8fd0ad349dc6bd49868cad5a7ff1828ba9db016047f3551e25080b04a66175fd

Sharing

Copy URL Twitter E-mail

General

Target

8fd0ad349dc6bd49868cad5a7ff1828ba9db016047f3551e25080b04a66175fd
Size

232KB
MD5

0e021753e26b27b5df039e228197b870
SHA1

4f2f63cd5fe2bbe826dd9494ab8431fd80f1917f
SHA256

8fd0ad349dc6bd49868cad5a7ff1828ba9db016047f3551e25080b04a66175fd
SHA512

41355115029aac2cc657501ebe0f2ec0673bdc80362037f1ef0759cad5072a22e3614ee6ebe014e0c2100647990731cb9527faca8921b4379e0ca343c7f6e4e5
SSDEEP

3072:8Ej+AXbQWF+mw5mgxl4P99GBrvT4RTHQU+Y9I9fMA67TIObymvKvXxuSODnJqT:8CHOm7gxl4P9Iwe4a9fMA2HZaXwDny

Score

N/A

Malware Config

Signatures

Files

8fd0ad349dc6bd49868cad5a7ff1828ba9db016047f3551e25080b04a66175fd
.exe windows x86

bbb8d1400b2aa2c73757ae91e98e65f5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
GetComputerNameA
ReleaseMutex
GetLogicalDrives
SetFilePointer
ResetEvent
GetOEMCP
GetFileSize
GetVersionExA
GetSystemDirectoryA
GetCurrentProcessId
CreateEventA
FatalExit
lstrcpyA
GetLastError
LocalFree
GetSystemDefaultLangID
ResumeThread
GetEnvironmentStrings
GetThreadLocale
CloseHandle
lstrlenA
WaitForSingleObject
GetCommandLineA
GetCurrentThreadId
GetUserDefaultLCID
VirtualFree
WriteFile
GetCurrentProcess
SuspendThread
SetEvent
CreateMutexA
GetWindowsDirectoryA
GetCurrentDirectoryA
lstrcatA
ReadFile
OutputDebugStringA
CreateFileA
GetTempPathA

user32

GetMessagePos
GetClassInfoExA
GetDesktopWindow
LoadIconA
CreateWindowExA
GetParent
GetWindow
CopyIcon
GetMessageA
MessageBoxA
SetDoubleClickTime
IsWindow
InSendMessageEx
CreateDialogParamA
BeginPaint
GetProcessWindowStation
WaitMessage
GetCaretBlinkTime
GetCursor
PostMessageA
wsprintfA
CloseWindow
IsChild
GetActiveWindow
DestroyCursor
GetDialogBaseUnits
GetSystemMetrics
EndPaint
GetFocus
TranslateMessage
RegisterClassA
GetMessageTime
IsCharLowerA
GetDC
IsZoomed
LoadCursorA
FindWindowA
GetForegroundWindow
SendMessageA
GetDoubleClickTime
DestroyWindow
OpenClipboard

ntdll

memset
_chkstk
memcpy

ole32

CoFreeAllLibraries
CoInitialize
CoUninitialize
OleUninitialize

gdi32

GdiFlush
DeleteDC
LineTo
MoveToEx

shlwapi

SHReleaseThreadRef

ws2_32

gethostbyname

shell32

DuplicateIcon

winmm

timeGetTime

version

VerQueryValueA

winspool.drv

ClosePrinter
OpenPrinterA
GetPrinterDriverA

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbb8d1400b2aa2c73757ae91e98e65f5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ntdll

ole32

gdi32

shlwapi

ws2_32

shell32

winmm

version

winspool.drv

Sections

.text Size: 160KB - Virtual size: 159KB

.data Size: 36KB - Virtual size: 36KB

.rsrc Size: 12KB - Virtual size: 9KB

.reloc Size: 20KB - Virtual size: 17KB

.text
Size: 160KB - Virtual size: 159KB

.data
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 12KB - Virtual size: 9KB

.reloc
Size: 20KB - Virtual size: 17KB