8b7d64fb897768f7680450c1b0bdbf1547d1d107334dab6697f21a6f0764bcd4

Sharing

Copy URL

Twitter E-mail

General

Target

8b7d64fb897768f7680450c1b0bdbf1547d1d107334dab6697f21a6f0764bcd4
Size

512KB
MD5

464ea751ace69b57a1ec707bf8e76493
SHA1

aa96323a0af84a6ca276e78b544c7b7a68df339b
SHA256

8b7d64fb897768f7680450c1b0bdbf1547d1d107334dab6697f21a6f0764bcd4
SHA512

79ea35d6ccd053878fcec81715039b51ebb95656e05270109c7bee065b6adb19ffac2ff95a51f3f3d11c52f6862874ea82f9d7b0f3a4a3a4ba0ecd529096ed65
SSDEEP

6144:fIQXyp4JbkRNkk0CgnydZvYzErIaWdGs6R54p7Z+/z9B4pfn0TRBR/acvctUOu:7CpEokz7nyQ2Ia+GFS+LPTnIn+

Score

N/A

Malware Config

Signatures

Files

8b7d64fb897768f7680450c1b0bdbf1547d1d107334dab6697f21a6f0764bcd4
.exe windows x86

97720e518fbe8da2a880b9c86eede8ed

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA
wsprintfA
MessageBoxA
SendNotifyMessageA
wvsprintfA

winspool.drv

GetPrinterA
GetPrinterDriverDirectoryA
GetPrintProcessorDirectoryA
SetPrinterA
DeletePrinter
EnumPrintersA
DeletePrintProcessorA
DeletePrinterDriverA
EnumPrinterDriversA
DeleteMonitorA
AddPrinterA
ClosePrinter
AddPrintProcessorA
AddPrinterDriverA
AddMonitorA
OpenPrinterA

advapi32

RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegDeleteValueA
RegSetValueExA
RegCloseKey
RegEnumKeyExA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

shell32

SHGetPathFromIDListA
SHGetMalloc
SHGetSpecialFolderLocation

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

GetCPInfo
SetFilePointer
LCMapStringW
LCMapStringA
IsBadCodePtr
IsBadReadPtr
GetACP
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetOEMCP
GetStringTypeA
GetStringTypeW
SetStdHandle
ReadFile
FlushFileBuffers
SetUnhandledExceptionFilter
LockResource
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapFree
HeapSize
TerminateProcess
HeapAlloc
GetLastError
CreateFileA
GetTempPathA
CloseHandle
WriteFile
GetTimeFormatA
GetLocalTime
FormatMessageA
GetProcAddress
GetModuleHandleA
GetCurrentProcess
FreeLibrary
LoadLibraryA
SetCurrentDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
GetComputerNameA
FreeResource
LoadResource
SizeofResource
FindResourceA
DeleteFileA
CreateDirectoryA
GetModuleFileNameA
RemoveDirectoryA
GetShortPathNameA
CopyFileA
SetFileAttributesA
CompareFileTime
GetFileTime
GetFileAttributesA
GetVersionExA
GetSystemDirectoryA
GetWindowsDirectoryA
WritePrivateProfileSectionA
GetPrivateProfileSectionA
GetProfileStringA
WriteProfileStringA
RtlUnwind
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapReAlloc

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 364KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97720e518fbe8da2a880b9c86eede8ed

Headers

File Characteristics

Imports

user32

winspool.drv

advapi32

ole32

shell32

version

kernel32

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 84KB - Virtual size: 89KB

.rsrc Size: 364KB - Virtual size: 363KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 84KB - Virtual size: 89KB

.rsrc
Size: 364KB - Virtual size: 363KB