d0670c1fe49b90fbc9cdc4851a35ea17aa1a4733c935bf3f0bb29ad800fe8b33

Sharing

Copy URL Twitter E-mail

General

Target

d0670c1fe49b90fbc9cdc4851a35ea17aa1a4733c935bf3f0bb29ad800fe8b33
Size

254KB
MD5

36f0061f078cde76b987daf6245ff02e
SHA1

0bd4d8aa0cbe1033180e0d4880b935bb58c46cfa
SHA256

d0670c1fe49b90fbc9cdc4851a35ea17aa1a4733c935bf3f0bb29ad800fe8b33
SHA512

056672c348bed98b2e12d39f621c4a6c029c331070af8296c8ff97b4399e0cfeda8e40409373edd0c8e3c0df15fda5bd3aa3d686f8936f68af9ad8efd0bb41df
SSDEEP

6144:KU6BtdJ71shxY6rBOywY2XlM+T/GIsw3IhvZayY6Gl:K5mhlOywJGku03I7a1l

Score

N/A

Malware Config

Signatures

Files

d0670c1fe49b90fbc9cdc4851a35ea17aa1a4733c935bf3f0bb29ad800fe8b33
.exe windows x86

d175c9bb928e0e9940e33a5d1589f852

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AdjustWindowRectEx
FindWindowA
AdjustWindowRect
BringWindowToTop
IsChild
SendDlgItemMessageA
CascadeWindows
GetWindow
ShowWindow
ArrangeIconicWindows
GetSysColor
DefDlgProcA
DialogBoxParamA
OpenClipboard
TileWindows
GetNextDlgTabItem

gdi32

GdiGetBatchLimit
FloodFill
AddFontResourceW
GetBkColor
CreateEllipticRgn
ExcludeClipRect
CreateDCA
CombineRgn
Escape
CopyEnhMetaFileA
Arc
DeleteMetaFile
EndDoc
GdiFlush
Ellipse

advapi32

RegSetValueExA
BackupEventLogW
RegEnumValueA
GetTokenInformation
OpenThreadToken
RegFlushKey
AdjustTokenGroups
RegEnumKeyA
ReportEventW

kernel32

CompareStringA
WaitForSingleObject
SetThreadLocale
GlobalAlloc
GlobalFree
VirtualProtect
GetOEMCP
GlobalFlags
ReleaseSemaphore
VirtualQuery
GetStartupInfoA
GetPrivateProfileStructA
GetProcAddress
GetEnvironmentVariableA
GetModuleHandleA
HeapSize
VirtualAlloc
GetUserDefaultLangID

winspool.drv

AbortPrinter
AddPrinterDriverExA
EnumPrinterDriversA
DeletePrinterConnectionW
GetJobA
GetPrinterA
EnumPrintProcessorsA
AddPrintProcessorW
AddPrinterConnectionA
DeletePrinterKeyA
SetPrinterA
GetPrinterW
AddPrinterDriverW
DeletePrinter

netapi32

NetAuditRead
NetServerEnum
NetConnectionEnum
NetAuditClear
NetFileEnum
NetGetJoinableOUs
NetErrorLogClear
NetGetAnyDCName
NetGetJoinInformation
NetGetDCName
NetConfigSet
NetFileGetInfo
NetGroupAddUser

msvcrt

_adjust_fdiv
_exit
__mb_cur_max
_isctype
_pctype
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_XcptFilter
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 366KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xntxhs
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d175c9bb928e0e9940e33a5d1589f852

Headers

File Characteristics

Imports

user32

gdi32

advapi32

kernel32

winspool.drv

netapi32

msvcrt

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 366KB

.xntxhs Size: 205KB - Virtual size: 205KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 366KB

.xntxhs
Size: 205KB - Virtual size: 205KB

.rsrc
Size: 24KB - Virtual size: 23KB