2ab7cb90a714737efbb13ba36323c8d26343a7d323e86149e3e953472261f066

Sharing

Copy URL Twitter E-mail

General

Target

2ab7cb90a714737efbb13ba36323c8d26343a7d323e86149e3e953472261f066
Size

512KB
MD5

d310ea664a46b9117366e8ccb2699551
SHA1

21494101ce39f3cd16b4b4d5f53840d2f717a76a
SHA256

2ab7cb90a714737efbb13ba36323c8d26343a7d323e86149e3e953472261f066
SHA512

f04b012e269f8391cfd497d75dd00488e4f096ebbaa4ec0bf90d6d275909ece8b14eda5147a85e443e9e047c1cd296b3d4ab532087f2aa998f373fa600178b96
SSDEEP

6144:B1vtjiE5Pz9r7ELgpXfeeeuaOSzWTZoYAwvedMzOf+qkgpNKIboCQ7qAzu2kH+5Z:BPiw79rwc9ezhtYvmyyf+XOkCQL/D

Score

N/A

Malware Config

Signatures

Files

2ab7cb90a714737efbb13ba36323c8d26343a7d323e86149e3e953472261f066
.exe windows x86

7ff6f2c5b3af4e999e9d029c67e232fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

DocumentPropertiesA
ClosePrinter
ord204
GetJobA
OpenPrinterA

kernel32

GetStdHandle
HeapReAlloc
UnhandledExceptionFilter
SetHandleCount
GetCurrentThreadId
ExitProcess
GetModuleFileNameA
GetModuleHandleA
GetConsoleOutputCP
GetCommandLineW
FreeEnvironmentStringsW
GetConsoleCP
GetFileType
CompareStringA
GetOEMCP
GetEnvironmentStringsW
GetConsoleMode
IsDebuggerPresent
GetDateFormatA
LoadLibraryW
TlsSetValue
IsValidCodePage
WriteConsoleW
WideCharToMultiByte
GetModuleFileNameW
RtlUnwind
HeapFree
HeapCreate
RaiseException
InterlockedDecrement
GetProcAddress
TerminateProcess
GetTickCount
SetEnvironmentVariableA
MultiByteToWideChar
GetCurrentProcessId
TlsAlloc
LoadLibraryA
GetTimeFormatA
HeapAlloc
VirtualFree
GetSystemTimeAsFileTime
EnterCriticalSection
HeapSize
LocalFree
QueryPerformanceCounter
LCMapStringW
GetCPInfo
ReadFile
InterlockedExchange
TlsFree
InterlockedIncrement
GetCurrentProcess
GetLastError
LCMapStringA
VirtualQuery
GetStartupInfoW
GetACP
FlushFileBuffers
CloseHandle
TlsGetValue
LeaveCriticalSection
CreateFileA
WriteConsoleA
GetLocaleInfoA
GetStringTypeW
SetUnhandledExceptionFilter
GetTimeZoneInformation
SetLastError
InitializeCriticalSectionAndSpinCount
WaitForSingleObject
Sleep
GetModuleHandleW
WriteFile
GetStringTypeA
CreateMutexW
VirtualAlloc
CompareStringW
GetStartupInfoA
SetFilePointer
DeleteCriticalSection
SetStdHandle

advapi32

RegQueryInfoKeyA
RegDeleteValueA
AllocateAndInitializeSid

comctl32

ImageList_ReplaceIcon
InitCommonControlsEx

gdi32

StretchDIBits
DeleteEnhMetaFile
CreatePatternBrush
StartDocW
SelectObject
SetPixel
CreatePolygonRgn
DeleteDC
SetTextColor
GetDeviceCaps
GetStockObject
GetClipBox
GetObjectW
AbortDoc
SetTextAlign
EnumFontFamiliesExW
GetPixel
SetViewportOrgEx
GetDIBits
CreateDCW

user32

ReleaseDC
PtInRect
IsWindowEnabled
LockWindowUpdate
LoadStringW
SendMessageW
TrackPopupMenu
DestroyAcceleratorTable
GetWindowTextW
UpdateWindow
LoadIconW
GetParent
LoadAcceleratorsW
CreatePopupMenu
KillTimer
GetClassNameW
MessageBoxW
RegisterClassExW
LoadImageW
IsClipboardFormatAvailable
RegisterClassW
CreateWindowExW
SetCursorPos
CreateDialogIndirectParamW
GetSystemMenu
SystemParametersInfoA
GetClientRect
ShowWindow
BringWindowToTop
DestroyWindow
LoadBitmapW
DefWindowProcW
SetScrollInfo
GetMessagePos
SetMenuDefaultItem
SetWindowsHookExW
GetWindowRect
InflateRect
DestroyMenu
ClientToScreen
OpenClipboard
wsprintfA
SetDlgItemTextW
GetMenuState
DrawFocusRect
DrawStateW
SendDlgItemMessageW
GetCapture
GetClipboardData
DestroyIcon

Sections

.text
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ff6f2c5b3af4e999e9d029c67e232fb

Headers

File Characteristics

Imports

winspool.drv

kernel32

advapi32

comctl32

gdi32

user32

Sections

.text Size: 112KB - Virtual size: 110KB

.rdata Size: 268KB - Virtual size: 264KB

.data Size: 80KB - Virtual size: 100KB

.rsrc Size: 48KB - Virtual size: 46KB

.text
Size: 112KB - Virtual size: 110KB

.rdata
Size: 268KB - Virtual size: 264KB

.data
Size: 80KB - Virtual size: 100KB

.rsrc
Size: 48KB - Virtual size: 46KB