleIoHandle
ReadConsoleA
RegisterConsoleVDM
GetConsoleCommandHistoryLengthA
SetConsoleKeyShortcuts
GetLogicalDrives
GetCurrentThread
SetStdHandle
FormatMessageA
GetConsoleAliasesA
GetCurrentProcess
HeapSize
ConvertThreadToFiber
FreeLibrary
GlobalUnlock
VirtualFree
FindResourceA
GetProcessTimes
GetProcessHeap
VerLanguageNameA
Heap32ListFirst
WritePrivateProfileStructA
FatalAppExitA
GenerateConsoleCtrlEvent
InterlockedCompareExchange
GetModuleHandleA
DeleteFiber
GetCommState
lstrlenA
lstrcmpiA
GetCurrentThreadId
GetSystemTime
FindNextVolumeMountPointA
HeapValidate
WaitNamedPipeA
IsBadReadPtr
GetDiskFreeSpaceA
GetCurrentDirectoryA
GetCurrentProcessId
FindFirstChangeNotificationA
DeviceIoControl
BackupWrite
GetProcessShutdownParameters
GetComputerNameA
GetConsoleAliasA
GetPrivateProfileSectionNamesA
LoadLibraryA
LockResource
GetCalendarInfoA
GetSystemDefaultLangID
ShowConsoleCursor
CreateMailslotA
GetCommandLineW
GetOEMCP
SetThreadExecutionState
IsDBCSLeadByteEx
GetVolumeInformationA
GetTapePosition
SetMailslotInfo
Thread32First
ReadFile
LocalLock
ReadConsoleOutputAttribute
GetProcAddress
SetConsoleCursor
TransmitCommChar
VirtualAlloc
GetTickCount
GetThreadLocale
GetCommandLineA
GetSystemDefaultLCID
LeaveCriticalSection
GetFileSizeEx
DeleteTimerQueue
GetConsoleKeyboardLayoutNameA
SetSystemTime
SetConsoleNumberOfCommandsA
GetLocalTime
Process32Next
SetCalendarInfoA
OpenJobObjectA
WriteFileGather
GetCompressedFileSizeA
Heap32Next
GetLogicalDriveStringsA
EnumSystemLocalesA

user32

DdeUninitialize
LoadStringA
BeginPaint
GetActiveWindow
GetKeyboardLayoutList
LoadIconA
GetComboBoxInfo
LoadCursorA
DrawIcon
GetMenuContextHelpId
DispatchMessageA
GetClipCursor
DdeGetLastError
GetDialogBaseUnits
DestroyWindow
OpenClipboard
UpdateLayeredWindow
EditWndProc
BroadcastSystemMessageA
ModifyMenuA
wsprintfA
GetWindow
DefFrameProcA
SetRectEmpty
DdeNameService
GetCursorInfo
DrawMenuBar
SetUserObjectSecurity
GetScrollInfo
CreateCursor
CopyImage
GetFocus
DeleteMenu
TrackMouseEvent
VkKeyScanA
DdeAbandonTransaction
GetMessageTime

msvcrt

_ismbcsymbol
_mbsnicoll
_mbsncat
_mbsnbicmp
_mbsdec
_mbsnbcoll
_pipe
_loaddll
_fpieee_flt
__p__fmode
atexit
fwrite
_ismbcprint
_fullpath
iswxdigit
feof
_adj_fprem
_atoi64
_wunlink
fwprintf
clock
_rotl
wscanf
iswgraph
_ui64toa
_winver
_wrmdir
_CIlog
wcstombs
remove
_chmod
fputc
__doserrno
putc
__CxxFrameHandler
_wremove
_adj_fdivr_m32
iswalnum
_chgsign
_wfullpath
_mbsupr
_fdopen
fwscanf
isalnum
_wpgmptr
iswprint
_ismbbalpha
sprintf
_onexit
strncat
_sys_nerr
ferror
_purecall
isalpha
abs
_wopen
__p__timezone
_dup2
_spawnvp
_lsearch
_fputwchar
fputs
fsetpos
isspace
printf
fseek
iswpunct
__pioinfo
_wfsopen
__CxxLongjmpUnwind
_stricmp
_cabs
setlocale
_getdcwd
_execvpe
_pwctype
_ismbstrail
_mbslen
_inpw
_ismbbkprint
fclose
_mbscspn
getenv
_adj_fprem1
_ismbcl2
wcstok
_wtoi64
_ismbbalnum
vfprintf
_mbscoll
ftell
_wtmpnam
_adj_fdivr_m64
tmpnam
_CItanh
__p__tzname
fgetpos
_rmtmp
strncmp
_daylight
memset
_strncoll
_isatty
_ismbbkalnum
getwchar
cosh
_getcwd
_except_handler2
_adj_fptan
fprintf
_chdrive
fopen
gmtime
_safe_fdiv
raise
_tell
abort
pow
_wcsnicoll
_fcvt
wcscspn
_mbschr
_lseek
_mbsbtype
_swab
_wenviron
_outpd
ldiv
_setmaxstdio
_wmakepath
fread
_aexit_rtn
_wspawnl
iswdigit
_wstati64
labs
_gcvt
_ismbcdigit
_putw
_adj_fdiv_m32

Sections

.text
Size: 352KB - Virtual size: 351KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

38dc05a4ad0268acf1a79c726e226cd9

Headers

File Characteristics

Imports

gdi32

winspool.drv

kernel32

user32

msvcrt

Sections

.text Size: 352KB - Virtual size: 351KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 8KB - Virtual size: 5KB

.text
Size: 352KB - Virtual size: 351KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 8KB - Virtual size: 5KB