8273e24011c691e444f73fd687c868cab76031fb36829ec448afe4e6906490d8

Sharing

Copy URL Twitter E-mail

General

Target

8273e24011c691e444f73fd687c868cab76031fb36829ec448afe4e6906490d8
Size

260KB
MD5

9144a09f030e4663e892ecd734fc044f
SHA1

1b8afb91ca80de35f01b97b35283bdfe4a24b955
SHA256

8273e24011c691e444f73fd687c868cab76031fb36829ec448afe4e6906490d8
SHA512

5f70c59080109362ece959a6153a00c291f7bb92e739080d4c2447d97ca8965d485bd4ac434e1409fba8da35197f13ad99835f931276f2168cdd5a357e4df150
SSDEEP

3072:LFhBOEBRdPkgCJDUPqMpAhNK30O0J/PLR7A+woam/INbDjJ5P+Dmy6ey:LFHHBL9qAkK30O03M+wdlNPTP+DmB

Score

N/A

Malware Config

Signatures

Files

8273e24011c691e444f73fd687c868cab76031fb36829ec448afe4e6906490d8
.exe windows x86

bfa9212611e146ff65f05d1ec57f03b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

DocumentPropertiesA
GetJobA
ord204
GetPrinterA
OpenPrinterA
ClosePrinter

kernel32

GetCurrentThread
FlushFileBuffers
HeapCreate
GetProcAddress
VirtualQuery
FreeEnvironmentStringsW
UnhandledExceptionFilter
InterlockedExchange
SetConsoleCtrlHandler
LoadLibraryA
GetOEMCP
IsBadCodePtr
LCMapStringW
GetVersion
SetHandleCount
ExitProcess
GetCPInfo
GetStringTypeA
WideCharToMultiByte
CompareStringA
HeapReAlloc
VirtualFree
ReadFile
GetEnvironmentStringsW
SetUnhandledExceptionFilter
InitializeCriticalSection
GetSystemTime
LCMapStringA
FatalAppExitA
FreeEnvironmentStringsA
SetStdHandle
QueryPerformanceCounter
RaiseException
IsBadWritePtr
TerminateProcess
HeapDestroy
VirtualAlloc
CompareStringW
CreateMutexA
HeapAlloc
GetLocalTime
GetLastError
SetEnvironmentVariableA
GetTimeZoneInformation
RtlUnwind
WriteFile
HeapFree
GetTickCount
GetCurrentProcess
GetCommandLineA
GetStringTypeW
SetLastError
TlsSetValue
GetModuleHandleA
EnterCriticalSection
TlsAlloc
GetEnvironmentStrings
GetStdHandle
GetStartupInfoA
InterlockedDecrement
CloseHandle
SetFilePointer
InterlockedIncrement
GetFileType
MultiByteToWideChar
GetModuleFileNameA
IsBadReadPtr
LeaveCriticalSection
GetSystemTimeAsFileTime
TlsGetValue
GetCurrentProcessId
TlsFree
GetCurrentThreadId
DeleteCriticalSection
GetACP

shell32

SHGetPathFromIDListA
DragQueryFileA
ShellExecuteA
SHGetFileInfoA

comctl32

ImageList_GetImageCount
ImageList_AddMasked
ord17
ImageList_Draw
ImageList_Duplicate

gdi32

PtVisible
MoveToEx

advapi32

OpenProcessToken
FreeSid
InitializeSecurityDescriptor
RegQueryValueExA
RegCreateKeyExA
RegDeleteValueA
RegQueryValueExW
SetSecurityDescriptorDacl
RegDeleteKeyA
RegSetValueExA
InitializeAcl
SetServiceStatus
RegCreateKeyA
GetTokenInformation
DeleteService
RegCloseKey
RegOpenKeyExA
RegQueryInfoKeyA

user32

SetWindowLongA
PtInRect
DestroyWindow
IsWindowVisible
GetDesktopWindow
GetTopWindow
GetDlgItem
KillTimer
EnableWindow
ModifyMenuA
ReleaseDC
EnableMenuItem
CreateWindowExA
GetSysColorBrush
MessageBoxA
PeekMessageA
OffsetRect
LoadIconA
GetCapture
LoadAcceleratorsA
GetNextDlgTabItem
SetForegroundWindow
LoadStringA
ReleaseCapture
GetClassInfoExA
LoadImageA
DestroyMenu
CharNextA
GetDC
InvalidateRect
AppendMenuA
PostQuitMessage
DrawIcon
GetSystemMetrics
SetRectEmpty
GetWindowRect
DialogBoxParamA
InflateRect
DrawTextA
wsprintfA
InvalidateRgn
SendMessageA
ShowWindow
RegisterClassExA
GetActiveWindow
SetCursor
DefWindowProcA
IntersectRect
LoadCursorA
WaitMessage
RegisterClassA
GetWindowTextA
CallWindowProcA
GetMenu
RegisterWindowMessageA
AdjustWindowRectEx

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfa9212611e146ff65f05d1ec57f03b5

Headers

File Characteristics

Imports

winspool.drv

kernel32

shell32

comctl32

gdi32

advapi32

user32

Sections

.text Size: 60KB - Virtual size: 57KB

.rdata Size: 88KB - Virtual size: 87KB

.data Size: 52KB - Virtual size: 74KB

.rsrc Size: 56KB - Virtual size: 53KB

.text
Size: 60KB - Virtual size: 57KB

.rdata
Size: 88KB - Virtual size: 87KB

.data
Size: 52KB - Virtual size: 74KB

.rsrc
Size: 56KB - Virtual size: 53KB