b922cbdf41d0a3023ff6ca8c35880f9886920128fdd1b31a6f8ebb35b347bc7c

General

Target

b922cbdf41d0a3023ff6ca8c35880f9886920128fdd1b31a6f8ebb35b347bc7c
Size

84KB
MD5

e04b081abba7e32471d7f5c9611f0280
SHA1

0b151facfcb422f33dc25474d4be8698d61b859c
SHA256

b922cbdf41d0a3023ff6ca8c35880f9886920128fdd1b31a6f8ebb35b347bc7c
SHA512

cf881e8ec9b14844a92cd0156d56a8af60be7cc686884e7b0e1219bbe231e1ccee8b3cad078cb82da632bd32c0e1ffaf39de6c7115e2a7cbb576aecc0c2b25c0
SSDEEP

1536:lCQtXXKVWeA2kPUpwlhfA6imRQaGhx4dnl3p3eXjuAiLRddBjOuMu:lCQtnKmzPUpmJLimRYhx4AT69IuMu

Score

N/A

Malware Config

Signatures

Files

b922cbdf41d0a3023ff6ca8c35880f9886920128fdd1b31a6f8ebb35b347bc7c
.exe windows x86

d5fb7b4484e1397c8024492d3fac9603

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringA
WriteFile
GetPrivateProfileStringA
GetPrivateProfileIntA
GetFullPathNameA
GetFileSize
GetModuleFileNameA
GetTempPathA
GetTempFileNameA
GetVersionExA
DeleteFileA
CreateEventA
SetEvent
MultiByteToWideChar
WideCharToMultiByte
MulDiv
lstrcpyA
lstrlenA
CreateFileA
ReadFile
CloseHandle
GetModuleHandleA
GetStartupInfoA

gdi32

CreateCompatibleDC
CreateDCA
EndPage
EndDoc
GetTextCharset
GetDeviceCaps
CreateFontIndirectA
SelectObject
GetFontLanguageInfo
SetTextAlign
GetCharacterPlacementA
GetTextExtentPoint32A
CreateCompatibleBitmap
GetTextAlign
BeginPath
CreatePen
CreateSolidBrush
GetGlyphOutlineA
MoveToEx
EndPath
FlattenPath
GetPath
PolyBezier
GetTextMetricsA
GetTextFaceA
GetStockObject
StretchDIBits
StartPage
ExtEscape
StartDocA
TextOutA
SetTextColor
SetBkMode
DeleteDC
DeleteObject
LineTo

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetPrinterA

msvcrt

_controlfp
free
malloc
realloc
_ismbslead
calloc
printf
strrchr
strstr
strncpy
vsprintf
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3

Sections

.text
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5fb7b4484e1397c8024492d3fac9603

Headers

File Characteristics

Imports

kernel32

gdi32

winspool.drv

msvcrt

Sections

.text Size: 12KB - Virtual size: 9KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 60KB - Virtual size: 56KB

.rsrc Size: 4KB - Virtual size: 912B

.text
Size: 12KB - Virtual size: 9KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 60KB - Virtual size: 56KB

.rsrc
Size: 4KB - Virtual size: 912B