c50daf61c3cf4de46b7f700de43672d85db280c3f9cf79325649fcee2cc42073

General

Target

c50daf61c3cf4de46b7f700de43672d85db280c3f9cf79325649fcee2cc42073
Size

334KB
MD5

aa02015594b4ffc3849720a7b9bee11a
SHA1

208f576f1b2894a0c6bcc83482657f4c096d2b9f
SHA256

c50daf61c3cf4de46b7f700de43672d85db280c3f9cf79325649fcee2cc42073
SHA512

b769517d635b64774de325b1b85ec96b5c5f6126e3f8842bd8be866b3c207577cd31b440c7243b363f1cec92b574252fd0db956078c9601d63e12224c0a4b0fd
SSDEEP

6144:SoVeYm8D//fiIA57WNQK4rZdLA3zl9esfxPVO9I2wV221Ddg:5V5m0XaIA7WNQKeXA3zl8eO+V2Ydg

Score

N/A

Malware Config

Signatures

Files

c50daf61c3cf4de46b7f700de43672d85db280c3f9cf79325649fcee2cc42073
.exe windows x86

140d1cfdd7d997770f277d569e8adf0f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoRegisterSurrogate
StgOpenPropStg

advapi32

RegSaveKeyA
RegQueryMultipleValuesA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegOpenKeyA
RegOverridePredefKey

kernel32

GetModuleHandleA
GetProcessHeap
GetProfileIntA
GetPrivateProfileSectionA
GetPrivateProfileStructA
GetProcAddress
OpenSemaphoreA
GetLastError
VirtualAlloc
ReleaseMutex
ReleaseSemaphore
LocalLock
GetACP
SetEvent
ResetEvent
FreeEnvironmentStringsA
GetCommandLineA
PulseEvent
LCMapStringA
SuspendThread
TlsGetValue
LocalHandle
GetStdHandle
GetStartupInfoA
CloseHandle

winspool.drv

ConfigurePortA
DeletePrinterConnectionA
AbortPrinter
DeletePrinterDataA
DeletePrinter
AdvancedDocumentPropertiesA
ConnectToPrinterDlg
DeleteFormA
AddPrinterConnectionA
DeletePrinterKeyA
AddJobA

msvcrt

exit
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_exit
_XcptFilter

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

140d1cfdd7d997770f277d569e8adf0f

Headers

File Characteristics

Imports

ole32

advapi32

kernel32

winspool.drv

msvcrt

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 314KB - Virtual size: 314KB

.data Size: 512B - Virtual size: 93KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 314KB - Virtual size: 314KB

.data
Size: 512B - Virtual size: 93KB

.rsrc
Size: 5KB - Virtual size: 5KB