f577a7862c68e0114201e4313b53bd2f48f36665f5fe00fe0ffbb41ccaedeabc

Sharing

Copy URL Twitter E-mail

General

Target

f577a7862c68e0114201e4313b53bd2f48f36665f5fe00fe0ffbb41ccaedeabc
Size

92KB
MD5

e704ff948e791ad67d2c46238629335d
SHA1

d754642eeb3689cdd055aeb77b70ed6b8a585b8c
SHA256

f577a7862c68e0114201e4313b53bd2f48f36665f5fe00fe0ffbb41ccaedeabc
SHA512

c03ae3f03c899330ed26a9800e4a6a496073c625d0f2d13d6e1b2ce7d37096d6bc1a0e571dd2cd45d08e1cfd2d13a72e243dd328d7e5e2de9fa7be26cb7fb5d0
SSDEEP

768:uKCT0s9Xa9WlHMMZcRgjhDBuKttf7e4GTzVMpT++S8P1wazwawi3sF7dR4GRWkMl:HCT0y+gtD0stf7ejQ+2LpwimdN1xDJ

Score

N/A

Malware Config

Signatures

Files

f577a7862c68e0114201e4313b53bd2f48f36665f5fe00fe0ffbb41ccaedeabc
.exe windows x86

f1e4e59d941f0a9280002653c6a510a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

getsockname

gdi32

SetMetaRgn
SelectClipPath
GetTextFaceW
GetStretchBltMode
PtVisible
CreateDIBPatternBrush
SetBkMode
GetDCOrgEx
Ellipse
ExtTextOutA
CreateHatchBrush
CreateCompatibleBitmap
GetSystemPaletteEntries
GetRgnBox
CancelDC
RemoveFontResourceA
CreateColorSpaceA
SetTextColor
SetColorAdjustment
GetCharWidth32A
GetTextExtentPoint32W
AnimatePalette
CreateEllipticRgn
CreateDIBSection
ExtCreatePen
GetGraphicsMode
ScaleWindowExtEx
CreateDCW
EnumMetaFile
PlayEnhMetaFileRecord
PolyDraw
GetWinMetaFileBits
GetGlyphOutlineW
CloseFigure
SetBitmapBits
GetICMProfileA
GetDeviceCaps
DeleteMetaFile
GetPolyFillMode
GdiGetBatchLimit
CreateMetaFileW
GetAspectRatioFilterEx
SetPixelV
CreateBrushIndirect
GetDIBColorTable
GetClipBox
CreateFontA
ExcludeClipRect
FillRgn
CreateFontIndirectA
SetWindowOrgEx
PolyPolygon
GetFontLanguageInfo

winspool.drv

DeviceCapabilitiesA
DeletePrinterKeyW
DeletePrinter
EnumPrintersW
WritePrinter
FindClosePrinterChangeNotification
GetPrinterDriverDirectoryW
DeletePrinterDataExW
OpenPrinterA

kernel32

GetStartupInfoA
DeleteFileA
GetModuleHandleA

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3
_controlfp
_initterm

msi

ord18
ord66
ord67
ord46
ord54
ord8
ord170
ord32
ord55
ord33
ord70
ord73
ord71
ord57
ord31

user32

GetActiveWindow
GetMessageTime

clusapi

ClusterResourceTypeControl
SetClusterNetworkPriorityOrder
MoveClusterGroup
ClusterNetworkOpenEnum
GetClusterNodeId
SetClusterGroupName
ClusterResourceCloseEnum
SetClusterQuorumResource
ClusterRegEnumValue
GetClusterGroupState
ClusterRegDeleteKey
ClusterGroupCloseEnum
ClusterNetInterfaceControl
GetClusterGroupKey
OnlineClusterResource
GetClusterResourceKey
RegisterClusterNotify
RemoveClusterResourceDependency
OpenClusterNode
ClusterEnum
ClusterRegEnumKey
OpenClusterNetwork
ClusterGroupOpenEnum
CreateClusterNotifyPort
PauseClusterNode
OpenClusterResource
CloseClusterResource
CloseClusterNetInterface
ClusterGroupControl
CreateClusterResource

Sections

.text
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 704KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1e4e59d941f0a9280002653c6a510a6

Headers

File Characteristics

Imports

ws2_32

gdi32

winspool.drv

kernel32

msvcrt

msi

user32

clusapi

Sections

.text Size: 76KB - Virtual size: 72KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 704KB

.rsrc Size: 4KB - Virtual size: 200B

.text
Size: 76KB - Virtual size: 72KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 704KB

.rsrc
Size: 4KB - Virtual size: 200B