7f9bc3b13ad13edcc409f3a0de3091feedfff3fe99ebf5b43e4562bd157ee190

General

Target

7f9bc3b13ad13edcc409f3a0de3091feedfff3fe99ebf5b43e4562bd157ee190
Size

145KB
MD5

7b4425a0175b1a1165f24882afcc9dd0
SHA1

d37be8f754b41dea95f8661d85670f0287ba6b1d
SHA256

7f9bc3b13ad13edcc409f3a0de3091feedfff3fe99ebf5b43e4562bd157ee190
SHA512

33ed70c5c6a3a69602d41a27f29a03ee0faac3c6483cca1ed943da6a1b5bd4ec4a332152e4026a5fe317761bd89dfd5f36c13c756c9da23e34c29cb307b842f3
SSDEEP

3072:Xbc0oGpPAWnOeUUriuohJ7JUPE+e/20wkvd/FV:Xto8AWnAAmZdF

Score

N/A

Malware Config

Signatures

Files

7f9bc3b13ad13edcc409f3a0de3091feedfff3fe99ebf5b43e4562bd157ee190
.exe windows x86

9f188b94bf72adc583747e0dbd4b1983

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
SystemFunction029

user32

SetTimer
wsprintfA
MessageBoxA

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

msvcrt

malloc
_adjust_fdiv
_except_handler3
free
_initterm
_itoa
_mbscmp
_onexit
atoi
__CxxFrameHandler
sprintf
strrchr
strtok
__dllonexit

setupapi

SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList
SetupCancelTemporarySourceList

kernel32

lstrlenA
lstrcpyA
VirtualProtect
VirtualFree
VirtualAlloc
SetCurrentDirectoryA
LocalFree
LocalAlloc
LoadLibraryA
GetVersionExA
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetFileAttributesA
GetCurrentProcess
GetCurrentDirectoryA
FreeLibrary
FindFirstFileA
FindClose
ExitProcess
DeleteFileA
CreateDirectoryA

shell32

SHGetFolderPathW
SHGetDiskFreeSpaceA
DuplicateIcon
ShellHookProc

Exports

Exports

ADeviceOpen
BuildNotificationPackage
GenerateUniqueFileName
OpenFileStreamW

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f188b94bf72adc583747e0dbd4b1983

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

winspool.drv

msvcrt

setupapi

kernel32

shell32

Exports

Exports

Sections

.text Size: 49KB - Virtual size: 49KB

.rdata Size: 80KB - Virtual size: 79KB

.data Size: 13KB - Virtual size: 14KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 49KB - Virtual size: 49KB

.rdata
Size: 80KB - Virtual size: 79KB

.data
Size: 13KB - Virtual size: 14KB

.rsrc
Size: 1KB - Virtual size: 1KB