9cc37cb40f6c2dbcc5af4b69384d47415a779582005d45a98b60001ad83aad07

General

Target

9cc37cb40f6c2dbcc5af4b69384d47415a779582005d45a98b60001ad83aad07
Size

112KB
MD5

0cb03eb35e957755f3b76e7de69716b6
SHA1

90e032d47b58875c18f1e7b605fa53d44728d2c9
SHA256

9cc37cb40f6c2dbcc5af4b69384d47415a779582005d45a98b60001ad83aad07
SHA512

8bedb7c96bf39784ab25c1f3be63be1c72d7cd23900f512b41e850c214718d628b451ef2e225a3cb704dbd417b6ae4e2b7a1f5a853052dc698f53b652813a914
SSDEEP

3072:7TZm/32Zvab1dM15bZqlf5Ykkbus/FI3aL45V4U:7Fm/mZSb1dskkysdI3K45qU

Score

N/A

Malware Config

Signatures

Files

9cc37cb40f6c2dbcc5af4b69384d47415a779582005d45a98b60001ad83aad07
.exe windows x86

b851ec3000390fc1ba1418c89b7d98f4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crypt32

CryptMsgGetParam
CertEnumSystemStoreLocation
CryptMsgClose

ole32

CoUninitialize
CoInitialize

shell32

CommandLineToArgvW

kernel32

GetCurrentThread
GetCurrentProcessId
CancelWaitableTimer
GetCurrentProcess
UnhandledExceptionFilter
GetTickCount
TerminateProcess
InterlockedExchange
ProcessIdToSessionId
GetModuleHandleA
ExitProcess
GetCurrentThreadId
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetStartupInfoA
GetLastError
LocalAlloc
GetCommandLineW
QueryPerformanceCounter
CloseHandle
InterlockedCompareExchange
LocalFree
Sleep

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

comctl32

PropertySheetW

user32

MessageBoxW
LoadStringW
LoadIconW
PostMessageW

advapi32

OpenThreadToken
GetSidSubAuthority
GetSidIdentifierAuthority
ConvertSidToStringSidW
GetSidSubAuthorityCount
RegOpenKeyExW
OpenProcessToken
GetLengthSid
RegCloseKey
RegEnumKeyExW
RegEnumValueW
IsValidSid
CopySid
GetTokenInformation
ConvertStringSidToSidW

netapi32

NetApiBufferFree
NetUserModalsGet

Sections

.text
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b851ec3000390fc1ba1418c89b7d98f4

Headers

File Characteristics

Imports

crypt32

ole32

shell32

kernel32

winspool.drv

comctl32

user32

advapi32

netapi32

Sections

.text Size: 87KB - Virtual size: 87KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 1024B - Virtual size: 56KB

.text
Size: 87KB - Virtual size: 87KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 1024B - Virtual size: 56KB