d473a4c0e0ebe32867844020120d6912f8f5add690f024cfcb0e40abcd928a61

Sharing

Copy URL Twitter E-mail

General

Target

d473a4c0e0ebe32867844020120d6912f8f5add690f024cfcb0e40abcd928a61
Size

344KB
MD5

26bc61fa08adcaa2816c9d0e98432ee0
SHA1

5a368960fcde5b1125d7f46432378a1fc8b22ac6
SHA256

d473a4c0e0ebe32867844020120d6912f8f5add690f024cfcb0e40abcd928a61
SHA512

dd88f78f7ecfe1793361d65a2564c3e76b5f5b17eb760b3927357ba4cabc9559bbb4130514d9ef88dd92012cf2e5d9f65af2f4391639f038735dbdfa538a8bfd
SSDEEP

6144:4f3dQBvi7+sSHSCsthcwTg+lWpgziGXqJ01ikdb1BcTNgCjI2pY+B:4EYTCstTTZugziXJLQxBcjlp/B

Score

N/A

Malware Config

Signatures

Files

d473a4c0e0ebe32867844020120d6912f8f5add690f024cfcb0e40abcd928a61
.exe windows x86

bec4674eee449b66b520fd5ef371df7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowRect
BringWindowToTop
WindowFromPoint
FindWindowA
CreateDialogParamA
ShowWindow
GetDlgItemInt
GetDesktopWindow
IsChild
BeginDeferWindowPos
GetClipboardData
DefDlgProcA
GetWindowTextLengthA

gdi32

CreateFontA
DeleteObject
ExtFloodFill
CreateDiscardableBitmap
GetAspectRatioFilterEx
Chord
GetBitmapDimensionEx
AbortDoc
FillRgn
BitBlt

advapi32

ClearEventLogA
ReadEventLogW
PrivilegeCheck
RegNotifyChangeKeyValue
RegUnLoadKeyA
RegCreateKeyExA
RegOpenKeyExA
RegReplaceKeyA
RegDeleteKeyA
RegOpenKeyA
RegisterEventSourceA

kernel32

GetStringTypeW
SetLocaleInfoA
WaitForSingleObject
HeapValidate
HeapDestroy
HeapAlloc
GlobalSize
GetStartupInfoA
GetProcAddress
PulseEvent
VirtualAllocEx
GetModuleHandleA
WritePrivateProfileSectionA
MultiByteToWideChar
VirtualUnlock
LocalFree

winspool.drv

DeletePrinterDriverA
DeletePrinterConnectionW
GetJobA
DeletePrinterDriverExW
GetPrinterDriverA
AddPrintProcessorW
DeletePrinter
GetPrinterDriverW
AddPrintProcessorA

netapi32

NetServerTransportDel
NetConfigGetAll
NetGetJoinableOUs
NetErrorLogClear
NetGroupAdd
NetFileGetInfo
Netbios
NetGetAnyDCName
NetFileEnum
NetConfigSet

msvcrt

_adjust_fdiv
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__mb_cur_max
_isctype
_pctype
__setusermatherr
__p__commode
__p__fmode
_controlfp
_except_handler3
__set_app_type

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.blr
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bec4674eee449b66b520fd5ef371df7c

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

winspool.drv

netapi32

msvcrt

Sections

.text Size: 18KB - Virtual size: 18KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 101KB

.blr Size: 318KB - Virtual size: 318KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 18KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 101KB

.blr
Size: 318KB - Virtual size: 318KB

.rsrc
Size: 4KB - Virtual size: 4KB