7a7f9e7833b851ca25ef5af3daad8afca87269d829c6e53c1ce7e0da2dbfbb97

Sharing

Copy URL

Twitter E-mail

General

Target

7a7f9e7833b851ca25ef5af3daad8afca87269d829c6e53c1ce7e0da2dbfbb97
Size

143KB
MD5

4b2f40acf5e904255dc1dff4355d3b20
SHA1

8234c0f0b50704c3fb17de3aa021613a963c5e89
SHA256

7a7f9e7833b851ca25ef5af3daad8afca87269d829c6e53c1ce7e0da2dbfbb97
SHA512

2c6400f9d99f51041776fded4cf347dad7382d03b57b9ca15ff57dccaef5c21f6120aa4c14139a65ec2405e9b2cc7f8c2d096af7f621d97701d7f36d8601d17c
SSDEEP

3072:rDw0Ry3VwKjSU08A+x8iTk7fVytqdckfNatl/nRH8IyWhGi6W8:gi1+Z0H+nI5GnlcIykBw

Score

N/A

Malware Config

Signatures

Files

7a7f9e7833b851ca25ef5af3daad8afca87269d829c6e53c1ce7e0da2dbfbb97
.dll windows x86

673f7c625918a96dfc3010792305f39e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_wtol
wcschr
??3@YAXPAX@Z
_except_handler3
_onexit
__dllonexit
_adjust_fdiv
malloc
_initterm
_wsplitpath
wcsncmp
_wcsnicmp
_itow
_wsetlocale
__CxxFrameHandler
wcsncpy
_wmakepath
_wcsdup
wcsstr
wcstod
free
wcsrchr
_wtoi
_ftol
wcscmp
_vsnwprintf
??2@YAPAXI@Z
_wcsicmp
wcslen

user32

EnableWindow
GetDlgItem
SetWindowTextW
LoadStringW
CheckDlgButton
LoadIconW
SendMessageW
GetDesktopWindow
SendDlgItemMessageW
GetDlgItemTextW
SetFocus
MessageBoxW
GetForegroundWindow
CharPrevW
CharNextW
GetWindowLongW
SetDlgItemTextW
GetActiveWindow
SetWindowLongW
PostMessageW
IsDlgButtonChecked

kernel32

FreeLibrary
LoadLibraryExW
LoadResource
SizeofResource
FindResourceW
LockResource
IsBadWritePtr
lstrcpynW
GetLongPathNameW
LoadLibraryA
GetModuleHandleA
OutputDebugStringA
GetModuleFileNameW
SetLastError
LoadLibraryW
GetProcAddress
GetModuleHandleW
GetLastError
lstrcmpiW
CompareStringW
GetNumberFormatW
GetVersionExW
InterlockedDecrement
lstrlenW
GetLocaleInfoW
DisableThreadLibraryCalls
DeleteCriticalSection
InitializeCriticalSection
GetUserDefaultLCID
LocalAlloc
MultiByteToWideChar
GetCurrentProcessId
ProcessIdToSessionId
LocalFree
DeleteFileW
CloseHandle
GetFileType
CreateFileW
OutputDebugStringW
EnterCriticalSection
LeaveCriticalSection
GetFileAttributesW

winspool.drv

SetJobW
AdvancedDocumentPropertiesW
SetPrinterW
GetPrinterW
EnumFormsW
GetJobW

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegOpenKeyExA
RegQueryValueExA
RegEnumValueW
RegDeleteValueW
RegSetValueExW

ole32

OleUninitialize
OleInitialize
StringFromGUID2

shell32

SHGetMalloc
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFolderPathW
SHGetDesktopFolder
SHGetFolderLocation

gdi32

ExtEscape

shlwapi

StrRetToBufW
PathAddBackslashW
PathCompactPathExW
StrChrW
PathIsDirectoryW
wnsprintfA
wnsprintfW

msi

ord109
ord39

Exports

Exports

DllMain
DrvDeviceCapabilities
DrvDevicePropertySheets
DrvDocumentEvent
DrvDocumentPropertySheets
DrvPrinterEvent

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

673f7c625918a96dfc3010792305f39e

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

winspool.drv

advapi32

ole32

shell32

gdi32

shlwapi

msi

Exports

Exports

Sections

.text Size: 30KB - Virtual size: 29KB

.data Size: 512B - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 944B

.reloc Size: 2KB - Virtual size: 1KB

.text Size: 108KB - Virtual size: 112KB

.text
Size: 30KB - Virtual size: 29KB

.data
Size: 512B - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 944B

.reloc
Size: 2KB - Virtual size: 1KB

.text
Size: 108KB - Virtual size: 112KB