c0725cc680da238477087b7ae778a7f97745b8dc02c720ffd8fe7e262b207913

Sharing

Copy URL Twitter E-mail

General

Target

c0725cc680da238477087b7ae778a7f97745b8dc02c720ffd8fe7e262b207913
Size

41KB
MD5

8c90fbd3c03c7d7e91c805c905ba2fe5
SHA1

4af04d5568ca988299499121d8f83a4041cfffbd
SHA256

c0725cc680da238477087b7ae778a7f97745b8dc02c720ffd8fe7e262b207913
SHA512

beabf5f6994ced324c5d9a6a2395927664394552b33178e0412843059a2c444d33b628c411b9f828a3816659db0e961a6177c24cbe1dc10d343058643b26afae
SSDEEP

768:Lgmu9a/T5QFDdWbBY2ARfrVNoZcaLqtHABAiAuxvGvdv8Kt+R7MoTB+:LZYa/uDc+NpLo0wAivcvPyF1+

Score

N/A

Malware Config

Signatures

Files

c0725cc680da238477087b7ae778a7f97745b8dc02c720ffd8fe7e262b207913
.exe windows x86

299cb7c84c0e077d21ba1b53b36ab457

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindNextVolumeMountPointW
GlobalUnWire
MoveFileWithProgressW
SetUnhandledExceptionFilter
RtlCaptureContext
WriteConsoleOutputW
OpenEventA
BuildCommDCBW
VirtualAlloc
HeapSummary
WaitNamedPipeA
FindActCtxSectionStringA
CreateTimerQueueTimer
VDMOperationStarted
WriteProfileSectionA
CallNamedPipeA
HeapFree
LocalAlloc
InitializeSListHead
SetComPlusPackageInstallStatus
GetOverlappedResult
LoadLibraryA
FatalAppExitA
WritePrivateProfileStructA
MapViewOfFileEx
GetConsoleAliasExesW
RegisterWaitForInputIdle
GetSystemTimeAsFileTime
SystemTimeToTzSpecificLocalTime
GetConsoleNlsMode
ReadDirectoryChangesW
SetConsoleTextAttribute
EnumUILanguagesW
_lopen

winmm

midiStreamPosition
mmioRead
mmioFlush
waveOutPause
midiConnect
mciGetDeviceIDFromElementIDW
midiInStart
midiOutGetVolume
waveInGetID
mixerGetDevCapsA
mmioStringToFOURCCA
mmioGetInfo
midiStreamPause
midiInMessage
WOW32ResolveMultiMediaHandle
waveOutGetNumDevs
midiOutOpen
mmGetCurrentTask
midiOutCachePatches
sndPlaySoundA
mciFreeCommandResource

printui

vServerPropPages
PrintUIEntryW
RegisterPrintNotify
bPrinterSetup
PrintNotifyTray_Init
ConnectToPrinterDlg
PrintNotifyTray_Exit
PnPInterface
UnregisterPrintNotify
bFolderRefresh
DocumentPropertiesWrap
ConstructPrinterFriendlyName
ShowErrorMessageHR
vDocumentDefaults
DllMain
PrinterPropPageProvider
vPrinterPropPages
vQueueCreate

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

299cb7c84c0e077d21ba1b53b36ab457

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

winmm

printui

Sections

.text Size: 34KB - Virtual size: 33KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 31KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 34KB - Virtual size: 33KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 31KB

.rsrc
Size: 1KB - Virtual size: 1KB