da80dc85ed04c3a9fd34efa049742e28838035964fddd8b5251a711a910b6517

General

Target

da80dc85ed04c3a9fd34efa049742e28838035964fddd8b5251a711a910b6517
Size

278KB
MD5

0312507be85d40e8e8768a626d990c50
SHA1

9c36c429db9b0509291efef1ef74088c1b41df63
SHA256

da80dc85ed04c3a9fd34efa049742e28838035964fddd8b5251a711a910b6517
SHA512

f45bf5bf16f18776dc29277b0dbd0e1b116313738f9bc25bc070d0f295e1d18f14e10947d753af1fb67b8a82f3477f9f7247efe9991096fa4905b57531635eeb
SSDEEP

6144:Z3h8Y1K2G8ZF022tinDLzRPJWVM5FPCy7b7mED3V6O4Hg1x4irZQW7haRPJP:ZeX2G8Z7PVpFPJv3V6OJ1KirZFhERP

Score

N/A

Malware Config

Signatures

Files

da80dc85ed04c3a9fd34efa049742e28838035964fddd8b5251a711a910b6517
.exe windows x86

2b48d29f3578d7e501bf252d462e6287

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
GetTickCount
lstrcpyW
GetCPInfo
GetSystemTimeAsFileTime
FindResourceW
LoadLibraryW
CloseHandle
lstrcmpA
GetCurrentProcessId
CreateFileA
GetLocalTime
MultiByteToWideChar
HeapFree
GetUserDefaultLCID
lstrlenW
GetACP
GetSystemInfo
GetProcessHeap
WideCharToMultiByte
HeapAlloc
GetCurrentProcess
SystemTimeToFileTime
SetLastError
GlobalFindAtomA
QueryPerformanceCounter

psapi

EmptyWorkingSet
EnumPageFilesW
EnumPageFilesA
EnumProcessModules

olecli32

LeObjectConvert
LeReconnect
LeQueryProtocol
LeQueryOutOfDate
LeGetUpdateOptions
LeQueryBounds
LeSetData
LeSetBounds
LeObjectLong
LeQueryType
LeRelease
LeQueryOpen
LeSaveToStream

printui

vPrinterPropPages
vDocumentDefaults
vServerPropPages
vQueueCreate
ConstructPrinterFriendlyName

Sections

.text
Size: 221KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b48d29f3578d7e501bf252d462e6287

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

psapi

olecli32

printui

Sections

.text Size: 221KB - Virtual size: 220KB

.data Size: 51KB - Virtual size: 64KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 221KB - Virtual size: 220KB

.data
Size: 51KB - Virtual size: 64KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB