b6287de03a0ac82b72533bd1270d62c54c851adc26feb9211f2dc2040d9f7dac

Sharing

Copy URL Twitter E-mail

General

Target

b6287de03a0ac82b72533bd1270d62c54c851adc26feb9211f2dc2040d9f7dac
Size

67KB
MD5

925b85fd7a23aeccd9b69fe818cbce49
SHA1

a47f9000152f455246230f00376da7e7b36dca6b
SHA256

b6287de03a0ac82b72533bd1270d62c54c851adc26feb9211f2dc2040d9f7dac
SHA512

8bc63f50aadccb40a3b233878f28b19ea0814b6997bf8ced30264db2fc5daabe6c81f96f5e58fb3dd74f3421da0eb2fb47ee1849518e1b0516ec69ad10f35f7b
SSDEEP

768:QpsYLbDR3nSGz/7pArOSmP19XkICjx0gepMK6N+2na:QpsYH93SGb7CrO/t9XkOgi

Score

N/A

Malware Config

Signatures

Files

b6287de03a0ac82b72533bd1270d62c54c851adc26feb9211f2dc2040d9f7dac
.exe windows x86

21bb7f3f706500d7b418a585ec1d1e54

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZCopy
LZOpenFileA
LZClose

kernel32

GetVersionExA
GetLastError
GetDiskFreeSpaceA
GetModuleFileNameA
GetSystemDirectoryA
GetPrivateProfileIntA
CreateFileA
lstrcatA
GlobalFree
GlobalUnlock
lstrcpyA
lstrcpynA
lstrlenA
GlobalAlloc
GetFileSize
lstrcmpA
CreateDirectoryA
GetFileAttributesA
GetWindowsDirectoryA
LocalFree
LocalHandle
WritePrivateProfileStringA
LocalAlloc
CreateProcessA
ReadFile
GlobalLock
CloseHandle
LCMapStringA
WideCharToMultiByte
GetStringTypeA
LoadLibraryA
VirtualAlloc
HeapAlloc
HeapFree
SetFilePointer
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetStringTypeW
LCMapStringW
FlushFileBuffers
GetCPInfo
ExitProcess
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
GetStartupInfoA
SetStdHandle
GetCommandLineA
GetVersion
GetProcAddress
TerminateProcess
GetModuleHandleA

user32

DefWindowProcA
DispatchMessageA
TranslateMessage
GetMessageA
CreateWindowExA
SendMessageA
SetDlgItemTextA
EndDialog
GetDlgItemTextA
GetWindowRect
DialogBoxParamA
MessageBoxA
LoadStringA
BeginPaint
GetSystemMetrics
SetWindowPos
SetForegroundWindow
GetSysColor
GetClientRect
DrawTextA
EndPaint
PostQuitMessage
ShowWindow
UpdateWindow
RegisterClassExA
SetWindowTextA
GetDlgItem
wsprintfA

gdi32

SetBkMode
GetTextExtentPoint32A
SetTextColor

winspool.drv

EnumPortsA

advapi32

RegOpenKeyExA
RegQueryValueExA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA

Sections

.text
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

21bb7f3f706500d7b418a585ec1d1e54

Headers

File Characteristics

Imports

lz32

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

Sections

.text Size: 30KB - Virtual size: 29KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 11KB - Virtual size: 17KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 20KB - Virtual size: 32KB

.text
Size: 30KB - Virtual size: 29KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 11KB - Virtual size: 17KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 20KB - Virtual size: 32KB