eb922d51f4b06f3cfc3157c885bac40f57f2cda9377935eb3285ad24168d1396

Sharing

Copy URL Twitter E-mail

General

Target

eb922d51f4b06f3cfc3157c885bac40f57f2cda9377935eb3285ad24168d1396
Size

346KB
MD5

a5e1ce650672bb343a3b9911791cbff1
SHA1

7d50899f6c76eee8c832474e4a8827c92333d369
SHA256

eb922d51f4b06f3cfc3157c885bac40f57f2cda9377935eb3285ad24168d1396
SHA512

ae30a72f6b5a65e1d7819f0db7ed60d49d6e7b5f2b457bd12c4108677578caaa3c81ef41a834e1544fb288f010ff3287812be75f807975322f1958f400979e8b
SSDEEP

6144:yNOiHA9iQYHTgI9OcY81i4zecuRkmcFZA9yC0gdyaepKwMqUJe7cgs7YvtP:ygib1OcHE8QRkTa9ctpyMP

Score

N/A

Malware Config

Signatures

Files

eb922d51f4b06f3cfc3157c885bac40f57f2cda9377935eb3285ad24168d1396
.exe windows x86

fd9cc2e04dc4f5085de77c01787fdca9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgCtrlID
FindWindowExA
GetWindowTextLengthA
SetForegroundWindow
GetWindowThreadProcessId
OpenIcon
ShowWindow
BringWindowToTop
GetLastActivePopup
IsWindowUnicode
OpenClipboard
EnumWindows
AdjustWindowRectEx

gdi32

CopyMetaFileA
ExtFloodFill
DeleteEnhMetaFile
DrawEscape
CreateEllipticRgn
CreateCompatibleBitmap
FillRgn
AngleArc
CreateCompatibleDC
EqualRgn
GetBrushOrgEx
CombineRgn
AddFontResourceW
CreateFontA

advapi32

ReportEventW
BackupEventLogW
OpenThreadToken
RegQueryMultipleValuesA
RegisterEventSourceW
RegCloseKey

kernel32

GlobalHandle
GetTimeFormatA
FoldStringA
WritePrivateProfileSectionA
GetPrivateProfileIntA
GetProfileSectionA
WriteProfileSectionA
GetProfileIntA
GetStartupInfoA
GetProcAddress
GetEnvironmentVariableA
GetModuleHandleA
WritePrivateProfileStringA
GlobalMemoryStatus
LeaveCriticalSection
GetOEMCP
VirtualAlloc
SetEvent
OpenSemaphoreA
VirtualUnlock

winspool.drv

ClosePrinter
DeletePrinterKeyA
DeletePrinterConnectionA
AddPrinterConnectionA
AddPrintProcessorW
AddPrinterDriverExW
GetJobA
GetPrinterW
EnumPrinterDriversA
EnumJobsA
SetJobW
SetPrinterA
AddJobA

netapi32

NetAuditWrite
NetServerDiskEnum
NetLocalGroupDelMembers
NetErrorLogWrite
NetGroupAdd
NetErrorLogClear
NetFileClose
NetConfigGet
NetGetDCName
NetAuditRead
NetConnectionEnum
NetGetAnyDCName

msvcrt

__setusermatherr
_XcptFilter
_exit
__mb_cur_max
_isctype
_pctype
_acmdln
__getmainargs
_initterm
exit
_adjust_fdiv
__p__commode
__p__fmode
_controlfp
_except_handler3
__set_app_type

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hrrhq
Size: 318KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd9cc2e04dc4f5085de77c01787fdca9

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

winspool.drv

netapi32

msvcrt

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 105KB

.hrrhq Size: 318KB - Virtual size: 317KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 105KB

.hrrhq
Size: 318KB - Virtual size: 317KB

.rsrc
Size: 4KB - Virtual size: 4KB