bdec877c0535f00dcde12c50cd591cf706b632a949d384957e864cc0b85bd0c6

Sharing

Copy URL Twitter E-mail

General

Target

bdec877c0535f00dcde12c50cd591cf706b632a949d384957e864cc0b85bd0c6
Size

492KB
MD5

0cba0fcbb9c8ae70b89ee6aac6c526af
SHA1

5e100a94cd03facf22deb35e04724dbaa080bf0d
SHA256

bdec877c0535f00dcde12c50cd591cf706b632a949d384957e864cc0b85bd0c6
SHA512

89ab37dddcbc1508265826e6db2a31f2f94ffec10c0fc3fbb172c357a6cfcb496aab31365bf25ceee802c2ce06c611df149db5968c40acca97e25ce0efff0cca
SSDEEP

12288:ibXPABJLEQBr6Z3qX2UndaP4/eP84+hQB:UI4M6pp45WU

Score

N/A

Malware Config

Signatures

Files

bdec877c0535f00dcde12c50cd591cf706b632a949d384957e864cc0b85bd0c6
.exe windows x86

91b15557ef1670369601b02256d5fd74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetProcAddress
IsValidLocale
GetModuleHandleA
ExitProcess
GetSystemTime
GetLargestConsoleWindowSize
GetNumberOfConsoleFonts
SwitchToFiber
CreateIoCompletionPort
LoadLibraryA
SetFileAttributesW
RequestWakeupLatency
ExitVDM
SetWaitableTimer
GetHandleInformation
WritePrivateProfileSectionW
SetVolumeMountPointW
GetVersion
_lclose
GetStartupInfoA

user32

ActivateKeyboardLayout
AttachThreadInput
CreateMDIWindowA
GetWindowDC
ChangeMenuA
GetKeyboardLayout
GetIconInfo
GetUpdateRgn
SetWindowPlacement
IsCharUpperW
SetMenuContextHelpId

winspool.drv

AddPortA
GetPrinterW
ord215
DeletePrintProvidorA
EnumPrintProcessorsA
SetPrinterDataExA
SetPortA
EnumPrinterDriversW

msvcrt

wcsftime
_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_mbspbrk
_mbsncmp
_mbsncat
tolower
fprintf
fputc
iswprint
_adj_fdiv_r
_ui64tow
atoi
fputws
_mbctombb
_copysign
__p__daylight
_CxxThrowException
__p___winitenv
_mbslen
_amsg_exit
memset
_seterrormode
wcspbrk
isprint
_ltoa
fsetpos
gets
_mbsupr
printf
_wspawnvp
_fstati64
_safe_fdivr
__unDName
__pioinfo
wcsncpy
fseek
_wcsnicoll
_CItanh
_aexit_rtn
_tell
putwchar
ferror
_chmod
_strdate
_spawnle
_heapwalk
_wmkdir
_wgetdcwd
atof
_strncoll
__p__dstbias
_lfind
_open_osfhandle
_ismbclower
getwchar
feof
_mbsnbset
cosh
_spawnvpe
sprintf
_spawnlp
ldiv
_wgetcwd
ftell
_wcreat
fwrite
wprintf
_commit
_rotl
_unlink
_getcwd
fwprintf
toupper
_ungetch
_fpclass
_stat
_local_unwind2
_fgetchar
_iob
strncat
_wcsncoll
__p___argc
clearerr
fopen
_CIsin
_gcvt
fputs
fread
fclose
__crtCompareStringA
_mbscmp
_nextafter
_findclose
_clearfp
_ismbcalpha
_mbscspn
_creat
__iscsymf
_global_unwind2
_spawnvp
_adj_fdiv_m16i
__isascii

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 452KB - Virtual size: 451KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

91b15557ef1670369601b02256d5fd74

Headers

File Characteristics

Imports

kernel32

user32

winspool.drv

msvcrt

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 452KB - Virtual size: 451KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 452KB - Virtual size: 451KB