740fa2a9bd16a9d9cd7075ee5da4e4c002372197747f04e1efa8d07da077281b

Sharing

Copy URL Twitter E-mail

General

Target

740fa2a9bd16a9d9cd7075ee5da4e4c002372197747f04e1efa8d07da077281b
Size

172KB
MD5

065ff95e682c2c0892dd3dc5e1321828
SHA1

1e7e7d37486ea87e07ca9c0efc60e4af264083a2
SHA256

740fa2a9bd16a9d9cd7075ee5da4e4c002372197747f04e1efa8d07da077281b
SHA512

30bd3fcb6aa5917313372321cb319022f0ace4fdbdbd8fb5485927cf7dedcff12e1faeea7f8dfddc47d3bdd7996012bce0c1247edeecdf6eb5aecdc80a43a777
SSDEEP

1536:u7wZeScV6w7tGq47w27h/+gkNFN5mqBejTvH00:ukeSW62Gq47wCN+gkDjm1Pv00

Score

N/A

Malware Config

Signatures

Files

740fa2a9bd16a9d9cd7075ee5da4e4c002372197747f04e1efa8d07da077281b
.exe windows x86

50aa8cf500b48c156ae572bd1380551d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
FindNextFileA
lstrcmpA
DeleteFileA
FindClose
lstrlenA
FindFirstFileA
CopyFileA
WriteFile
GetLastError
lstrcpynA
SetEndOfFile
LocalAlloc
ReleaseMutex
CreateMutexA
OpenMutexA
RemoveDirectoryA
WriteProfileStringA
GetCurrentProcess
SetFileAttributesA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetWindowsDirectoryA
GetSystemDirectoryA
lstrcpyA
lstrcatA
CreateFileA
GetFileSize
CloseHandle
GlobalAlloc
GlobalLock
ReadFile
GlobalUnlock
LocalHandle
LocalFree
GetModuleFileNameA
GetCPInfo
TerminateProcess
ExitProcess
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetProcAddress
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
GetVersion
GetCommandLineA
GlobalFree
GetStartupInfoA
GetModuleHandleA
HeapAlloc
HeapFree
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LoadLibraryA
GetStringTypeW
GetStringTypeA
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
LCMapStringW

user32

DispatchMessageA
TranslateMessage
GetMessageA
EndDialog
SetClassLongA
SendDlgItemMessageA
MessageBoxA
SetWindowTextA
LoadStringA
RegisterClassExA
LoadIconA
DefWindowProcA
CharUpperA
FindWindowExA
wsprintfA
SendMessageTimeoutA
BeginPaint
GetSystemMetrics
SetWindowPos
SetForegroundWindow
CreateWindowExA
DrawTextA
EndPaint
PostQuitMessage
DialogBoxParamA
ShowWindow
UpdateWindow
DestroyWindow
GetFocus
GetClientRect
GetSysColor
ExitWindowsEx

gdi32

SetTextColor
GetTextExtentPoint32A
SetBkMode

winspool.drv

DeletePrinter
DeletePrinterConnectionA
DeletePrinterDriverA
AbortPrinter
ClosePrinter
EnumPrintersA
EnumJobsA
OpenPrinterA
GetPrinterDriverA

advapi32

RegEnumKeyExA
RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegDeleteValueA
RegQueryInfoKeyA
RegQueryValueExA

shell32

SHGetPathFromIDListA
SHGetSpecialFolderLocation

ole32

CoTaskMemFree
CoTaskMemAlloc

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 927B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

50aa8cf500b48c156ae572bd1380551d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

Sections

.text Size: 34KB - Virtual size: 33KB

.rdata Size: 1024B - Virtual size: 927B

.data Size: 11KB - Virtual size: 13KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 89KB - Virtual size: 96KB

.text
Size: 34KB - Virtual size: 33KB

.rdata
Size: 1024B - Virtual size: 927B

.data
Size: 11KB - Virtual size: 13KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 89KB - Virtual size: 96KB