54897d73af0c8005e3283fab920052ae3ac922df82a3ae8f3ca8455f0808a0a3

General

Target

54897d73af0c8005e3283fab920052ae3ac922df82a3ae8f3ca8455f0808a0a3
Size

277KB
MD5

39f9a8e1cb8c60beb4431e0d2a796d60
SHA1

030a8ce388ff447022c163f4ce0e5f602b68a94b
SHA256

54897d73af0c8005e3283fab920052ae3ac922df82a3ae8f3ca8455f0808a0a3
SHA512

decc3b45c8e61e5d03adcb11e600c351bf97410cc147afd14b969b811115065478ddf29b91029f246aab395535c86490b5b83bbdca5086217d5045320bfca62a
SSDEEP

6144:eHhGhDbBbUUgaRNdpgaf2MtAOO7RYPGVuP3t1yv+MAdAhuahrlX+9u:qMhDbiUgQ3gE2M9OePGKt18A64IXX

Score

N/A

Malware Config

Signatures

Files

54897d73af0c8005e3283fab920052ae3ac922df82a3ae8f3ca8455f0808a0a3
.exe windows x86

43cabd66f76ba558ef5a2452e7580d02

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

olecli32

LeObjectConvert
LeSaveToStream
LeQueryBounds
LeQueryOutOfDate
LeGetUpdateOptions
LeQueryOpen
LeReconnect
LeSetBounds
LeObjectLong
LeRelease
LeSetData

kernel32

GetSystemTimeAsFileTime
GlobalAlloc
GetLocalTime
CreateFileA
GetUserDefaultLCID
HeapAlloc
SetLastError
lstrcpyW
lstrlenW
GlobalFindAtomA
MultiByteToWideChar
GetCurrentProcessId
SetUnhandledExceptionFilter
LoadLibraryW
GetStartupInfoW
FindResourceW
SystemTimeToFileTime
WideCharToMultiByte
lstrcmpA
CloseHandle
GetProcessHeap
QueryPerformanceCounter
HeapFree
GetCurrentProcess
GetTickCount

psapi

EnumProcessModules
GetPerformanceInfo
EnumPageFilesW
EnumPageFilesA
GetProcessImageFileNameA
EmptyWorkingSet

printui

ConstructPrinterFriendlyName
bFolderGetPrinter
bFolderRefresh
bPrinterSetup
vQueueCreate
vServerPropPages
vPrinterPropPages
vDocumentDefaults

Sections

.text
Size: 241KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43cabd66f76ba558ef5a2452e7580d02

Headers

DLL Characteristics

File Characteristics

Imports

olecli32

kernel32

psapi

printui

Sections

.text Size: 241KB - Virtual size: 240KB

.data Size: 29KB - Virtual size: 41KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 241KB - Virtual size: 240KB

.data
Size: 29KB - Virtual size: 41KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB