c0c7e35058c4e4ffb4d9d4c8f59d957d292e517fa559b6a6a25c49eb82baf94b

Sharing

Copy URL

Twitter E-mail

General

Target

c0c7e35058c4e4ffb4d9d4c8f59d957d292e517fa559b6a6a25c49eb82baf94b
Size

940KB
MD5

708af18067c9f31d8c0271292a9cb71c
SHA1

8d6443702ca0aaea1fe975e0c082b2938204e3d8
SHA256

c0c7e35058c4e4ffb4d9d4c8f59d957d292e517fa559b6a6a25c49eb82baf94b
SHA512

b075a8d38b89f3e2b041aa84b96661a5ad6bebad5b055146506a622845fa6be5f36a82185bdeeabbe842187eb90b7f5a64b05e16710ff28b61031f3048e6e4e9
SSDEEP

24576:UHusDKGFz7LBZyRIckJj0ZCT8ZUvn1JSLKmND:CuGlDy2ccT4UPSmmV

Score

N/A

Malware Config

Signatures

Files

c0c7e35058c4e4ffb4d9d4c8f59d957d292e517fa559b6a6a25c49eb82baf94b
.exe windows x86

59f84a5907fb0df8624cd348e42ffe4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winspool.drv

OpenPrinterA
GetJobA
ord204
ClosePrinter
DocumentPropertiesA
GetPrinterA

user32

RegisterClassExW
UnregisterClassW
LoadStringW
LoadIconW
LoadCursorW
GetCapture
DestroyWindow
ShowWindow
GetMenuItemID
GetDlgItemTextW
DefWindowProcW
IntersectRect
CreateWindowExW
MessageBoxW
RegisterClassW

comctl32

ImageList_Create
ImageList_GetIconSize
ImageList_Add
DestroyPropertySheetPage
ImageList_ReplaceIcon
ImageList_BeginDrag
ImageList_Draw
ImageList_LoadImageA
ImageList_DragEnter
ord17

advapi32

RegDeleteValueA
RegSetValueExA
RegNotifyChangeKeyValue
RegCloseKey
RegOpenKeyExA
RegEnumKeyA
RegQueryValueExA

shell32

Shell_NotifyIconA
SHGetMalloc
ord155
SHGetPathFromIDListA
ShellExecuteA
SHGetSpecialFolderLocation
ExtractIconA

kernel32

GetLastError
DebugBreak
GetCPInfo
GetModuleHandleW
RtlUnwind
GetCurrentDirectoryA
HeapAlloc
WriteFile
GetCurrentThread
SetErrorMode
TlsFree
ResumeThread
IsBadWritePtr
GlobalReAlloc
LCMapStringA
GetEnvironmentStrings
HeapReAlloc
GetACP
GetModuleFileNameA
GlobalDeleteAtom
VirtualFree
GetFileSize
VirtualAlloc
TlsSetValue
MultiByteToWideChar
HeapValidate
TerminateProcess
SetConsoleCtrlHandler
FlushFileBuffers
SetFilePointer
EnterCriticalSection
SetHandleCount
GetCommandLineW
SetStdHandle
GetEnvironmentStringsW
GetStringTypeW
GetVersionExA
VirtualQuery
LoadLibraryA
GetCommandLineA
FreeEnvironmentStringsA
WriteConsoleA
GetStringTypeA
IsDebuggerPresent
IsBadReadPtr
CreateProcessA
GetConsoleOutputCP
LocalFileTimeToFileTime
FreeLibrary
SystemTimeToFileTime
CloseHandle
OutputDebugStringA
GetProcAddress
LCMapStringW
GetSystemTime
QueryPerformanceCounter
GetFileAttributesA
HeapCreate
CreateFileA
HeapDestroy
SetUnhandledExceptionFilter
GetCurrentProcess
UnhandledExceptionFilter
SetFileTime
GlobalSize
GetCurrentProcessId
GetLocalTime
ReadFile
InitializeCriticalSection
SetEndOfFile
GetOEMCP
GetTickCount
SetEnvironmentVariableA
GetTimeZoneInformation
OutputDebugStringW
lstrcmpiA
TlsGetValue
UnlockFile
lstrcpyA
CompareStringW
WideCharToMultiByte
GetCurrentThreadId
GetStartupInfoA
WriteConsoleW
GetSystemTimeAsFileTime
LeaveCriticalSection
CreateMutexW
MulDiv
HeapFree
InterlockedExchange
DeviceIoControl
DeleteCriticalSection
lstrlenA
LockFile
GetConsoleCP
lstrlenW
TlsAlloc
LoadLibraryW
GetModuleFileNameW
IsValidCodePage
SetLastError
GetLocaleInfoA
InterlockedDecrement
GetDateFormatA
ExitProcess
FreeEnvironmentStringsW
LoadResource
GetVersion
GetConsoleMode
GetTimeFormatA
RaiseException
GetFileType
GetStdHandle
CompareStringA
GetStartupInfoW
GetModuleHandleA
InterlockedIncrement
GetProcessHeap

ole32

CoRegisterClassObject
CLSIDFromProgID
RegisterDragDrop
CoTaskMemFree
DoDragDrop
CreateStreamOnHGlobal
OleGetClipboard
CoFreeUnusedLibraries
OleDuplicateData
CoTaskMemAlloc
CoCreateGuid
CoInitialize
CoInitializeEx
OleSetClipboard
CoCreateInstance
OleUninitialize
ReleaseStgMedium
CoTaskMemRealloc
CoRevokeClassObject
OleLockRunning
OleFlushClipboard
OleIsCurrentClipboard
CLSIDFromString
OleInitialize
StgOpenStorageOnILockBytes
StringFromCLSID
StringFromGUID2
CoUninitialize
RevokeDragDrop

Sections

.text
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 504KB - Virtual size: 500KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59f84a5907fb0df8624cd348e42ffe4f

Headers

File Characteristics

Imports

winspool.drv

user32

comctl32

advapi32

shell32

kernel32

ole32

Sections

.text Size: 224KB - Virtual size: 223KB

.rdata Size: 504KB - Virtual size: 500KB

.data Size: 116KB - Virtual size: 114KB

.rsrc Size: 92KB - Virtual size: 89KB

.text
Size: 224KB - Virtual size: 223KB

.rdata
Size: 504KB - Virtual size: 500KB

.data
Size: 116KB - Virtual size: 114KB

.rsrc
Size: 92KB - Virtual size: 89KB