3584f553116771783f3de38b0f7644a59665bcf5db3daac2f7185f20ad1037bc

Sharing

Copy URL Twitter E-mail

General

Target

3584f553116771783f3de38b0f7644a59665bcf5db3daac2f7185f20ad1037bc
Size

265KB
MD5

2fd7e34883b3d7a7fc062b0ce76a4ed0
SHA1

49ba43eca78411d301ac630faa87a71f7f57d31e
SHA256

3584f553116771783f3de38b0f7644a59665bcf5db3daac2f7185f20ad1037bc
SHA512

e925e2bacf34e998a9a6b86efbc1ace15a428be4410158aac172374def5dd0814f88fec0d5a982d2e6fd4774477b1a8ef0b5cf578f7c458867ad5c1bc0f497a6
SSDEEP

6144:+H4Tmfn8dMwBnVpV21WBMA41aZcCfZ34+rDLr:+6m85nXV21Wi1aZPh3ZH

Score

N/A

Malware Config

Signatures

Files

3584f553116771783f3de38b0f7644a59665bcf5db3daac2f7185f20ad1037bc
.exe windows x86

6cb9cc5d8e2ecdb5ac363cb6a8f3c231

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoCreateInstance
CoTaskMemFree
CoCreateGuid
IIDFromString
CoTaskMemRealloc
CoTaskMemAlloc

rpcrt4

UuidFromStringW
UuidCreate

kernel32

GetUserDefaultLangID
LockResource
FormatMessageW
SystemTimeToFileTime
OpenThread
lstrlenW
IsDebuggerPresent
GetCurrentThreadId
LocalFree
RaiseException
GetDriveTypeW
CloseHandle
SystemTimeToTzSpecificLocalTime
LeaveCriticalSection
EnterCriticalSection
GetFileSize
LoadResource
lstrlenA
SetUnhandledExceptionFilter
DeleteCriticalSection
CreateFileW
GetModuleHandleW
LocalAlloc
LoadLibraryExW
GetSystemTime
HeapReAlloc
SetLastError
ReadFile
FileTimeToSystemTime
FindResourceW
GetProcessHeap
GetNumberFormatW
SizeofResource
HeapFree
FindResourceExW
HeapSize
FreeLibrary
GetSystemTimeAsFileTime
OutputDebugStringW
GetTimeZoneInformation
HeapAlloc
UnhandledExceptionFilter
HeapDestroy
lstrcmpiW
GetCurrentDirectoryA
VirtualAllocEx

user32

GetForegroundWindow
GetSystemMetrics
GetActiveWindow
LoadStringW
SetCursor
GetTopWindow
GetDesktopWindow
SystemParametersInfoW
CharNextW
LoadCursorW

oleaut32

VarUI4FromStr
VariantClear

winspool.drv

SetPrinterA
XcvDataW
DeletePrinterKeyA
AddPrinterDriverA
AdvancedDocumentPropertiesW
SpoolerPrinterEvent
AddPrintProcessorW
EnumPrinterDriversA
DocumentPropertiesW
AddFormW
AddPrinterW
GetPrinterDriverDirectoryW

kbdur

KbdLayerDescriptor

Sections

.Rncx
Size: 1024B - Virtual size: 18KB

IMAGE_SCN_MEM_READ

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bmTUB
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.WySP
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rWIqOwD
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.nrrW
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.EmBZyQ
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.PtVR
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.TlfSNwR
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.AEZK
Size: 1024B - Virtual size: 585B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6cb9cc5d8e2ecdb5ac363cb6a8f3c231

Headers

DLL Characteristics

File Characteristics

Imports

ole32

rpcrt4

kernel32

user32

oleaut32

winspool.drv

kbdur

Sections

.Rncx Size: 1024B - Virtual size: 18KB

.text Size: 18KB - Virtual size: 18KB

.bmTUB Size: 1KB - Virtual size: 1KB

.WySP Size: 3KB - Virtual size: 2KB

.rWIqOwD Size: 1KB - Virtual size: 1KB

.nrrW Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 325KB

.rdata Size: 208KB - Virtual size: 207KB

.EmBZyQ Size: 3KB - Virtual size: 2KB

.PtVR Size: 2KB - Virtual size: 2KB

.rsrc Size: 10KB - Virtual size: 10KB

.TlfSNwR Size: 2KB - Virtual size: 1KB

.AEZK Size: 1024B - Virtual size: 585B

.Rncx
Size: 1024B - Virtual size: 18KB

.text
Size: 18KB - Virtual size: 18KB

.bmTUB
Size: 1KB - Virtual size: 1KB

.WySP
Size: 3KB - Virtual size: 2KB

.rWIqOwD
Size: 1KB - Virtual size: 1KB

.nrrW
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 325KB

.rdata
Size: 208KB - Virtual size: 207KB

.EmBZyQ
Size: 3KB - Virtual size: 2KB

.PtVR
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 10KB - Virtual size: 10KB

.TlfSNwR
Size: 2KB - Virtual size: 1KB

.AEZK
Size: 1024B - Virtual size: 585B