1cbfee7032a2fb9de71cafb4f930d7a7cd594fc94a345836d861e44cd816ae67

Sharing

Copy URL Twitter E-mail

General

Target

1cbfee7032a2fb9de71cafb4f930d7a7cd594fc94a345836d861e44cd816ae67
Size

324KB
MD5

1df1161ec24ba3684114a5b020625cf0
SHA1

a24f46c8044414577c92e09971ce0f04bd80dd61
SHA256

1cbfee7032a2fb9de71cafb4f930d7a7cd594fc94a345836d861e44cd816ae67
SHA512

fe9ed15b033b3cfc83ab66b2f88e836e05984d1061cedaac2071abe304e978f404c2017691f091226cf6a97e1bc1d6760735303457aaaf3d82b48b1e61de2c1e
SSDEEP

6144:r1LdN4UaqklPIrccbDB6fvUhe9i55hwyOUVEN+meD:bN4Ek5IrJkvUhe9i555NM0

Score

N/A

Malware Config

Signatures

Files

1cbfee7032a2fb9de71cafb4f930d7a7cd594fc94a345836d861e44cd816ae67
.exe windows x86

53c676108ad78972e1663ba20a46c71c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenWaitableTimerA
GetPrivateProfileSectionNamesW
CreateDirectoryExA
GetWriteWatch
CloseHandle
EnumResourceNamesW
GetCompressedFileSizeA
FatalAppExitA
GetProcessShutdownParameters
CancelWaitableTimer
IsProcessorFeaturePresent
GetPrivateProfileStructA
GetLogicalDrives
DeleteAtom
GetCommTimeouts
GetPrivateProfileSectionA
FindFirstFileA
GetNamedPipeInfo
LocalUnlock
SetThreadPriority
_lclose
EnumResourceNamesA
GetFileTime
GetThreadTimes
SetEnvironmentVariableA
SetTapeParameters
GetDriveTypeA
TransactNamedPipe
LocalFlags
SetFilePointerEx
ReplaceFileW
GetSystemDefaultUILanguage
FindNextVolumeA
GetDriveTypeW
OpenFile
SetCalendarInfoA
FindNextVolumeMountPointW
FatalExit
LocalLock
GetCurrentThreadId
TlsGetValue
FindAtomA
EnumCalendarInfoW
SwitchToThread
GetComputerNameA
GetVolumePathNameA

winspool.drv

AddJobA
StartDocPrinterW
StartPagePrinter

user32

MapVirtualKeyExA
TranslateMDISysAccel
GetClassWord
ExcludeUpdateRgn
EnumDisplayMonitors
SetCapture
WindowFromDC
GetFocus
UnloadKeyboardLayout
GetPropW
SetMenuItemBitmaps
DragObject
FlashWindowEx
CheckRadioButton
LoadBitmapW
GetLastInputInfo
DefFrameProcA
GetCursor
UnregisterDeviceNotification
ClipCursor
SetWindowsHookA
CreateIconFromResourceEx
MessageBoxIndirectA
DestroyWindow
RealChildWindowFromPoint
GetSysColor
RegisterWindowMessageW
IsCharAlphaNumericA
SendDlgItemMessageA
NotifyWinEvent
ScreenToClient
TranslateMessage
GetWindowModuleFileNameW
DdeUninitialize
CloseWindowStation
SystemParametersInfoA
EnumPropsA
CharUpperW
GetSystemMenu
GetProcessWindowStation
CascadeChildWindows
MessageBoxExW
GetPriorityClipboardFormat
IsDialogMessageA
SetWindowsHookW
IsIconic
CharNextExA
DdeAccessData
MessageBoxExA
ValidateRgn
SetSysColors
CopyAcceleratorTableA
DeleteMenu
SwapMouseButton
BroadcastSystemMessageA
OemToCharW
GetPropA
VkKeyScanExA
wvsprintfW
SetDeskWallpaper
GetGuiResources
CascadeWindows
CreateIcon
CharLowerBuffA
GetClassInfoExA
ToUnicode
DrawTextExA
GetKeyState
GetDialogBaseUnits
RegisterHotKey
InvertRect
GetInputState
DdeGetLastError
ToUnicodeEx
SetWindowPos
TileChildWindows
SetMessageExtraInfo
GetWindowTextW
GetThreadDesktop
SetWindowTextW
FreeDDElParam
GetKeyNameTextA

shell32

SHInvokePrinterCommandW
SHEmptyRecycleBinW
RealShellExecuteExA
DragQueryFileW
SHGetInstanceExplorer
SHGetFolderPathA

Sections

.text
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53c676108ad78972e1663ba20a46c71c

Headers

File Characteristics

Imports

kernel32

winspool.drv

user32

shell32

Sections

.text Size: 142KB - Virtual size: 142KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 74KB - Virtual size: 133KB

.rsrc Size: 102KB - Virtual size: 101KB

.text
Size: 142KB - Virtual size: 142KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 74KB - Virtual size: 133KB

.rsrc
Size: 102KB - Virtual size: 101KB