426c23187d31a242bc515538e1e4de915ccfc107bc00d44edeead8836c02382f

Sharing

Copy URL Twitter E-mail

General

Target

426c23187d31a242bc515538e1e4de915ccfc107bc00d44edeead8836c02382f
Size

420KB
MD5

44a88c0c15e6f8e1dde1e3cc25259938
SHA1

b49824803c723b2e878ca6bbf9679dcb4d67b885
SHA256

426c23187d31a242bc515538e1e4de915ccfc107bc00d44edeead8836c02382f
SHA512

1aa24d142211d667cf4a4433a2440bdb1cb716f3fe30a27e99d3602be6afa9543d4b82d587d71cee33f0a46ad5aaa9835077dca2364fa2c5e4e4698145965582
SSDEEP

6144:tAmhizq5s2oDyK2BqTiZCfMXBBqsoUPFIPsFknlb81XQ7RGMQhtfx7mReay9:tX5s2oDuqXf+84FIP6iZ6Q7RGM4x0a9

Score

N/A

Malware Config

Signatures

Files

426c23187d31a242bc515538e1e4de915ccfc107bc00d44edeead8836c02382f
.exe windows x86

125adebefa597152a9bdcf1fbab4b8ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
VirtualFree
VirtualProtect

shlwapi

PathIsUNCA

comdlg32

GetFileTitleA

oledlg

ord8

winspool.drv

OpenPrinterA

version

VerQueryValueA

msvfw32

DrawDibDraw

gdi32

PatBlt

shfolder

SHGetFolderPathA

shell32

DragFinish

ole32

OleRun

oleaut32

VariantCopy

advapi32

RegCloseKey

comctl32

ord17

user32

GetDC

Sections

.text
Size: 229KB - Virtual size: 582KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 30KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 489KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.psgl
Size: 1024B - Virtual size: 40KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dswlab
Size: 3KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.222
Size: 40KB - Virtual size: 44KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

125adebefa597152a9bdcf1fbab4b8ef

Headers

File Characteristics

Imports

kernel32

shlwapi

comdlg32

oledlg

winspool.drv

version

msvfw32

gdi32

shfolder

shell32

ole32

oleaut32

advapi32

comctl32

user32

Sections

.text Size: 229KB - Virtual size: 582KB

.rdata Size: 30KB - Virtual size: 141KB

.data Size: 3KB - Virtual size: 24KB

.rsrc Size: 112KB - Virtual size: 489KB

.psgl Size: 1024B - Virtual size: 40KB

.dswlab Size: 3KB - Virtual size: 12KB

.222 Size: 40KB - Virtual size: 44KB

.text
Size: 229KB - Virtual size: 582KB

.rdata
Size: 30KB - Virtual size: 141KB

.data
Size: 3KB - Virtual size: 24KB

.rsrc
Size: 112KB - Virtual size: 489KB

.psgl
Size: 1024B - Virtual size: 40KB

.dswlab
Size: 3KB - Virtual size: 12KB

.222
Size: 40KB - Virtual size: 44KB