d0cdefb245b59cefb5abb13ef6957555751d14cf79557c1c5bd9be978ff828b1

General

Target

d0cdefb245b59cefb5abb13ef6957555751d14cf79557c1c5bd9be978ff828b1
Size

50KB
MD5

0e0b86bf7c3e77cf0fa1f4fefb500be0
SHA1

7fb0f6be05be349581e96a1878552f350fd1146a
SHA256

d0cdefb245b59cefb5abb13ef6957555751d14cf79557c1c5bd9be978ff828b1
SHA512

19d1f3729f40f0d99d12dfcbcb4de848ffcc364ea1be4ee4207c430d1b79b42d1e2eb9051658c0ebb304f912031c563c791ba4e32b144e6b9d77f38b37e559d5
SSDEEP

768:YHZryuAspJc/o0oy2AeicX1Nh5FOAT7jYeMLhDLvOqyngItBWP8:cWuzc3C1Nh5QATQeQRLG1gItK

Score

N/A

Malware Config

Signatures

Files

d0cdefb245b59cefb5abb13ef6957555751d14cf79557c1c5bd9be978ff828b1
.exe windows x86

5d0cb3ea2509d3552f2fd9562f5315b0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
LocalAlloc
LocalHandle
LocalFree
lstrcmpiA
GetModuleFileNameA
WideCharToMultiByte
GetCPInfo
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
lstrcpyA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
HeapCreate
VirtualFree
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapFree
RtlUnwind
WriteFile
GetProcAddress
HeapAlloc
VirtualAlloc
LoadLibraryA

winspool.drv

EnumPrintersA

advapi32

RegFlushKey
RegCloseKey
RegOpenKeyExA
RegDeleteKeyA

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 823B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ohvaici
Size: 29KB - Virtual size: 76KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5d0cb3ea2509d3552f2fd9562f5315b0

Headers

File Characteristics

Imports

kernel32

winspool.drv

advapi32

Sections

.text Size: 8KB - Virtual size: 7KB

.rdata Size: 1024B - Virtual size: 823B

.data Size: 9KB - Virtual size: 10KB

.idata Size: 1KB - Virtual size: 1KB

.rsrc Size: 104KB - Virtual size: 132KB

ohvaici Size: 29KB - Virtual size: 76KB

.text
Size: 8KB - Virtual size: 7KB

.rdata
Size: 1024B - Virtual size: 823B

.data
Size: 9KB - Virtual size: 10KB

.idata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 104KB - Virtual size: 132KB

ohvaici
Size: 29KB - Virtual size: 76KB