cb75dc7c0adb6f6f3fe007a02b9ee759b7ce7a447de6a53affefecd7578dd329

General

Target

cb75dc7c0adb6f6f3fe007a02b9ee759b7ce7a447de6a53affefecd7578dd329
Size

29KB
MD5

bad45b9665c9cab650010d40743feb90
SHA1

8724a4fe34f68af96efc3acf26b47329567bbf14
SHA256

cb75dc7c0adb6f6f3fe007a02b9ee759b7ce7a447de6a53affefecd7578dd329
SHA512

280a6ee9a489924ca0411d824f43d4ce7cd0daa9a76cf04d87e979b78e40ff8cf84d20a664826007deb4b99909af4745b8385197f6b00ffbd8e4a6f5ff9d3d8e
SSDEEP

768:gkCnUt2lYRQoLXXpioFWPFiTngKYdhUPsWr43Sot:gk4Ul+oLXMoEd+gK7Ps2gft

Score

N/A

Malware Config

Signatures

Files

cb75dc7c0adb6f6f3fe007a02b9ee759b7ce7a447de6a53affefecd7578dd329
.exe windows x86

24f04eb297d19d7059e70251bcb0def1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameW
GetOpenFileNameA
GetSaveFileNameA
GetOpenFileNameW

winspool.drv

DevQueryPrint
EnumPrinterDriversW

advapi32

RegOpenKeyExA
RegSetValueExA
RegDeleteKeyA
RegEnumKeyExA
RegFlushKey
RegCreateKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegCloseKey
EqualSid
AllocateAndInitializeSid
OpenProcessToken
FreeSid
AdjustTokenPrivileges
RegQueryInfoKeyA
LookupPrivilegeValueA
GetTokenInformation

kernel32

TlsGetValue
LocalAlloc
TlsSetValue
VirtualQuery
LeaveCriticalSection
FindClose
LocalFree
ExitThread
InterlockedDecrement
WriteFile
WideCharToMultiByte
GetCurrentDirectoryA
lstrlenA
GetStdHandle
DeleteCriticalSection
UnhandledExceptionFilter
InitializeCriticalSection
GetThreadLocale
lstrcpynA
LoadLibraryExA
InterlockedIncrement
VirtualAlloc
FindFirstFileA
LocalAlloc
EnterCriticalSection
GetCurrentThreadId
GetLocaleInfoA
SetCurrentDirectoryA
VirtualFree
FreeLibrary
GetStartupInfoA
GetModuleFileNameA

oleaut32

SysAllocStringLen
SysReAllocStringLen
SysFreeString

Sections

INIT
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

fugy78jp
Size: 13KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24f04eb297d19d7059e70251bcb0def1

Headers

DLL Characteristics

File Characteristics

Imports

comdlg32

winspool.drv

advapi32

kernel32

oleaut32

Sections

INIT Size: 6KB - Virtual size: 5KB

.data Size: 7KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 1KB

fugy78jp Size: 13KB - Virtual size: 59KB

INIT
Size: 6KB - Virtual size: 5KB

.data
Size: 7KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 1KB

fugy78jp
Size: 13KB - Virtual size: 59KB