f91bcf2a840950f31e68227abe0006c7c1f7690348c463905547514d359db465

General

Target

f91bcf2a840950f31e68227abe0006c7c1f7690348c463905547514d359db465
Size

165KB
MD5

0c55c5df7a626484df81131673d38611
SHA1

1a89a233171cbcd8e747c8e6064ed067a056ecbf
SHA256

f91bcf2a840950f31e68227abe0006c7c1f7690348c463905547514d359db465
SHA512

128c7625f20c0e4369be996e23cb967adba0fa804cb75a56fde23a9cc72fcfd38438fae51307d496feb8377e46ecfdf8104402652cc91bf0d3eb3a0c96fab422
SSDEEP

3072:KMRdjrvXbbvwiGSSMO0XmiciK6hRpUYOruWajzIdzxxV:KEdjrvbbLRSMOll612NdzTV

Score

N/A

Malware Config

Signatures

Files

f91bcf2a840950f31e68227abe0006c7c1f7690348c463905547514d359db465
.exe windows x86

2c3aa7f27cdf9d573ce5ab025921cb68

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
DeleteObject
GetTextExtentPointA
GetDeviceCaps
GetTextMetricsA
CreateFontIndirectA

newdev

UpdateDriverForPlugAndPlayDevicesW

kernel32

lstrlenW
GetCPInfoExW
HeapSize
QueryPerformanceCounter
UnhandledExceptionFilter
EnterCriticalSection
TlsGetValue
GetLocaleInfoA
InitializeCriticalSection
GetStartupInfoA
GetTickCount
GetEnvironmentStrings
GetStdHandle
InterlockedIncrement
EnumResourceTypesA
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetACP
GetFileType
GetThreadLocale
WideCharToMultiByte
InterlockedExchange
GetOEMCP
GetLastError
SetHandleCount
RaiseException
GetComputerNameW
DeleteCriticalSection
GetCPInfo
MultiByteToWideChar
LeaveCriticalSection
FreeEnvironmentStringsW
WriteFile
GetVersionExA
TlsSetValue
GetCurrentProcessId

shell32

SHGetFolderPathW

msimg32

AlphaBlend
TransparentBlt

ole32

CoGetMalloc
CoCreateInstance
CoTaskMemAlloc
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c3aa7f27cdf9d573ce5ab025921cb68

Headers

File Characteristics

Imports

gdi32

newdev

kernel32

shell32

msimg32

ole32

Sections

.text Size: 95KB - Virtual size: 95KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 66KB - Virtual size: 65KB

.reloc Size: 1024B - Virtual size: 104KB

.text
Size: 95KB - Virtual size: 95KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 66KB - Virtual size: 65KB

.reloc
Size: 1024B - Virtual size: 104KB