602a82b13d4792284a67b5dad7416f8398cd6a54ae23eb881c87db4da61fcb98

General

Target

602a82b13d4792284a67b5dad7416f8398cd6a54ae23eb881c87db4da61fcb98
Size

164KB
MD5

a03dd290892f36781be0da9a78cdf850
SHA1

5e4cfa1b8c99d944c6c99b7c799474c796188b99
SHA256

602a82b13d4792284a67b5dad7416f8398cd6a54ae23eb881c87db4da61fcb98
SHA512

c94e8cbe1f9cd116d8e5f07dbf3c0b4895ae0f995ab862ac1e393a14a4846592b9b1739a13061ed5822f65abe49b42a5c054f487349fcdfc017581685a8c218f
SSDEEP

3072:HRa3TSc8ojwxltRuWPyUNqFK35xuX8+Ntv3p82+hzl3++PZZ+Q/1:HRaDPExrRZyUNbEXZNtvZ81Rl3lPrT

Score

N/A

Malware Config

Signatures

Files

602a82b13d4792284a67b5dad7416f8398cd6a54ae23eb881c87db4da61fcb98
.exe windows x86

38f97392e5ac20e1ff1f384fffbb270f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

DeletePrinterDataW
DeletePrinterDataExW
ClosePrinter
AddPrinterW
DeletePrinterDriverExW
AddPrinterDriverExW
AddPrinterConnectionW
AddPrintProvidorW
AddPrintProcessorW
DeletePrinterDriverW
DeletePrinterKeyW
EndDocPrinter
EndPagePrinter
EnumFormsW
EnumJobsW
EnumMonitorsW
EnumPortsW
EnumPrintProcessorDatatypesW
EnumPrintProcessorsW
EnumPrinterDataExW
EnumPrinterDataW
EnumPrinterDriversW
EnumPrinterKeyW
EnumPrintersW
GetPrinterDriverDirectoryW
GetPrinterDriverW
GetPrinterW
PrinterMessageBoxW
OpenPrinterW
ReadPrinter
ResetPrinterW
ScheduleJob
SetFormW
AddPrinterDriverW
SetJobW

msvcrt

_onexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
_wcmdln
exit
_XcptFilter
_exit
strlen
strcoll
_ftol
_itow
__dllonexit

kernel32

GetModuleHandleW
GetSystemInfo
VirtualProtect
IsProcessorFeaturePresent
GetStartupInfoW

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38f97392e5ac20e1ff1f384fffbb270f

Headers

File Characteristics

Imports

winspool.drv

msvcrt

kernel32

Sections

.text Size: 104KB - Virtual size: 102KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 32KB - Virtual size: 156KB

.rsrc Size: 12KB - Virtual size: 8KB

.text
Size: 104KB - Virtual size: 102KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 32KB - Virtual size: 156KB

.rsrc
Size: 12KB - Virtual size: 8KB