c761a314b48f4a54e381dd82e2520c562a478125824c139e3041213333cb7315

Sharing

Copy URL Twitter E-mail

General

Target

c761a314b48f4a54e381dd82e2520c562a478125824c139e3041213333cb7315
Size

574KB
MD5

05fbd0eda5d2135fc4c51de39bc53395
SHA1

565c59441472b05dd073124f504d022e9408ad5f
SHA256

c761a314b48f4a54e381dd82e2520c562a478125824c139e3041213333cb7315
SHA512

8f9d216f707c43e333efa571fd09a6a8964628a2ee6f8cfbc5e452c90b99fef9e9a9ce11fc8066f7c899f7be35054aa3ba2f8b5d5ebf6259ce94eac83475aa53
SSDEEP

6144:NBrjqGAJKxjx4G7SAFR228bTcZ+7w/nHOk7odw3BlKO6mV8qsh/c6TUPYQHsUgTT:njjyGLebjIHPoyKAsdcKUP3pgT5guo4

Score

N/A

Malware Config

Signatures

Files

c761a314b48f4a54e381dd82e2520c562a478125824c139e3041213333cb7315
.exe windows x86

b54e458bb7ebeacac60213070529fa1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetLocalTime
VerLanguageNameW
GetSystemTime
FindFirstVolumeMountPointW
FreeLibrary
GetNumberFormatA
GetModuleHandleA
GetVersion
LoadLibraryA
GetHandleInformation
GetProcAddress
IsValidLocale
VirtualAlloc

user32

OemToCharW
GetDesktopWindow
IsDialogMessageA
WindowFromPoint
SetMenuContextHelpId
IsCharLowerA
RealChildWindowFromPoint
SetMenu

gdi32

CreateScalableFontResourceW
CombineRgn
DeleteDC
SetPixelFormat
GetDCPenColor
CreateFontW
CreateCompatibleBitmap
PolyBezier
SetWinMetaFileBits
GdiPlayPrivatePageEMF
SelectObject
CreateCompatibleDC
GetStockObject
AbortPath
GetObjectA

opengl32

wglMakeCurrent
wglCreateContext
glColor3usv
glTexCoord4i
GlmfEndGlsBlock
wglDeleteContext
glTexGenf

shell32

SheChangeDirExW
StrChrIW
SheSetCurDrive
ShellAboutW
StrRChrIW
StrChrIA
ExtractIconExW
FindExecutableA
SHBrowseForFolderW
StrStrA
DragAcceptFiles

shlwapi

StrCSpnIA
HashData
PathGetCharTypeW
UrlGetPartW
PathAddExtensionA
PathIsRelativeW
UrlCompareW
StrToIntExW
SHGetInverseCMAP
PathRemoveBlanksA
SHDeleteKeyA
SHRegWriteUSValueW
SHRegQueryInfoUSKeyA

version

GetFileVersionInfoSizeW

winspool.drv

ResetPrinterA
DocumentPropertiesA
DeletePrinterDataW
AddFormA
SetPortA
GetJobW
DeletePrinterDataExW
ConnectToPrinterDlg
GetPrinterDriverDirectoryW
GetPrintProcessorDirectoryA
OpenPrinterA
GetJobA
ResetPrinterW
AddPortA
ord209
EnumPrintProcessorsW

msvcrt

memset
_errno
_except_handler2
_execlp
fclose
printf
fseek
fread
_unlink
fputc
vfwprintf
__argv
fwprintf
fputs
_mbscmp
fprintf
__p__mbctype
fgetc
_adj_fprem
frexp
_y1
_strdup
sprintf
fsetpos
_popen
ftell
_spawnvpe
fopen
ferror
fwrite
_mbsnccnt
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_onexit
__dllonexit
_controlfp
feof
_except_handler3
__set_app_type

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 520KB - Virtual size: 519KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b54e458bb7ebeacac60213070529fa1d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

opengl32

shell32

shlwapi

version

winspool.drv

msvcrt

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 520KB - Virtual size: 519KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 520KB - Virtual size: 519KB