955620ab5099fc3581ce6110a3ed35bc261f942526d5013a379d8c5d6e80dbdc

Sharing

Copy URL Twitter E-mail

General

Target

955620ab5099fc3581ce6110a3ed35bc261f942526d5013a379d8c5d6e80dbdc
Size

520KB
MD5

9872b9627d21aaedc25f29cfc5adf410
SHA1

4f1a518324c0568f7b83441c831dc142fdcc8eba
SHA256

955620ab5099fc3581ce6110a3ed35bc261f942526d5013a379d8c5d6e80dbdc
SHA512

1a3b8268a3a229a5a978ae3aadb4f5946ec56066b8b7e4da8b7969e2873ba0df84c03bc1267258b89056cfe5b797fb2ba9f407cb9b9058074db15bed89d22495
SSDEEP

12288:4CoWhC3QeEAda9BmSRMIayi1Aapm5szc+:4C7hCvEaa7HBtiGLv

Score

N/A

Malware Config

Signatures

Files

955620ab5099fc3581ce6110a3ed35bc261f942526d5013a379d8c5d6e80dbdc
.dll windows x86

1053478c3502420e342022181930c8cc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
HeapCreate
MulDiv
CloseHandle
DeleteFileW
CreateFileW
WriteFile
ReadFile
GetTempFileNameW
MoveFileExW
CreateDirectoryW
FreeLibrary
GetProcAddress
LoadLibraryW
WideCharToMultiByte
HeapFree
InterlockedIncrement
InterlockedDecrement
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
SetErrorMode
MultiByteToWideChar
GetFileSize
HeapDestroy
MapViewOfFile
CreateFileMappingW
GetFileAttributesW
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
GetLocaleInfoW
GetFileAttributesExW
GetSystemDefaultLCID
GetFileTime
CompareFileTime
CopyFileW
lstrlenW
FindResourceW
LoadResource
LockResource
SizeofResource
Sleep
SetLastError
LocalAlloc
HeapAlloc
UnmapViewOfFile
LocalFree
LoadLibraryExW

msvcrt

_adjust_fdiv
_initterm
free
strncpy
wcsncpy
??2@YAPAXI@Z
??3@YAXPAX@Z
_wcsnicmp
_stricmp
wcsrchr
memmove
_vsnwprintf
wcscmp
wcslen
qsort
_wcsicmp
malloc
strncmp
_wtol
iswctype
_strnicmp
isspace

rpcrt4

UuidCreate
UuidToStringW
RpcStringFreeW

user32

LoadCursorW
GetDlgItemTextW
WinHelpW
SendDlgItemMessageW
MessageBeep
MessageBoxW
LoadStringW
CheckRadioButton
ShowWindow
GetDlgItem
SetDlgItemTextW
SetWindowLongW
EndDialog
GetWindowLongW
DialogBoxParamW
LoadIconW
SetDlgItemTextA
EnableWindow
SetCursor
InvalidateRect
SendMessageW

winspool.drv

GetFormW
GetPrinterDriverW
EnumFormsW
SetPrinterW
ClosePrinter
DeletePrinterDataW
OpenPrinterW
AddFormW
DeleteFormW
GetPrinterDriverDirectoryW
GetPrinterDataW
GetPrinterW
SetPrinterDataW

gdi32

DeleteDC
EnumFontFamiliesW
SetGraphicsMode
CreateICW

Exports

Exports

DevQueryPrintEx
DllMain
DrvConvertDevMode
DrvDeviceCapabilities
DrvDevicePropertySheets
DrvDocumentEvent
DrvDocumentPropertySheets
DrvDriverEvent
DrvPrinterEvent
DrvQueryColorProfile
DrvQueryJobAttributes
DrvSplDeviceCaps
DrvUpgradePrinter

Sections

.text
Size: 167KB - Virtual size: 166KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 329KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1053478c3502420e342022181930c8cc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

rpcrt4

user32

winspool.drv

gdi32

Exports

Exports

Sections

.text Size: 167KB - Virtual size: 166KB

.data Size: 329KB - Virtual size: 328KB

.rsrc Size: 18KB - Virtual size: 18KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 167KB - Virtual size: 166KB

.data
Size: 329KB - Virtual size: 328KB

.rsrc
Size: 18KB - Virtual size: 18KB

.reloc
Size: 5KB - Virtual size: 4KB