a941397ac81c96994c1d6cb56c9a97ab24ce3c391b1e93192d4f03d8fa9c4d27

General

Target

a941397ac81c96994c1d6cb56c9a97ab24ce3c391b1e93192d4f03d8fa9c4d27
Size

278KB
MD5

8d9ff3bec66ada73fdec8d2817f65e26
SHA1

5a2a8d84c1e6953b98b1bdbd90ade0829bcdb051
SHA256

a941397ac81c96994c1d6cb56c9a97ab24ce3c391b1e93192d4f03d8fa9c4d27
SHA512

cbff5e63b4e6fb057678151db843a700a240697321dbd26ac188dfb4ebcc74cf15665d49602f35ed9aa540c4cde07a32b8682874906fd9a7e204112b1c28bd89
SSDEEP

6144:Z3h8Y1K2G8ZF022tinDLzRPJWVM5FPCy7b7mED3V6O4Hg1x4irZQW7haRPJWR:ZeX2G8Z7PVpFPJv3V6OJ1KirZFhERWR

Score

N/A

Malware Config

Signatures

Files

a941397ac81c96994c1d6cb56c9a97ab24ce3c391b1e93192d4f03d8fa9c4d27
.exe windows x86

2b48d29f3578d7e501bf252d462e6287

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
GetTickCount
lstrcpyW
GetCPInfo
GetSystemTimeAsFileTime
FindResourceW
LoadLibraryW
CloseHandle
lstrcmpA
GetCurrentProcessId
CreateFileA
GetLocalTime
MultiByteToWideChar
HeapFree
GetUserDefaultLCID
lstrlenW
GetACP
GetSystemInfo
GetProcessHeap
WideCharToMultiByte
HeapAlloc
GetCurrentProcess
SystemTimeToFileTime
SetLastError
GlobalFindAtomA
QueryPerformanceCounter

psapi

EmptyWorkingSet
EnumPageFilesW
EnumPageFilesA
EnumProcessModules

olecli32

LeObjectConvert
LeReconnect
LeQueryProtocol
LeQueryOutOfDate
LeGetUpdateOptions
LeQueryBounds
LeSetData
LeSetBounds
LeObjectLong
LeQueryType
LeRelease
LeQueryOpen
LeSaveToStream

printui

vPrinterPropPages
vDocumentDefaults
vServerPropPages
vQueueCreate
ConstructPrinterFriendlyName

Sections

.text
Size: 221KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b48d29f3578d7e501bf252d462e6287

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

psapi

olecli32

printui

Sections

.text Size: 221KB - Virtual size: 220KB

.data Size: 51KB - Virtual size: 64KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 221KB - Virtual size: 220KB

.data
Size: 51KB - Virtual size: 64KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB