8f606150e346e6f954e648f44dc67101125332fecbdac8d8a5a3e7347f26aaa2

General

Target

8f606150e346e6f954e648f44dc67101125332fecbdac8d8a5a3e7347f26aaa2
Size

334KB
MD5

6230ff2ab89fb74830c81609d24bbd99
SHA1

24794e0590e1963f0dabe0b663f01e47b6f06b94
SHA256

8f606150e346e6f954e648f44dc67101125332fecbdac8d8a5a3e7347f26aaa2
SHA512

d7d4adc7f75045d515ffd6721d5d6d5691195a856fbfa96f7761b7ca6cbf95bab08458b22d91e2e7eb462b18d0fc777159a75ada01a51b1910bf38b27b75e6a3
SSDEEP

6144:tkVOLItEt2atYfMUtKQ5XUon63qItj/1moQaP4TckaVF7i0B:3oEtNmvCo6aIpmIPdR

Score

N/A

Malware Config

Signatures

Files

8f606150e346e6f954e648f44dc67101125332fecbdac8d8a5a3e7347f26aaa2
.exe windows x86

8d69553c2d006b7c38254ee84950b928

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBkColor
CreateSolidBrush
CreateCompatibleBitmap
Escape
CreateFontA
GetBkMode
GetAspectRatioFilterEx
ExtEscape
DrawEscape
ChoosePixelFormat
CombineTransform
EndDoc
CreateCompatibleDC

kernel32

GetProcAddress
GetCommandLineA
GetTickCount
GetCurrentProcessId
LocalFree
LocalLock
GetVersion
LocalHandle
CopyFileA
VirtualAlloc
GetLastError
GetCurrentProcess
GetCurrentThreadId
DeleteFileA
GetStartupInfoA
GetModuleHandleA

winspool.drv

DeletePrinterDataExA
AbortPrinter
AdvancedDocumentPropertiesA
DeletePrinterKeyA
DeletePrinter
ClosePrinter
ConfigurePortA
DeleteFormA
AddPrinterA
AddFormA
AddPrinterConnectionA

msvcrt

__getmainargs
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_exit
_XcptFilter
exit
_acmdln
_initterm

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rlj
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d69553c2d006b7c38254ee84950b928

Headers

File Characteristics

Imports

gdi32

kernel32

winspool.drv

msvcrt

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 311KB - Virtual size: 311KB

.data Size: 512B - Virtual size: 94KB

.rlj Size: 2KB - Virtual size: 2KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 311KB - Virtual size: 311KB

.data
Size: 512B - Virtual size: 94KB

.rlj
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 5KB - Virtual size: 5KB