b5c88e93123abe4a31f368eecf4554808cc9a7305ba82340ff282db7cceeb3d9

General

Target

b5c88e93123abe4a31f368eecf4554808cc9a7305ba82340ff282db7cceeb3d9
Size

156KB
MD5

81681df04c6477a3b2e67d6cfe988acc
SHA1

ba27bc42afdee54ea59f1df5bebacde93717998d
SHA256

b5c88e93123abe4a31f368eecf4554808cc9a7305ba82340ff282db7cceeb3d9
SHA512

04fa28aec75fa9b4135789de02f639c1c788aa828aa5abc0a73971d670b975295adc896e02d6bc858852ba894f143d785bab7b8f50820e1ffbb99dde5d07a44a
SSDEEP

3072:/iW5nJGaX8oYrendBUYCGj5PJTz1FKLH6LilHqXEOx3GTv5:/JOydB6GXRALH6WKXn3E

Score

N/A

Malware Config

Signatures

Files

b5c88e93123abe4a31f368eecf4554808cc9a7305ba82340ff282db7cceeb3d9
.dll windows x86

adfed9c0f8913f5f56306bb7cd4d5dbf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetClassDevsA
SetupCancelTemporarySourceList
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA

advapi32

RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
LsaQuerySecurityObject

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

kernel32

LoadLibraryA
LocalAlloc
SetCurrentDirectoryA
VirtualAlloc
LocalFree
GetVersionExA
lstrlenA
lstrcpyA
VirtualProtect
CreateDirectoryA
DeleteFileA
ExitProcess
FindClose
FindFirstFileA
FreeLibrary
GetCurrentDirectoryA
GetCurrentProcess
GetFileAttributesA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
VirtualFree

shell32

RegenerateUserEnvironment
SHGetFolderPathW

msvcrt

__set_app_type
_adjust_fdiv
_except_handler3
_initterm
__p__commode
_mbscmp
_onexit
atoi
exit
free
malloc
sprintf
strrchr
strtok
__getmainargs
__dllonexit
__CxxFrameHandler
_itoa

user32

wsprintfA
SetTimer
MessageBoxA

Exports

Exports

BrowseForFolder
CreateContext
ExternalRestore
UpdateSubTexture

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adfed9c0f8913f5f56306bb7cd4d5dbf

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

advapi32

winspool.drv

kernel32

shell32

msvcrt

user32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 87KB - Virtual size: 87KB

.data Size: 11KB - Virtual size: 11KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 87KB - Virtual size: 87KB

.data
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 4KB - Virtual size: 3KB