ecdd3a2d13e89d4495615d1561a9a652469a2c66fa0301c573a306a5805ef3d0

Sharing

Copy URL Twitter E-mail

General

Target

ecdd3a2d13e89d4495615d1561a9a652469a2c66fa0301c573a306a5805ef3d0
Size

50KB
MD5

769a75c14b8103cb3f40286e1473ea50
SHA1

8590f1cd992cf9cd6c517cf5feadfa5b155a9253
SHA256

ecdd3a2d13e89d4495615d1561a9a652469a2c66fa0301c573a306a5805ef3d0
SHA512

f950c25dd4b139dc95ee4e1bc90944f6c9db50abd1c0cd814251f53a67cb32039903bc943e005ca71fd81f06fa80a270399c7eff9581737693b086c9b4593953
SSDEEP

768:T+R3P6hp59EsssMoxiii6xWi9Vbl/4PVDcgOrPYPryk5lSSre9:6R3PQp59EsssjxLDx3LBglIsPry5

Score

N/A

Malware Config

Signatures

Files

ecdd3a2d13e89d4495615d1561a9a652469a2c66fa0301c573a306a5805ef3d0
.exe windows x86

7a769ce3c777946cd2896a99ee75669e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

utildll

CurrentDateTimeString
DateTimeString
CalculateElapsedTime
ConfigureModem
RegGetNetworkDeviceName
GetAssociatedPortName
GetSystemMessageA
RegGetNetworkServiceName
InitializeAnonymousUserCompareList
CalculateDiffTime
GetUnknownString
InstallModem

kernel32

CreateSemaphoreW
GetConsoleDisplayMode
CreateMailslotA
ReadConsoleOutputCharacterA
FindActCtxSectionStringW
UnregisterWaitEx
Heap32ListFirst
LoadLibraryA
GetStringTypeW
GetHandleContext
ExpungeConsoleCommandHistoryA
_lclose
LZCreateFileW
LocalFree
FreeConsole
CreateFileMappingA
TryEnterCriticalSection
BackupRead
GetConsoleKeyboardLayoutNameA
CompareStringA

msvcrt

puts
__badioinfo
??0exception@@QAE@XZ
iswalnum
strxfrm
_cwscanf
__set_app_type
_vscwprintf
_futime64
_adj_fpatan
_mbsnbicoll
_wcstoi64
strncpy
mblen
__p__commode
_itow
_findclose
_winver
_ismbbkana
__getmainargs
iswprint
_mbctokata
exit
_pipe
_adj_fdiv_m64
__p__tzname
??3@YAXPAX@Z
__CxxRegisterExceptionObject
_mbschr
wscanf

user32

MessageBoxW
EndDialog

printui

ShowErrorMessageHR
RegisterPrintNotify
PrintNotifyTray_Init
PrintUIEntryW
bFolderRefresh
bFolderGetPrinter
DllCanUnloadNow
vPrinterPropPages
ShowErrorMessageSC

shell32

SHGetMalloc

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a769ce3c777946cd2896a99ee75669e

Headers

DLL Characteristics

File Characteristics

Imports

utildll

kernel32

msvcrt

user32

printui

shell32

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 3KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 2KB

.rdata Size: 1024B - Virtual size: 720B

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 3KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 2KB

.rdata
Size: 1024B - Virtual size: 720B

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 1KB - Virtual size: 1KB