689534436566bd3d0c89dd94a490cd7008867ab55258728f9320d2cbf66f6d78

Sharing

Copy URL Twitter E-mail

General

Target

689534436566bd3d0c89dd94a490cd7008867ab55258728f9320d2cbf66f6d78
Size

219KB
MD5

9c27d7fd4dc820c97da40aa3e4e572b4
SHA1

dbfdd6209fae1f8e95670ca529904712360b9fae
SHA256

689534436566bd3d0c89dd94a490cd7008867ab55258728f9320d2cbf66f6d78
SHA512

5a1eae6fb506ceddb1bb2ce26e63e1c9d30a30bab47d0d8977c7880e711a351e9153d18a1cfe324464e9bbf0aa98959e888fcd7471c375b184c4ddea1e761d98
SSDEEP

3072:J8eeGhWmnhGLIADrinplybBxXBB731n6xYzD36T5+jQHde96fDy8T7q7:7e7mnoEACpQXBTl0yuT80Hde96fDB

Score

N/A

Malware Config

Signatures

Files

689534436566bd3d0c89dd94a490cd7008867ab55258728f9320d2cbf66f6d78
.exe windows x86

0738877a14bae24c87c6ca7f4dc97038

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
_adjust_fdiv
__p__commode
wcsrchr
fclose
_wcsicmp
exit
fwprintf
_wcsnicmp
__p__fmode
__wgetmainargs
wcscmp
_controlfp
wcschr
_initterm
_cexit
_exit
_XcptFilter
_c_exit
wcscat
_except_handler3
__winitenv

kernel32

GetTempPathW
LocalFree
GetSystemTimeAsFileTime
FreeLibrary
lstrcpyW
CloseHandle
GetFullPathNameW
GetTickCount
lstrcpynW
FormatMessageW
GetProcAddress
GetCommandLineA
ExitProcess
GetLastError
GetCurrentProcess
UnhandledExceptionFilter
GetCurrentProcessId
lstrlenW
GetModuleHandleA
VirtualAlloc
VirtualFree
LoadLibraryW
QueryPerformanceCounter
FileTimeToSystemTime

advapi32

RegOpenKeyA
RegQueryValueA
RegCloseKey

gdi32

GetBrushOrgEx
GetCurrentPositionEx
LineTo
SelectClipRgn
GetObjectA
SetWinMetaFileBits
GetEnhMetaFileBits
GetWindowOrgEx
SetWindowOrgEx
SetViewportOrgEx
IntersectClipRect
SetBrushOrgEx
SetBkColor
GetClipBox
GetTextMetricsA
SaveDC
ExtCreatePen
CreatePenIndirect
CreateSolidBrush
GetDCOrgEx
RectVisible
SetROP2
CreateBitmap
BitBlt
CreateHalftonePalette
CreateDIBSection
GetWinMetaFileBits
ExcludeClipRect
CreateCompatibleDC
SetEnhMetaFileBits
CopyEnhMetaFileA
GetPaletteEntries
PolyPolyline
SetTextColor
CreateDIBitmap
MaskBlt
GetDIBits
SetStretchBltMode
DeleteObject
SetPixel
GetEnhMetaFileHeader
RealizePalette
SetViewportExtEx
GetSystemPaletteEntries
GetDeviceCaps

comctl32

ord17
ImageList_Destroy

shell32

Shell_NotifyIconA
SHFreeNameMappings

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0738877a14bae24c87c6ca7f4dc97038

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

gdi32

comctl32

shell32

winspool.drv

Sections

.text Size: 160KB - Virtual size: 159KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 42KB - Virtual size: 42KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 160KB - Virtual size: 159KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 42KB - Virtual size: 42KB

.rsrc
Size: 10KB - Virtual size: 10KB