9abe23e2a83be01ae4064fe069fb346dc12f13aad1a368f91608aa8781af80ae

Sharing

Copy URL Twitter E-mail

General

Target

9abe23e2a83be01ae4064fe069fb346dc12f13aad1a368f91608aa8781af80ae
Size

162KB
MD5

97e64d03d03795242567f9d1a644f0ac
SHA1

f429c066175e9ddde93f5cd524699bfa8dc56f72
SHA256

9abe23e2a83be01ae4064fe069fb346dc12f13aad1a368f91608aa8781af80ae
SHA512

73c1d78618a063f5a2b6efb47ab93f2c6c3cbc5e21d14a015d2c3a884b7d10eb9719fc9d5c03861f43020746e18ecca55fcdc626c5a10f4266ca1c570839f7dc
SSDEEP

3072:QKiFI0rto4Wkkbk7EEb1rbOQQ+x4vVBCEsrI2gQ8CGCn:QlFI0rtTW5D9vDNsrngM

Score

N/A

Malware Config

Signatures

Files

9abe23e2a83be01ae4064fe069fb346dc12f13aad1a368f91608aa8781af80ae
.exe windows x86

6a6972e66966d28a49d411d9e21f65bb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColor
MessageBoxA
ScreenToClient
SetLayeredWindowAttributes
SetTimer
wsprintfA
BeginDeferWindowPos

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

msvcrt

_except_handler3
_adjust_fdiv
atoi
_initterm
__getmainargs
__dllonexit
__CxxFrameHandler
_onexit
_itoa
_mbscmp
__p__commode
exit
free
malloc
sprintf
strrchr
strtok
__set_app_type

setupapi

SetupCancelTemporarySourceList
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA

shell32

SHGetFolderPathW

kernel32

lstrlenA
lstrcpyA
VirtualProtect
VirtualFree
VirtualAlloc
SetCurrentDirectoryA
LocalFree
LocalAlloc
LoadLibraryA
GetVersionExA
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetFileAttributesA
GetCurrentProcess
GetCurrentDirectoryA
FreeLibrary
FindFirstFileA
FindClose
ExitProcess
DeleteFileA
CreateDirectoryA

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExA

Exports

Exports

ARawDecodeDone
CchFileTimeToDateTimeW
CreateStreamOnFile
DeleteTexture
DescribeMcdPixelFormat
DupSession
FIsEmptyW
GetBookmark
GetQueryParameterInfo
Move
OpenTempTable
PszFromANSIStreamA
ReadSpan
SetWindowLongPtrAthW

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a6972e66966d28a49d411d9e21f65bb

Headers

DLL Characteristics

File Characteristics

Imports

user32

winspool.drv

msvcrt

setupapi

shell32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 57KB - Virtual size: 56KB

.rdata Size: 88KB - Virtual size: 88KB

.data Size: 14KB - Virtual size: 15KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 57KB - Virtual size: 56KB

.rdata
Size: 88KB - Virtual size: 88KB

.data
Size: 14KB - Virtual size: 15KB

.rsrc
Size: 2KB - Virtual size: 2KB