708a3deb9bffef203287f818ccdf72734e25b875715adadfaebc3de415ec5d4e

Sharing

Copy URL

Twitter E-mail

General

Target

708a3deb9bffef203287f818ccdf72734e25b875715adadfaebc3de415ec5d4e
Size

31KB
MD5

5d3e32245b4d5019e5a06af1d7ac15be
SHA1

40b5728a8bf4ede4b02637c578bed82df8360856
SHA256

708a3deb9bffef203287f818ccdf72734e25b875715adadfaebc3de415ec5d4e
SHA512

acb1f80a6e05c0888392e4b7aeb77ea2de3468209048bed2faff0b4fb49d0b4b6212b156be0c79a844efed74ac7588862bff1499dfa3b0482b74e0408274f496
SSDEEP

384:vStCZLhwh2nJ9r1jkSZdjGg8mx+eMR3tDKIrfgWwrG1thyk6nZ4KXt3aDby:vdRaytk49GNmx+HR3JWCz89Zx3aDm

Score

N/A

Malware Config

Signatures

Files

708a3deb9bffef203287f818ccdf72734e25b875715adadfaebc3de415ec5d4e
.dll windows x64

198c8b07f63b9da28e89347651ead313

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

sprintf
_wcsnicmp
atoi
memcpy
memset
_initterm
wcsstr
_itow
malloc
free
swprintf
_wcsicmp

ntdll

RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
VerSetConditionMask

kernel32

SetDefaultCommConfigW
GetCurrentThreadId
Sleep
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
WritePrivateProfileStringW
InitializeCriticalSection
GlobalFree
CloseHandle
FlushFileBuffers
WriteProfileStringW
SetLastError
DeviceIoControl
SetCommTimeouts
GetCommTimeouts
VerifyVersionInfoW
DisableThreadLibraryCalls
GetLastError
CreateFileW
GetPrivateProfileIntW
OutputDebugStringW
GetTempPathW
WideCharToMultiByte
GetPrivateProfileStringW
GetWindowsDirectoryW
OutputDebugStringA
GetProfileStringW
GetProfileIntW
lstrcmpiW
LoadLibraryW
EnterCriticalSection
LeaveCriticalSection
GlobalAlloc
FreeLibrary
GetProcAddress
GetDefaultCommConfigW

advapi32

RegQueryValueExW
RegSetValueExW
RegEnumValueW
RegOpenKeyExW
RegCloseKey

user32

LoadStringW
wsprintfW

spoolss

SetJobW
OpenPrinterW
ClosePrinter

Exports

Exports

InitializePrintMonitor2

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 900B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

198c8b07f63b9da28e89347651ead313

Headers

File Characteristics

Imports

msvcrt

ntdll

kernel32

advapi32

user32

spoolss

Exports

Exports

Sections

.text Size: 25KB - Virtual size: 25KB

.data Size: 1KB - Virtual size: 2KB

.pdata Size: 1024B - Virtual size: 900B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 192B

.text
Size: 25KB - Virtual size: 25KB

.data
Size: 1KB - Virtual size: 2KB

.pdata
Size: 1024B - Virtual size: 900B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 192B