7ab8b0d898a73ebf49dc4b961c18f2e041c2506aac496ae99bae8bec28fe1784

Sharing

Copy URL Twitter E-mail

General

Target

7ab8b0d898a73ebf49dc4b961c18f2e041c2506aac496ae99bae8bec28fe1784
Size

295KB
MD5

1dc6b00cea08966acb86048c40e4edbd
SHA1

b1c3cc869b29dcc6392c88e236c0ae7a8ceb6aff
SHA256

7ab8b0d898a73ebf49dc4b961c18f2e041c2506aac496ae99bae8bec28fe1784
SHA512

a0cc58a9dab251e2d11fabf1292f0011185db71a6eea3eca966b78081448b2c391117e45ffe548d3d6e847d68fbef317902d1b394194e8d80ed65b74dc533281
SSDEEP

3072:ix0/Tr4VAlfiqYKj6RKJYlp4+iX8jSHni5YElCOb:B1Z9YKj6EJx8H+EHb

Score

N/A

Malware Config

Signatures

Files

7ab8b0d898a73ebf49dc4b961c18f2e041c2506aac496ae99bae8bec28fe1784
.exe windows x86

4ea0a323d5f53da127c3d8e74304a180

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvalidateRgn
GetWindowContextHelpId
ReplyMessage
GetWindowTextLengthA
GetDialogBaseUnits
GetMenu
GetScrollPos
GetNextDlgTabItem
SetClassLongW
GetMenuStringA
GetDC
LoadCursorA
CharLowerW
DrawTextW
SetClassLongA
GetAltTabInfoA
SetWindowLongW
GetClipboardData
CreateWindowExW
LoadStringW
GetFocus
CloseClipboard
IsHungAppWindow
ScrollWindowEx
DeferWindowPos
GetWindowPlacement

ole32

OleInitialize

advapi32

RegDeleteValueW

gdi32

CreateRectRgn
SetTextAlign
GetStockObject
Ellipse
GetCharWidthA
ModifyWorldTransform
GetCharABCWidthsA
FillRgn
SetPolyFillMode
GetObjectA
GetEnhMetaFileBits
GetTextAlign
FlattenPath
GetCharWidth32A
GdiComment
SetBoundsRect
GetSystemPaletteUse
LineTo
RemoveFontMemResourceEx
SetDIBColorTable
StretchBlt

version

VerQueryValueA

winspool.drv

EnumPrintersW

kernel32

FlushFileBuffers
GetConsoleMode
CreateFileA
SetStdHandle
GetSystemTimeAsFileTime
GetOEMCP
IsValidCodePage
HeapSize
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
GetProcessHeap
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
GetConsoleCP
QueryPerformanceCounter
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
WideCharToMultiByte
GetLastError
ExitProcess
EraseTape
CancelIo
AreFileApisANSI
BindIoCompletionCallback
GetModuleFileNameW
LocalAlloc
DisableThreadLibraryCalls
CreateFileMappingA
EnumResourceNamesW
WriteFile
DosDateTimeToFileTime
FindNextFileA
UnhandledExceptionFilter
ResetEvent
GetLocaleInfoW
SetCurrentDirectoryA
GetACP
GetDriveTypeA
GetCPInfo
SetPriorityClass
GetShortPathNameW
GetExitCodeProcess
HeapFree
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleW
Sleep
GetProcAddress
GetCommandLineA
GetStartupInfoA
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
HeapReAlloc
CloseHandle
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
MultiByteToWideChar
ReadFile
GetStdHandle
GetModuleFileNameA
SetFilePointer
SetHandleCount
GetFileType
RtlUnwind
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
LoadLibraryA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ea0a323d5f53da127c3d8e74304a180

Headers

DLL Characteristics

File Characteristics

Imports

user32

ole32

advapi32

gdi32

version

winspool.drv

kernel32

Sections

.text Size: 68KB - Virtual size: 68KB

.rdata Size: 151KB - Virtual size: 150KB

.data Size: 14KB - Virtual size: 36KB

.rsrc Size: 61KB - Virtual size: 60KB

.text
Size: 68KB - Virtual size: 68KB

.rdata
Size: 151KB - Virtual size: 150KB

.data
Size: 14KB - Virtual size: 36KB

.rsrc
Size: 61KB - Virtual size: 60KB