987860284c87bc6ab61e6b5a5fa4ffc3a8a91c7760d62fc0723901f77da96a32

Sharing

Copy URL Twitter E-mail

General

Target

987860284c87bc6ab61e6b5a5fa4ffc3a8a91c7760d62fc0723901f77da96a32
Size

204KB
MD5

e9f9fe2585ebb0bb7f3c4691ba21b68a
SHA1

8b5223a674ef48586373f23ce0f0d4945ce15fc0
SHA256

987860284c87bc6ab61e6b5a5fa4ffc3a8a91c7760d62fc0723901f77da96a32
SHA512

619ddf6c32e4278a0625f7339770aa24b85f50d9c9555055656b4860f1b53d6b8b2d0e65b00c291c5425efc21c703449ef287bb9465f129a2ccf557baf08ea5a
SSDEEP

3072:DoaYwg+Oof9/9IcwacdKOo/aHeaywzZSns8adGPUeBrTmKOo4wpxQVu3wqnMs:ctXo195w02Tws8caBrTmK3pxd

Score

N/A

Malware Config

Signatures

Files

987860284c87bc6ab61e6b5a5fa4ffc3a8a91c7760d62fc0723901f77da96a32
.exe windows x86

280116c2a74dc07e1fe319cc686f0cc4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
IsBadReadPtr
GetNumberFormatA
GlobalAlloc
Beep
GetLocaleInfoW
ReadFile
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
GetProcAddress
Sleep
SetStdHandle
LCMapStringW
LCMapStringA
FlushFileBuffers
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
IsBadCodePtr
GetStringTypeW
GetStringTypeA
GetLongPathNameA
OutputDebugStringA
lstrlenA
GetCurrentProcess
GetCurrencyFormatA
GetLastError
CloseHandle
SystemTimeToFileTime
GetVersionExA
GlobalMemoryStatus
IsValidLocale
GetCurrentThread
MultiByteToWideChar
IsBadWritePtr
VirtualAlloc
MulDiv
GetCurrentThreadId
WriteFile
VirtualFree
HeapCreate
RaiseException
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapReAlloc
HeapAlloc
TerminateProcess
HeapSize
SetUnhandledExceptionFilter
HeapFree
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy

user32

CopyImage
GetDC
GetClassInfoW
GetSysColor
SetCursorPos
IsWindow
FlashWindowEx
OpenClipboard
GetClipboardData
PeekMessageW
GetGuiResources
CloseClipboard
IsCharAlphaA
IsWindowEnabled
PostMessageA
MessageBoxA
LoadCursorA
IsClipboardFormatAvailable
EmptyClipboard
FindWindowA
FlashWindow

gdi32

DeleteObject
CreateCompatibleDC
GetObjectType
DeleteDC
Escape
EnumFontFamiliesA
GetDeviceCaps
CreateFontA
CreateEllipticRgn
SetBkMode
SelectObject

winspool.drv

GetJobA
OpenPrinterA

advapi32

GetTokenInformation
OpenThreadToken

shlwapi

PathIsSameRootA
PathAppendA

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

280116c2a74dc07e1fe319cc686f0cc4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shlwapi

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 8KB - Virtual size: 14KB

.rsrc Size: 120KB - Virtual size: 120KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 8KB - Virtual size: 14KB

.rsrc
Size: 120KB - Virtual size: 120KB