f299f2d8f37a8d5d7bc88e6b1a035c98cbb45ad86302d5e76bb91b2c99c7969a

Sharing

Copy URL Twitter E-mail

General

Target

f299f2d8f37a8d5d7bc88e6b1a035c98cbb45ad86302d5e76bb91b2c99c7969a
Size

273KB
MD5

80b19c0131dd78228928aba57909db78
SHA1

93d8dbbf8f9d60b2531cbd60d0fb3b16060f0534
SHA256

f299f2d8f37a8d5d7bc88e6b1a035c98cbb45ad86302d5e76bb91b2c99c7969a
SHA512

6bbae8caa550b66748f32ce717a4f18dc6e07ba0303e639e140b77d50c258718bac49bf58259866dcaa2d159a1d4bc14698f57fb1953f54fc56722f24d299dc9
SSDEEP

3072:aNPJiaqxh8gz5wxatqxI02TEK/BPaAg/7Eajtd0G6LvOVT1JV6ewZPSWpsQ2CF6d:aCugjttPRaDY2tLPVT1T6rSW6u6Wi

Score

N/A

Malware Config

Signatures

Files

f299f2d8f37a8d5d7bc88e6b1a035c98cbb45ad86302d5e76bb91b2c99c7969a
.exe windows x86

1fc3bdd5ede0a64d563c6b8cda3a7199

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
SystemTimeToTzSpecificLocalTime
HeapSize
lstrcmpiW
IsDebuggerPresent
HeapFree
SizeofResource
FindClose
OutputDebugStringW
LocalFree
EnumResourceNamesW
CreateFileW
FreeLibrary
GetProcessHeap
LeaveCriticalSection
FindResourceExW
GetFileSize
LocalAlloc
GetSystemTimeAsFileTime
LoadResource
UnhandledExceptionFilter
ProcessIdToSessionId
FormatMessageW
lstrlenW
SystemTimeToFileTime
LoadLibraryExW
HeapAlloc
GetCurrentThreadId
GetTimeZoneInformation
LockResource
FindResourceW
HeapDestroy
GetSystemTime
DeleteCriticalSection
CloseHandle
SetUnhandledExceptionFilter
RaiseException
GetModuleHandleW
HeapReAlloc
EnterCriticalSection
FindFirstFileW
GetCurrentProcess
VirtualAllocEx

gdi32

DeleteDC
CreateCompatibleBitmap
PatBlt
CreateCompatibleDC
SelectObject
CreateDCW
CreateSolidBrush
DeleteObject
GetObjectW

oleaut32

VarUI4FromStr

ole32

CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc
CoCreateGuid

user32

LoadImageW
DestroyIcon
DrawIconEx
GetForegroundWindow
CharNextW
GetActiveWindow
AllowSetForegroundWindow
GetSystemMetrics
GetDesktopWindow

winspool.drv

DocumentEvent
EnumPrinterKeyA
PrinterProperties
DeletePrinterConnectionW
EnumPrinterDataW
GetPrintProcessorDirectoryA
AddPrinterDriverA
PrinterMessageBoxW
WaitForPrinterChange
SpoolerPrinterEvent
DevQueryPrint
GetPrinterA
EnumPrintProcessorDatatypesW
ExtDeviceMode

msrle32

DriverProc

Sections

.MgTKJ
Size: 2KB - Virtual size: 22KB

IMAGE_SCN_MEM_READ

.gIabXEW
Size: 2KB - Virtual size: 14KB

IMAGE_SCN_MEM_READ

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rMTvTr
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.JNknyQV
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.CxDqC
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.IkzRZl
Size: 1024B - Virtual size: 804B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.QFlMI
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lqItB
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.iMaG
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.QHuRWLj
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hZvUl
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1fc3bdd5ede0a64d563c6b8cda3a7199

Headers

File Characteristics

Imports

kernel32

gdi32

oleaut32

ole32

user32

winspool.drv

msrle32

Sections

.MgTKJ Size: 2KB - Virtual size: 22KB

.gIabXEW Size: 2KB - Virtual size: 14KB

.text Size: 16KB - Virtual size: 16KB

.rMTvTr Size: 2KB - Virtual size: 1KB

.JNknyQV Size: 2KB - Virtual size: 2KB

.CxDqC Size: 2KB - Virtual size: 1KB

.IkzRZl Size: 1024B - Virtual size: 804B

.data Size: 6KB - Virtual size: 132KB

.rdata Size: 208KB - Virtual size: 207KB

.QFlMI Size: 3KB - Virtual size: 2KB

.lqItB Size: 2KB - Virtual size: 2KB

.rsrc Size: 17KB - Virtual size: 17KB

.iMaG Size: 1KB - Virtual size: 1KB

.QHuRWLj Size: 2KB - Virtual size: 1KB

.hZvUl Size: 3KB - Virtual size: 2KB

.MgTKJ
Size: 2KB - Virtual size: 22KB

.gIabXEW
Size: 2KB - Virtual size: 14KB

.text
Size: 16KB - Virtual size: 16KB

.rMTvTr
Size: 2KB - Virtual size: 1KB

.JNknyQV
Size: 2KB - Virtual size: 2KB

.CxDqC
Size: 2KB - Virtual size: 1KB

.IkzRZl
Size: 1024B - Virtual size: 804B

.data
Size: 6KB - Virtual size: 132KB

.rdata
Size: 208KB - Virtual size: 207KB

.QFlMI
Size: 3KB - Virtual size: 2KB

.lqItB
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 17KB - Virtual size: 17KB

.iMaG
Size: 1KB - Virtual size: 1KB

.QHuRWLj
Size: 2KB - Virtual size: 1KB

.hZvUl
Size: 3KB - Virtual size: 2KB