40aa1789c16226b27854d742599a46dd4882bbeba9ae324449f6dd9b987cfc50

Sharing

Copy URL

Twitter E-mail

General

Target

40aa1789c16226b27854d742599a46dd4882bbeba9ae324449f6dd9b987cfc50
Size

343KB
MD5

ee538c6a9ab550b89451e8166b51273b
SHA1

43720f9f7110ea3dc116b882d2170983e34940a3
SHA256

40aa1789c16226b27854d742599a46dd4882bbeba9ae324449f6dd9b987cfc50
SHA512

89d8f2e9ac14f94b1cb984dbdebc5a22326ffb4fa2fa792e797cfcea63c70487eafbcd9a6ac9b86b4fa90fc51a9a7ba774ae8f1f6784b9716dfc3d9fe5162684
SSDEEP

6144:Qf3dQBvi7+sSHSCsthcwTg+lWpgziGXqJ01ikdb1BcTNgCjI2pYO:QEYTCstTTZugziXJLQxBcjlpX

Score

N/A

Malware Config

Signatures

Files

40aa1789c16226b27854d742599a46dd4882bbeba9ae324449f6dd9b987cfc50
.exe windows x86

bec4674eee449b66b520fd5ef371df7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
BringWindowToTop
WindowFromPoint
FindWindowA
CreateDialogParamA
ShowWindow
GetDlgItemInt
GetDesktopWindow
IsChild
BeginDeferWindowPos
GetClipboardData
DefDlgProcA
GetWindowTextLengthA

gdi32

CreateFontA
DeleteObject
ExtFloodFill
CreateDiscardableBitmap
GetAspectRatioFilterEx
Chord
GetBitmapDimensionEx
AbortDoc
FillRgn
BitBlt

advapi32

ClearEventLogA
ReadEventLogW
PrivilegeCheck
RegNotifyChangeKeyValue
RegUnLoadKeyA
RegCreateKeyExA
RegOpenKeyExA
RegReplaceKeyA
RegDeleteKeyA
RegOpenKeyA
RegisterEventSourceA

kernel32

GetStringTypeW
SetLocaleInfoA
WaitForSingleObject
HeapValidate
HeapDestroy
HeapAlloc
GlobalSize
GetStartupInfoA
GetProcAddress
PulseEvent
VirtualAllocEx
GetModuleHandleA
WritePrivateProfileSectionA
MultiByteToWideChar
VirtualUnlock
LocalFree

winspool.drv

DeletePrinterDriverA
DeletePrinterConnectionW
GetJobA
DeletePrinterDriverExW
GetPrinterDriverA
AddPrintProcessorW
DeletePrinter
GetPrinterDriverW
AddPrintProcessorA

netapi32

NetServerTransportDel
NetConfigGetAll
NetGetJoinableOUs
NetErrorLogClear
NetGroupAdd
NetFileGetInfo
Netbios
NetGetAnyDCName
NetFileEnum
NetConfigSet

msvcrt

_adjust_fdiv
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__mb_cur_max
_isctype
_pctype
__setusermatherr
__p__commode
__p__fmode
_controlfp
_except_handler3
__set_app_type

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.blr
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bec4674eee449b66b520fd5ef371df7c

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

winspool.drv

netapi32

msvcrt

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 101KB

.blr Size: 318KB - Virtual size: 318KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 101KB

.blr
Size: 318KB - Virtual size: 318KB

.rsrc
Size: 4KB - Virtual size: 4KB