333459a15813a67c99d5dd0904e579e739de8aabd4eb0a9a38effc73ce944cbc

Sharing

Copy URL Twitter E-mail

General

Target

333459a15813a67c99d5dd0904e579e739de8aabd4eb0a9a38effc73ce944cbc
Size

227KB
MD5

7d977dbcdfebd77a09adc03b756b9b33
SHA1

0ad1f3c7c8ecaa2e37a5cc1a9e2e2f53f0bd0d99
SHA256

333459a15813a67c99d5dd0904e579e739de8aabd4eb0a9a38effc73ce944cbc
SHA512

7d2f0605550c55cfa7995a309775a4cfa55d11e4a648533cec6f733b4dd47d9950a77207bf0cb0af56ce3e176343396339eec16371a5bbc09cabbefd3d35de3e
SSDEEP

6144:dYzGikrnq5xdRewvLYi5JNchBtthHcLPRf0/JNLEYvrY:eqiGq5xPTYi5JNYhRvs

Score

N/A

Malware Config

Signatures

Files

333459a15813a67c99d5dd0904e579e739de8aabd4eb0a9a38effc73ce944cbc
.exe windows x86

0738877a14bae24c87c6ca7f4dc97038

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
_adjust_fdiv
__p__commode
wcsrchr
fclose
_wcsicmp
exit
fwprintf
_wcsnicmp
__p__fmode
__wgetmainargs
wcscmp
_controlfp
wcschr
_initterm
_cexit
_exit
_XcptFilter
_c_exit
wcscat
_except_handler3
__winitenv

kernel32

GetTempPathW
LocalFree
GetSystemTimeAsFileTime
FreeLibrary
lstrcpyW
CloseHandle
GetFullPathNameW
GetTickCount
lstrcpynW
FormatMessageW
GetProcAddress
GetCommandLineA
ExitProcess
GetLastError
GetCurrentProcess
UnhandledExceptionFilter
GetCurrentProcessId
lstrlenW
GetModuleHandleA
VirtualAlloc
VirtualFree
LoadLibraryW
QueryPerformanceCounter
FileTimeToSystemTime

advapi32

RegOpenKeyA
RegQueryValueA
RegCloseKey

gdi32

GetBrushOrgEx
GetCurrentPositionEx
LineTo
SelectClipRgn
GetObjectA
SetWinMetaFileBits
GetEnhMetaFileBits
GetWindowOrgEx
SetWindowOrgEx
SetViewportOrgEx
IntersectClipRect
SetBrushOrgEx
SetBkColor
GetClipBox
GetTextMetricsA
SaveDC
ExtCreatePen
CreatePenIndirect
CreateSolidBrush
GetDCOrgEx
RectVisible
SetROP2
CreateBitmap
BitBlt
CreateHalftonePalette
CreateDIBSection
GetWinMetaFileBits
ExcludeClipRect
CreateCompatibleDC
SetEnhMetaFileBits
CopyEnhMetaFileA
GetPaletteEntries
PolyPolyline
SetTextColor
CreateDIBitmap
MaskBlt
GetDIBits
SetStretchBltMode
DeleteObject
SetPixel
GetEnhMetaFileHeader
RealizePalette
SetViewportExtEx
GetSystemPaletteEntries
GetDeviceCaps

comctl32

ord17
ImageList_Destroy

shell32

Shell_NotifyIconA
SHFreeNameMappings

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0738877a14bae24c87c6ca7f4dc97038

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

gdi32

comctl32

shell32

winspool.drv

Sections

.text Size: 158KB - Virtual size: 158KB

.rdata Size: 21KB - Virtual size: 20KB

.data Size: 37KB - Virtual size: 39KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 158KB - Virtual size: 158KB

.rdata
Size: 21KB - Virtual size: 20KB

.data
Size: 37KB - Virtual size: 39KB

.rsrc
Size: 9KB - Virtual size: 9KB