92733ebf0d9d513478b6f8cc45816bd416b37ee7fb985eee1282316298b295a5

Sharing

Copy URL Twitter E-mail

General

Target

92733ebf0d9d513478b6f8cc45816bd416b37ee7fb985eee1282316298b295a5
Size

301KB
MD5

085f9f550c2a5540acff92f3670762f8
SHA1

31149d1e9b40ba9a9a86cd88665aba2b4af07ab8
SHA256

92733ebf0d9d513478b6f8cc45816bd416b37ee7fb985eee1282316298b295a5
SHA512

9080d6faa9ee4b78d878bd48499d63dcc75bc3ff33b06cb9a6c659e74f38f2171369c378e2c6cd5adda69404cb8443fdfa2242dcaf5b0082b134d3e93615522b
SSDEEP

6144:zfmqhHQEogF+TAU1iDluBQEV6UMM4/VKVsHDi:JL6AU1iDlcQ1UMMSKID

Score

N/A

Malware Config

Signatures

Files

92733ebf0d9d513478b6f8cc45816bd416b37ee7fb985eee1282316298b295a5
.dll windows x86

f3df2a0533c4d0c1555baa55a11521a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
HeapCreate
MulDiv
CloseHandle
DeleteFileW
WriteFile
ReadFile
GetTempFileNameW
CreateFileW
MoveFileExW
CreateDirectoryW
FreeLibrary
GetProcAddress
LoadLibraryW
WideCharToMultiByte
HeapFree
InterlockedIncrement
InterlockedDecrement
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
HeapDestroy
SetUnhandledExceptionFilter
SetErrorMode
LoadLibraryExW
UnmapViewOfFile
GetFileSize
CreateFileMappingW
MapViewOfFile
GetLocaleInfoW
CompareFileTime
GetFullPathNameW
VirtualFree
GetCPInfo
GetFileTime
FindResourceW
LoadResource
LockResource
MultiByteToWideChar
VirtualAlloc
GetSystemInfo
RaiseException
GetUserDefaultUILanguage
GetACP
Sleep
SetLastError
LocalAlloc
HeapAlloc
GetCurrentProcess
LocalFree

msvcrt

malloc
_adjust_fdiv
_initterm
free
??2@YAPAXI@Z
ceil
floor
wcstod
iswctype
_vsnprintf
_wcsnicmp
_stricmp
wcsrchr
memmove
_vsnwprintf
wcscmp
wcslen
qsort
_wcsicmp
_ultoa
_except_handler3
strncmp
strrchr
strchr
_wtol
_strnicmp
isspace
??3@YAXPAX@Z

user32

CheckRadioButton
ShowWindow
GetDlgItem
SetDlgItemTextW
SetWindowLongW
EndDialog
GetWindowLongW
DialogBoxParamW
SetDlgItemTextA
LoadStringA
GetDlgItemTextW
SendDlgItemMessageW
SendMessageW
SetFocus
CheckDlgButton
WinHelpW
EnableWindow
MessageBoxW
MessageBeep
LoadStringW
GetAppCompatFlags2

winspool.drv

DeleteFormW
GetPrinterDataW
SetPrinterDataW
DeletePrinterDataW
GetPrinterW
EnumFormsW
GetFormW
GetPrinterDriverW
OpenPrinterW
SetPrinterW
ClosePrinter
AddFormW

gdi32

DeleteDC
CreateICW
ExtEscape
EnumFontFamiliesW

Exports

Exports

DevQueryPrintEx
DllMain
DrvConvertDevMode
DrvDeviceCapabilities
DrvDevicePropertySheets
DrvDocumentEvent
DrvDocumentPropertySheets
DrvDriverEvent
DrvPrinterEvent
DrvQueryColorProfile
DrvQueryJobAttributes
DrvSplDeviceCaps
DrvUpgradePrinter

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3df2a0533c4d0c1555baa55a11521a4

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

winspool.drv

gdi32

Exports

Exports

Sections

.text Size: 107KB - Virtual size: 106KB

.data Size: 173KB - Virtual size: 173KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 107KB - Virtual size: 106KB

.data
Size: 173KB - Virtual size: 173KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 4KB - Virtual size: 3KB