5344a1021d01226584889c8fe0dace6b8fbd66f496c89eb798722112d5c6ced9

Sharing

Copy URL Twitter E-mail

General

Target

5344a1021d01226584889c8fe0dace6b8fbd66f496c89eb798722112d5c6ced9
Size

230KB
MD5

73e3ca2c6070f7014ca6a6b228ae1c9e
SHA1

fcdaaf4f6f4d5a5836ebe778d7f34ca3bc76be4f
SHA256

5344a1021d01226584889c8fe0dace6b8fbd66f496c89eb798722112d5c6ced9
SHA512

5822ae9d6e0a5a62ff6a645a56c47d83f67e600f2bcbe901df80872a7f98bbfc4e0f6d30295a6b8ad86af68efae3148430e73669376e13d9b983b9e74f7f3cd9
SSDEEP

6144:yQ4LuSHUwmdjwrn9VNdHoIGYy6NnSUCd:9qsZwrn9VNdHo

Score

N/A

Malware Config

Signatures

Files

5344a1021d01226584889c8fe0dace6b8fbd66f496c89eb798722112d5c6ced9
.exe windows x86

ceab706819840109a25dc1b4b14054db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__wgetmainargs
_except_handler3
__winitenv
_initterm
_XcptFilter
__p__commode
_wcsnicmp
wcschr
_adjust_fdiv
__set_app_type
_cexit
__p__fmode
_wcsicmp
wcsrchr
fclose
_exit
fwprintf
_c_exit
wcscat
exit
wcscmp
_controlfp

gdi32

SetBkMode
CreateFontIndirectA
GetObjectA
CreateDIBSection
SetTextColor
SaveDC
SelectClipRgn
GetWindowOrgEx
CopyEnhMetaFileA
GetBrushOrgEx
SetStretchBltMode
CreateDIBitmap
RectVisible
GetTextMetricsA
SetWindowOrgEx
CreateHalftonePalette
GetDIBits
CreateBitmap
MaskBlt
ExtCreatePen
SetWinMetaFileBits
SetBkColor
GetClipBox
SetROP2
SetPixel
GetDCOrgEx
RealizePalette
ExcludeClipRect
GetPaletteEntries
GetCurrentPositionEx
CreateCompatibleDC
CreateSolidBrush
GetSystemPaletteEntries
SetViewportExtEx
GetDeviceCaps
SetBrushOrgEx
CreatePenIndirect
GetEnhMetaFileHeader
BitBlt
LineTo
SetEnhMetaFileBits
SetViewportOrgEx
DeleteObject
IntersectClipRect

comctl32

ImageList_Destroy
ord17

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

kernel32

GetLastError
GetCurrentProcessId
QueryPerformanceCounter
VirtualAlloc
GetFullPathNameW
FreeLibrary
FileTimeToSystemTime
VirtualFree
GetModuleHandleA
lstrlenW
LocalFree
GetProcAddress
GetTempPathW
UnhandledExceptionFilter
GetTickCount
GetCommandLineA
LoadLibraryW
lstrcpyW
ExitProcess
FormatMessageW
GetCurrentProcess
CloseHandle
lstrcpynW
GetSystemTimeAsFileTime

advapi32

RegCloseKey
RegQueryValueA
RegOpenKeyA

shell32

Shell_NotifyIconA
FreeIconList

Sections

.text
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ceab706819840109a25dc1b4b14054db

Headers

File Characteristics

Imports

msvcrt

gdi32

comctl32

winspool.drv

kernel32

advapi32

shell32

Sections

.text Size: 166KB - Virtual size: 165KB

.rdata Size: 22KB - Virtual size: 22KB

.data Size: 32KB - Virtual size: 32KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 166KB - Virtual size: 165KB

.rdata
Size: 22KB - Virtual size: 22KB

.data
Size: 32KB - Virtual size: 32KB

.rsrc
Size: 9KB - Virtual size: 8KB