50bf9074da3132551b4046b380b226b1c7089408b70395c04b13b234b1b84da1

Sharing

Copy URL Twitter E-mail

General

Target

50bf9074da3132551b4046b380b226b1c7089408b70395c04b13b234b1b84da1
Size

252KB
MD5

c68e2f356f2267f07d7cb1e60369ccf4
SHA1

9224618c33471ffdb07c5b5a79cdb6ea30b06c90
SHA256

50bf9074da3132551b4046b380b226b1c7089408b70395c04b13b234b1b84da1
SHA512

6ea20fdfc39d791d4f7aff340fc7eff6bde51cfcf19fb8f3fa37046c1aca0cf92d5fde148dca3719cd97cecb25b3454bc3c8298799504298f6d09868d8c5bcc3
SSDEEP

6144:aMx/aeDpYD3UiwaofLiUlbSLfNmTntCvDmuGfW4LLLLL:aMxyOYD3UDaCL/lmLlMnc7mI

Score

N/A

Malware Config

Signatures

Files

50bf9074da3132551b4046b380b226b1c7089408b70395c04b13b234b1b84da1
.exe windows x86

45912bf9f7503e3e853496c5ff491c71

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetSysColors
FindWindowA
ChildWindowFromPointEx
GetWindowTextLengthA
GetDlgItemTextA
GetDlgItemInt
BringWindowToTop
GetDesktopWindow
MessageBoxIndirectA
GetClipboardData
GetLastActivePopup
SetForegroundWindow

gdi32

AngleArc
CloseMetaFile
Ellipse
DescribePixelFormat
CancelDC
GetBkColor
Escape
ExtSelectClipRgn
EqualRgn
Chord
EndDoc
CopyEnhMetaFileA
AddFontResourceA
DeleteMetaFile
DrawEscape

advapi32

RegLoadKeyA
ReportEventW
RegSetValueExA
ReadEventLogA
RegEnumKeyExA
AccessCheck
RegQueryValueExA
RegNotifyChangeKeyValue
RegisterEventSourceW
AdjustTokenPrivileges
OpenProcessToken

kernel32

HeapFree
IsValidCodePage
IsBadCodePtr
LocalUnlock
GetPrivateProfileStructA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetStartupInfoA
GetProcAddress
PulseEvent
GetModuleHandleA
GetProfileIntA
WideCharToMultiByte
SetLocaleInfoA
GetCurrencyFormatA
GetUserDefaultLCID
IsValidLocale
EnterCriticalSection
VirtualAllocEx
GlobalMemoryStatus

winspool.drv

GetPrinterDriverW
GetJobW
SetJobW
AddPrinterDriverExW
GetPrinterA
SetPrinterA
AddPrinterConnectionA
AddJobA
SetPrinterW
AddPrinterA
EnumPrinterDriversW
EnumJobsW
DeletePrinterConnectionA
EnumPrintersA

netapi32

NetErrorLogRead
NetServerTransportAddEx
Netbios
NetAuditRead
NetFileGetInfo
NetErrorLogWrite
NetFileEnum
NetAuditClear
NetFileClose
NetConfigGetAll
NetAuditWrite
NetGetAnyDCName
NetGetDCName
NetConfigGet
NetGetJoinInformation

msvcrt

__getmainargs
_exit
__mb_cur_max
_isctype
_pctype
exit
_acmdln
_XcptFilter
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
_controlfp
_except_handler3
__set_app_type
__p__fmode

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdta
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45912bf9f7503e3e853496c5ff491c71

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

winspool.drv

netapi32

msvcrt

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 366KB

.fdta Size: 205KB - Virtual size: 205KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 366KB

.fdta
Size: 205KB - Virtual size: 205KB

.rsrc
Size: 24KB - Virtual size: 23KB