6fe1cd1ca2edc419e23da527ed7a50a15a419e3d85dbe678f008618f954a30ab

Sharing

Copy URL Twitter E-mail

General

Target

6fe1cd1ca2edc419e23da527ed7a50a15a419e3d85dbe678f008618f954a30ab
Size

1.2MB
MD5

33b644b046f84c4d53afa637c04295f4
SHA1

d2ed0569ffac843bcc6456c1c0eeeda2c9df526b
SHA256

6fe1cd1ca2edc419e23da527ed7a50a15a419e3d85dbe678f008618f954a30ab
SHA512

41bd2d83cbbed88f8b939da309b47a0e919f40dfd5c88dfcbc0fb3f979e3c08a84da6624f0d1d882d80a9d6fc66e2c6a272bc2cd91cfa0285027b51f82c65d5c
SSDEEP

24576:gUHYfY9nmSLQMSuO2N+CvFguwrzVYihYjlrx4E7:XVz+CNHRjv7

Score

N/A

Malware Config

Signatures

Files

6fe1cd1ca2edc419e23da527ed7a50a15a419e3d85dbe678f008618f954a30ab
.exe windows x86

c199bcb100eddcf9b6556642780c62df

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_except_handler3

kernel32

VirtualQuery
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
SystemTimeToTzSpecificLocalTime
Sleep
SizeofResource
SetThreadLocale
SetFilePointer
SetFileAttributesA
SetEvent
SetErrorMode
LoadLibraryA
ExitProcess
GetTickCount
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetCommandLineA
GetVersion
GetCurrentThreadId
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCurrentProcessId
EnumCalendarInfoA
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FormatMessageA
FreeResource
GetACP
GetCPInfo
GetCurrentDirectoryA
GetDateFormatA
GetDiskFreeSpaceA
GetExitCodeThread
GetFileAttributesA
GetFileAttributesExA
GetFileSize
GetFileType
GetFullPathNameA
GetLastError
GetLocaleInfoA
GetLocalTime
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProfileStringA
GetStartupInfoA
GetStdHandle
GetStringTypeExA
GetSystemInfo
GetTempPathA
GetThreadLocale
GetVersionExA
GetVolumeInformationA
GetWindowsDirectoryA
GlobalAddAtomA
SetEndOfFile
GlobalDeleteAtom
GlobalFindAtomA
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
GlobalSize
GlobalUnlock
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
LoadLibraryExA
LoadResource
LocalAlloc
LocalFree
LockResource
lstrcatA
lstrcmpA
lstrcpyA
lstrcpynA
lstrlenA
lstrlenW
MoveFileA
MulDiv
MultiByteToWideChar
RaiseException
ReadFile
ResetEvent
ResumeThread
SetCurrentDirectoryA
GlobalAlloc

user32

GetKeyboardType
MessageBoxA
CharNextA
CharToOemA
CharUpperBuffA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
EnumPrintersA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

ole32

CoInitialize
OleInitialize

oleaut32

GetErrorInfo

shlwapi

PathFileExistsA

Sections

.text
Size: 424KB - Virtual size: 424KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 14.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.price
Size: 774KB - Virtual size: 773KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c199bcb100eddcf9b6556642780c62df

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

winspool.drv

advapi32

ole32

oleaut32

shlwapi

Sections

.text Size: 424KB - Virtual size: 424KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 1024B - Virtual size: 14.1MB

.price Size: 774KB - Virtual size: 773KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 424KB - Virtual size: 424KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 1024B - Virtual size: 14.1MB

.price
Size: 774KB - Virtual size: 773KB

.rsrc
Size: 3KB - Virtual size: 3KB