a0c535757f7a8399cc8a5175b2863ff18c35b21bf815d4921023c40d4e0bbb0d

Sharing

Copy URL Twitter E-mail

General

Target

a0c535757f7a8399cc8a5175b2863ff18c35b21bf815d4921023c40d4e0bbb0d
Size

160KB
MD5

052969b6a2faf7d35b32d417bd5449c0
SHA1

0a6e3476104eeae21cfd58876407185f23344fd5
SHA256

a0c535757f7a8399cc8a5175b2863ff18c35b21bf815d4921023c40d4e0bbb0d
SHA512

d41fa2fedcce44f1033aa0b2eb77001146cdf77c37873fabbda37263db5fcab3bf2373f843557c8a87c2abe77396f1ae9c3c11e789e69aa562534dd361ba5fa9
SSDEEP

3072:K4WTd5sH23lQg77BM4+3POtCIz4fKY+GML4C7sGjPrYkx9QEGim+:K4WJiHJg77Bga7zxvQam+

Score

N/A

Malware Config

Signatures

Files

a0c535757f7a8399cc8a5175b2863ff18c35b21bf815d4921023c40d4e0bbb0d
.dll windows x86

9dd53b9e4a5d3e19f47a3fdfd20ebea2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
WaitForSingleObject
CreateEventA
CloseHandle
CreateMutexA
ReleaseMutex
GetModuleFileNameA
GetModuleHandleA
WideCharToMultiByte
QueryPerformanceCounter
GetLastError
CreateFileA
DeviceIoControl
GetOverlappedResult
RaiseException
ExitProcess
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapFree
HeapAlloc
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetUnhandledExceptionFilter
WriteFile
GetProcAddress
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
VirtualAlloc
HeapReAlloc
IsBadWritePtr
InitializeCriticalSection
InterlockedExchange
VirtualQuery
IsBadReadPtr
IsBadCodePtr
SetFilePointer
SetStdHandle
FlushFileBuffers
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
HeapSize
VirtualProtect
GetSystemInfo

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList

user32

RegisterDeviceNotificationA
UnregisterDeviceNotification

Exports

Exports

GetEpsonEP0Cmd
WriteBmpHeaderToBuffer

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9dd53b9e4a5d3e19f47a3fdfd20ebea2

Headers

File Characteristics

Imports

kernel32

setupapi

user32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 11KB

.reloc Size: 8KB - Virtual size: 4KB

.rmnet Size: 88KB - Virtual size: 88KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 11KB

.reloc
Size: 8KB - Virtual size: 4KB

.rmnet
Size: 88KB - Virtual size: 88KB