9264836b2ee9eb86714e674445b2d64ce842a952781e824d364355c8942ef977

Sharing

Copy URL Twitter E-mail

General

Target

9264836b2ee9eb86714e674445b2d64ce842a952781e824d364355c8942ef977
Size

338KB
MD5

7a889c5fe398326117231c3b3570b670
SHA1

3518ad866d15a24a3cea7ef7aef26ea0c589255b
SHA256

9264836b2ee9eb86714e674445b2d64ce842a952781e824d364355c8942ef977
SHA512

4b8c1b9cc2d80d9d43918300bbc2f00f41024ecafe72b0369cd7c99864452c856fdd4f97f14bbc32f1e08a95d3f53bca41d5f4ebb04b9d6f5ff231861eebb795
SSDEEP

6144:NB29o6/VVEnx737sQNVopV+oIX64c0ZGAUgBF/r6:2mMVStLsQNmrjHIZGApG

Score

N/A

Malware Config

Signatures

Files

9264836b2ee9eb86714e674445b2d64ce842a952781e824d364355c8942ef977
.exe windows x86

69bdf18d9ed39bfb4cf740fd92ccbf04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetClientRect
GetDlgItemTextA
DialogBoxParamA
SetParent
GetDlgCtrlID
ArrangeIconicWindows
MessageBoxIndirectA
MessageBoxExA
TileWindows
IsZoomed
SendDlgItemMessageA
DeferWindowPos
CreateWindowExA
LoadCursorA
OpenClipboard
SetClipboardData
TranslateMessage
DispatchMessageA
GetClipboardData
LoadIconA

gdi32

GetStockObject
CreateDiscardableBitmap
GdiGetBatchLimit
CopyEnhMetaFileA
BitBlt
CloseMetaFile
DeleteMetaFile
AngleArc
Chord
CopyEnhMetaFileW
AbortDoc

advapi32

RegOverridePredefKey
DeregisterEventSource
AccessCheck
RegReplaceKeyA
RegUnLoadKeyA
RegDeleteValueA
AdjustTokenGroups
RegCreateKeyA
GetTokenInformation

kernel32

GetACP
OpenMutexA
GetThreadLocale
GetTimeFormatA
OpenSemaphoreA
VirtualQueryEx
IsBadCodePtr
CreateEventA
GetCPInfo
LocalUnlock
IsBadWritePtr
GlobalLock
LocalFlags
PulseEvent
GetPrivateProfileSectionA
WritePrivateProfileStringA
GetStartupInfoA
VirtualAllocEx
GetModuleHandleA
GetProcAddress
VerLanguageNameA

version

VerFindFileA
GetFileVersionInfoSizeA
VerQueryValueA
VerInstallFileA
GetFileVersionInfoA

winspool.drv

EnumPrinterDriversA
DeletePrinterDriverExA
AddPrinterDriverExW
EnumPrintersW
SetJobW
AdvancedDocumentPropertiesA
AddJobA
ClosePrinter
AddPrinterConnectionA
DeletePrinterDataA
DeleteFormA
AddPrintProcessorA
AddPrinterA
SetJobA
DeletePrinter

netapi32

NetRemoteComputerSupports
NetGetJoinInformation
NetErrorLogWrite
NetFileGetInfo
NetErrorLogClear
NetAuditClear
NetFileEnum
NetConnectionEnum
NetConfigGetAll
NetGroupAdd
NetGetDCName
NetConfigSet
NetErrorLogRead
NetAuditRead
NetGetAnyDCName
Netbios

msvcrt

__p__commode
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__fmode
__set_app_type
_except_handler3
_controlfp
exit
_XcptFilter
_exit
_acmdln

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 413KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69bdf18d9ed39bfb4cf740fd92ccbf04

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

version

winspool.drv

netapi32

msvcrt

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 313KB - Virtual size: 413KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 313KB - Virtual size: 413KB

.rsrc
Size: 4KB - Virtual size: 3KB