738f16ce58981d3c40ae6b72364c03ca7093b3bd4c2ff348ce6e5524f04ed956

Sharing

Copy URL Twitter E-mail

General

Target

738f16ce58981d3c40ae6b72364c03ca7093b3bd4c2ff348ce6e5524f04ed956
Size

343KB
MD5

679169132c9d634160e69d4574e49434
SHA1

bf1eb043869d015832da8a77af3945efa5742e60
SHA256

738f16ce58981d3c40ae6b72364c03ca7093b3bd4c2ff348ce6e5524f04ed956
SHA512

772f6347b4e51a44817fcb73c5cb8f13e3b77860bbb198f51978ab41c98d183059e36ee2f80fb1820b6ac9ba06e805256eefb0e26466d02b3a704e65c4cd1b14
SSDEEP

6144:4f3dQBvi7+sSHSCsthcwTg+lWpgziGXqJ01ikdb1BcTNgCjI2pY+N:4EYTCstTTZugziXJLQxBcjlp/N

Score

N/A

Malware Config

Signatures

Files

738f16ce58981d3c40ae6b72364c03ca7093b3bd4c2ff348ce6e5524f04ed956
.exe windows x86

bec4674eee449b66b520fd5ef371df7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
BringWindowToTop
WindowFromPoint
FindWindowA
CreateDialogParamA
ShowWindow
GetDlgItemInt
GetDesktopWindow
IsChild
BeginDeferWindowPos
GetClipboardData
DefDlgProcA
GetWindowTextLengthA

gdi32

CreateFontA
DeleteObject
ExtFloodFill
CreateDiscardableBitmap
GetAspectRatioFilterEx
Chord
GetBitmapDimensionEx
AbortDoc
FillRgn
BitBlt

advapi32

ClearEventLogA
ReadEventLogW
PrivilegeCheck
RegNotifyChangeKeyValue
RegUnLoadKeyA
RegCreateKeyExA
RegOpenKeyExA
RegReplaceKeyA
RegDeleteKeyA
RegOpenKeyA
RegisterEventSourceA

kernel32

GetStringTypeW
SetLocaleInfoA
WaitForSingleObject
HeapValidate
HeapDestroy
HeapAlloc
GlobalSize
GetStartupInfoA
GetProcAddress
PulseEvent
VirtualAllocEx
GetModuleHandleA
WritePrivateProfileSectionA
MultiByteToWideChar
VirtualUnlock
LocalFree

winspool.drv

DeletePrinterDriverA
DeletePrinterConnectionW
GetJobA
DeletePrinterDriverExW
GetPrinterDriverA
AddPrintProcessorW
DeletePrinter
GetPrinterDriverW
AddPrintProcessorA

netapi32

NetServerTransportDel
NetConfigGetAll
NetGetJoinableOUs
NetErrorLogClear
NetGroupAdd
NetFileGetInfo
Netbios
NetGetAnyDCName
NetFileEnum
NetConfigSet

msvcrt

_adjust_fdiv
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__mb_cur_max
_isctype
_pctype
__setusermatherr
__p__commode
__p__fmode
_controlfp
_except_handler3
__set_app_type

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.blr
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bec4674eee449b66b520fd5ef371df7c

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

winspool.drv

netapi32

msvcrt

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 101KB

.blr Size: 318KB - Virtual size: 318KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 101KB

.blr
Size: 318KB - Virtual size: 318KB

.rsrc
Size: 4KB - Virtual size: 4KB