4835dc288c72627cd41d165f898d5c34baa5a8f60b375761601ead2b54729fa1

Sharing

Copy URL

Twitter E-mail

General

Target

4835dc288c72627cd41d165f898d5c34baa5a8f60b375761601ead2b54729fa1
Size

344KB
MD5

f8a81b78d019e69770b4697c0942d602
SHA1

0ef1a4a76e11c88ebf5a62cd85d9c9e4283b48ed
SHA256

4835dc288c72627cd41d165f898d5c34baa5a8f60b375761601ead2b54729fa1
SHA512

cd3e87a5593ee547511650fc5d863e5a70f69c493e400bac1b5b1ef520ea5d2c4932d3660e07949a7870e350238ae078145283d4a0dd497b6e72caa6b7852111
SSDEEP

6144:4f3dQBvi7+sSHSCsthcwTg+lWpgziGXqJ01ikdb1BcTNgCjI2pY+N:4EYTCstTTZugziXJLQxBcjlp/N

Score

N/A

Malware Config

Signatures

Files

4835dc288c72627cd41d165f898d5c34baa5a8f60b375761601ead2b54729fa1
.exe windows x86

bec4674eee449b66b520fd5ef371df7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
BringWindowToTop
WindowFromPoint
FindWindowA
CreateDialogParamA
ShowWindow
GetDlgItemInt
GetDesktopWindow
IsChild
BeginDeferWindowPos
GetClipboardData
DefDlgProcA
GetWindowTextLengthA

gdi32

CreateFontA
DeleteObject
ExtFloodFill
CreateDiscardableBitmap
GetAspectRatioFilterEx
Chord
GetBitmapDimensionEx
AbortDoc
FillRgn
BitBlt

advapi32

ClearEventLogA
ReadEventLogW
PrivilegeCheck
RegNotifyChangeKeyValue
RegUnLoadKeyA
RegCreateKeyExA
RegOpenKeyExA
RegReplaceKeyA
RegDeleteKeyA
RegOpenKeyA
RegisterEventSourceA

kernel32

GetStringTypeW
SetLocaleInfoA
WaitForSingleObject
HeapValidate
HeapDestroy
HeapAlloc
GlobalSize
GetStartupInfoA
GetProcAddress
PulseEvent
VirtualAllocEx
GetModuleHandleA
WritePrivateProfileSectionA
MultiByteToWideChar
VirtualUnlock
LocalFree

winspool.drv

DeletePrinterDriverA
DeletePrinterConnectionW
GetJobA
DeletePrinterDriverExW
GetPrinterDriverA
AddPrintProcessorW
DeletePrinter
GetPrinterDriverW
AddPrintProcessorA

netapi32

NetServerTransportDel
NetConfigGetAll
NetGetJoinableOUs
NetErrorLogClear
NetGroupAdd
NetFileGetInfo
Netbios
NetGetAnyDCName
NetFileEnum
NetConfigSet

msvcrt

_adjust_fdiv
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__mb_cur_max
_isctype
_pctype
__setusermatherr
__p__commode
__p__fmode
_controlfp
_except_handler3
__set_app_type

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.blr
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bec4674eee449b66b520fd5ef371df7c

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

winspool.drv

netapi32

msvcrt

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 101KB

.blr Size: 318KB - Virtual size: 318KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 101KB

.blr
Size: 318KB - Virtual size: 318KB

.rsrc
Size: 4KB - Virtual size: 4KB