1dc2a554bf7bf7577571076a45c781d8cd1a0c5bd130a8e27e98f72a55df3780

Sharing

Copy URL Twitter E-mail

General

Target

1dc2a554bf7bf7577571076a45c781d8cd1a0c5bd130a8e27e98f72a55df3780
Size

411KB
MD5

91116a20c29b0a17d77cef8d59dca320
SHA1

28138aa3cabd65b21460fd2a745bc79b7633aea4
SHA256

1dc2a554bf7bf7577571076a45c781d8cd1a0c5bd130a8e27e98f72a55df3780
SHA512

6af0342b724aa5e438a761ac83852850d8733a411727a49be6d344d1880c6344c8bb6e372933d9efc682157465223fc614bb14b24d4bb10725bf49b53e329868
SSDEEP

12288:3yC81KN4KwqlkVZVVV1v66MdE86CpIMuQv8S3NIPy:sQkHTVV1JNt8urS3yPy

Score

N/A

Malware Config

Signatures

Files

1dc2a554bf7bf7577571076a45c781d8cd1a0c5bd130a8e27e98f72a55df3780
.exe windows x86

2aa118fabe5a5f6e8cc0f12e1a50106e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStructW
GetPriorityClass

advapi32

CryptReleaseContext
CryptAcquireContextW
RegCreateKeyExW
GetAce
RegDeleteKeyW
CryptHashData
RegNotifyChangeKeyValue
RegSetValueExW
GetSecurityInfo
RegCloseKey
CryptGetHashParam
CryptDestroyHash
CryptCreateHash
RegQueryValueExW
SetSecurityInfo
RegOpenKeyExW

winspool.drv

AddPortExA
AdvancedDocumentPropertiesA
GetPrinterDriverDirectoryW
AddPrinterDriverExA

user32

SetForegroundWindow
RegisterClassW
SendDlgItemMessageW
CallWindowProcW
PostQuitMessage
DestroyWindow
GetWindowLongW
GetDesktopWindow
GetMonitorInfoW
SetWindowTextW
SetTimer
SendMessageW
DefWindowProcW
GetSystemMetrics
CheckDlgButton
SetWindowLongW
MessageBoxW
CharNextW
TranslateMessage
PostMessageW
GetParent
IsDlgButtonChecked
KillTimer
LoadIconW
GetClientRect
EndDialog
SystemParametersInfoW
GetSysColorBrush
GetMessageW
GetWindowRect
DispatchMessageW
SetWindowPos
ShowWindow
CreateWindowExW
DialogBoxParamW
GetDlgItem
FindWindowW
LoadStringW
MonitorFromRect

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Create

ole32

CoInitialize
CoUninitialize
CoCreateInstance

Sections

.text
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 118KB - Virtual size: 1001KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2aa118fabe5a5f6e8cc0f12e1a50106e

Headers

File Characteristics

Imports

kernel32

advapi32

winspool.drv

user32

comctl32

ole32

Sections

.text Size: 145KB - Virtual size: 144KB

.data Size: 118KB - Virtual size: 1001KB

.rdata Size: 24KB - Virtual size: 24KB

.rsrc Size: 117KB - Virtual size: 117KB

.idata Size: 5KB - Virtual size: 5KB

.text
Size: 145KB - Virtual size: 144KB

.data
Size: 118KB - Virtual size: 1001KB

.rdata
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 117KB - Virtual size: 117KB

.idata
Size: 5KB - Virtual size: 5KB