c1510488140dccb469f0987ddd9d1c262ed49d2d79a9d08044b37e4e46859643

General

Target

c1510488140dccb469f0987ddd9d1c262ed49d2d79a9d08044b37e4e46859643
Size

251KB
MD5

0070e1475e6db9bcccdd11fa80388317
SHA1

8aa5de8f386ccd490e23c34a8db0eddfc5f8a574
SHA256

c1510488140dccb469f0987ddd9d1c262ed49d2d79a9d08044b37e4e46859643
SHA512

fc6dd48d37ab5716f75fa6f911c3cbf87fc905e4068e3f629f6e3a20b5873a83ef0ec5defff179691eaef001c7e5af96e9b79c6b91165c2ceb1d67d9409f09d4
SSDEEP

6144:miQQJD7npbBGySu85Bu7BnYnacE4+D31vm4Ex+9:mYDDBEueujEx+9

Score

N/A

Malware Config

Signatures

Files

c1510488140dccb469f0987ddd9d1c262ed49d2d79a9d08044b37e4e46859643
.dll windows x86

cb8f82c0073c3df469d92a37e2aa981b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
_initterm
toupper
mktime
localtime
ctime
floor
_ftol
_snprintf
time
srand
rand
atoi
_stricmp
_memicmp
malloc
free
_vsnprintf

kernel32

GetLocaleInfoW
SetFilePointer
SetEndOfFile
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
GetFileAttributesW
Sleep
QueryPerformanceFrequency
QueryPerformanceCounter
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
FileTimeToSystemTime
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
GetHandleInformation
ReadFile
GetStdHandle
GetFileInformationByHandle
OutputDebugStringA
LoadLibraryA
CreateFileW
WriteFile
CloseHandle
SetLastError
FreeLibraryAndExitThread
MapViewOfFile
FlushViewOfFile
UnmapViewOfFile
lstrcmpW
CompareStringW
lstrcpynW
GetTimeFormatW
lstrlenW
FoldStringW
CreateFileMappingW
GetFileSize
GetTickCount

winspool.drv

GetPrinterDriverW
ClosePrinter
OpenPrinterA
GetPrinterDriverA
OpenPrinterW

Sections

.text
Size: 131KB - Virtual size: 130KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb8f82c0073c3df469d92a37e2aa981b

Headers

File Characteristics

Imports

msvcrt

kernel32

winspool.drv

Sections

.text Size: 131KB - Virtual size: 130KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 115KB - Virtual size: 115KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 131KB - Virtual size: 130KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 115KB - Virtual size: 115KB

.reloc
Size: 1KB - Virtual size: 1KB