0e07712454320888b26345769ca4824aac7c8cb75861ff47e4b1be0ca9d962cb

Sharing

Copy URL Twitter E-mail

General

Target

0e07712454320888b26345769ca4824aac7c8cb75861ff47e4b1be0ca9d962cb
Size

77KB
MD5

083185c2223caa87002fe9f1de6d3a20
SHA1

0dda9ead0c68fe57adaf01bc5ccf42e54259b1c0
SHA256

0e07712454320888b26345769ca4824aac7c8cb75861ff47e4b1be0ca9d962cb
SHA512

b43954b829469eb0033c7a3081abd9f6940b2aba0cebc042d33d8ae4074643dd7cd8bd34f4a0d64ae5ba1aff6b4f19f4f79031e2a18c773fe124bad650c7d7b2
SSDEEP

1536:h3RnHwAAveZPgNYCECCCCtNkiGnlaOAQuctGfvKHPvHiBCneLi:h3R7PbCECCCCtNSnoOAQfyAvdeLi

Score

N/A

Malware Config

Signatures

Files

0e07712454320888b26345769ca4824aac7c8cb75861ff47e4b1be0ca9d962cb
.exe windows x86

7d0fd4cdacba010304bf9d1bbbb18c22

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
UnhandledExceptionFilter
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetStartupInfoA
InterlockedCompareExchange
Sleep
IsDebuggerPresent
GetCommandLineA
GlobalFree
GetProcessHeap
HeapAlloc
HeapFree
GetVersionExA
GetProfileStringA
CreateFileA
GetFileSize
CloseHandle
GlobalAlloc
GlobalLock
GlobalUnlock
GetLastError
ReadFile
InterlockedExchange
FormatMessageA
GetTickCount
LocalFree

user32

SetRect
SetDlgItemTextA
IsDialogMessageA
TranslateMessage
MessageBoxA
PeekMessageA
EnableWindow
GetDlgItem
DestroyWindow
wsprintfA
DispatchMessageA
CreateDialogParamA

gdi32

DeleteDC
StartDocA
StartPage
TextOutA
EndPage
EndDoc
GetObjectA
GetTextExtentPoint32A
GetTextMetricsA
DeleteObject
EnumFontFamiliesExA
CreateFontIndirectA
CreateDCA
GetDeviceCaps
SelectObject
SetAbortProc

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
ord201

comdlg32

PrintDlgA
CommDlgExtendedError

ole32

CreateStreamOnHGlobal

oleaut32

SysFreeString
OleLoadPicture

mfc90

ord794
ord266
ord800
ord636
ord2141
ord1357
ord367
ord4151
ord590
ord265
ord798

msvcr90

_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead
_acmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_invoke_watson
_controlfp_s
_crt_debugger_hook
_unlink
_errno
strerror
atoi
atof
strspn
strcspn
memset
strncpy
exit
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
floor
ceil
_stat64i32
??0exception@std@@QAE@XZ
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
__CxxFrameHandler3
_stricmp

msvcp90

??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@J@Z
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??$?6DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@ABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?ends@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?swap@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXAAV12@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??Y?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?_Unlock@_Mutex@std@@QAEXXZ
?_Lock@_Mutex@std@@QAEXXZ
?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z
?freeze@strstreambuf@std@@QAEX_N@Z
??1strstreambuf@std@@UAE@XZ
??_7ios_base@std@@6B@
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??0strstreambuf@std@@QAE@H@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

grxaqhi
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7d0fd4cdacba010304bf9d1bbbb18c22

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

ole32

oleaut32

mfc90

msvcr90

msvcp90

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 16KB - Virtual size: 16KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 30KB - Virtual size: 31KB

grxaqhi Size: - Virtual size: 4KB

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 16KB - Virtual size: 16KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 30KB - Virtual size: 31KB

grxaqhi
Size: - Virtual size: 4KB