c76a4bfd2826e5e55001bbc9d1766803b4981a98d4aa84868f5978af7448f521

General

Target

c76a4bfd2826e5e55001bbc9d1766803b4981a98d4aa84868f5978af7448f521
Size

104KB
MD5

288574ff03b5d3e0faa40deb43665f9a
SHA1

e84d9c384543a007d4ca4ce53cbd740d6b011d99
SHA256

c76a4bfd2826e5e55001bbc9d1766803b4981a98d4aa84868f5978af7448f521
SHA512

f8bd838c0c216d50171f04820fe4df0431d4e3aa0cb2f8acffa55c2bc3249709bf3b810a56329e37c9d89b97ac8a67511ce80caf1ee50f6456281128ae7748c2
SSDEEP

1536:EnLv0yVTUn/yNbdJo6mq/FSWMWeJQ3AXlOmIHNk9JeSIvDTB1AlcFGBr7A9aapGZ:WLvBVg8bdJo60JQ3eOmIqTHmwBVY

Score

N/A

Malware Config

Signatures

Files

c76a4bfd2826e5e55001bbc9d1766803b4981a98d4aa84868f5978af7448f521
.exe windows x86

1d1137363f5cc6fbba8e7f25c8f153a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetUserDefaultLCID
WideCharToMultiByte
GetModuleHandleW
GetProfileStringA
LoadLibraryA
GetProcAddress
OpenMutexA
OutputDebugStringA
GetVersionExA
CreateFileA
GetLastError
CreateEventA
SetEvent
CloseHandle
Sleep
WaitForSingleObject
GetSystemDefaultLCID
ReleaseMutex

user32

LoadStringA

advapi32

RegQueryValueExW
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW

gdi32

ResetDCA
GetDeviceCaps
CreateDCA
EndDoc
StartPage
StartDocA
DeleteDC
StretchDIBits
SetDIBitsToDevice
EndPage

winspool.drv

WritePrinter
EndDocPrinter
ClosePrinter
OpenPrinterA
StartDocPrinterA
EnumFormsA
DocumentPropertiesA

msvcrt

_onexit
__dllonexit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_unlink
printf
fopen
sprintf
fclose
fwrite
fseek
ftell
free
malloc
fread
fflush
_fdopen
_open_osfhandle
_mkdir
atoi
strncpy
_mbsnbcpy
_mbsnbcmp
strcat
strcpy
calloc
wcschr
_wcsnicmp
wcscpy
wcsrchr
strchr
_strnicmp
strlen
wcslen
swprintf
strrchr
_exit
_XcptFilter
exit
__p___initenv
__getmainargs
_initterm
__setusermatherr

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1d1137363f5cc6fbba8e7f25c8f153a5

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

winspool.drv

msvcrt

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 72KB - Virtual size: 72KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 72KB - Virtual size: 72KB