a9d90b969599c5aa2ddf5aac06687fbbde827d0ed4d74c7c93e33d80081ad857

Sharing

Copy URL Twitter E-mail

General

Target

a9d90b969599c5aa2ddf5aac06687fbbde827d0ed4d74c7c93e33d80081ad857
Size

218KB
MD5

fe1c7cf4ea7681d82d0d01daba1c5fc5
SHA1

4b4c6ddf9d8e6459dd3ee2194ade67634b293ba9
SHA256

a9d90b969599c5aa2ddf5aac06687fbbde827d0ed4d74c7c93e33d80081ad857
SHA512

735471ae9419815b11421df3b1f822b8149af47674878691ed17a0fed89e492a3eabace4c65e0aacfa646245922b6febccb75e6c29676f7243c6a49a9eefd7e6
SSDEEP

3072:tZnavcAd8Yo33qMofGonRVJogh4ydDeuw49T0FelNV4zUBaM35LuEvSunTfy9rAk:acAo3a2oRjDh4C6uTaW0on5ZnLyyVs

Score

N/A

Malware Config

Signatures

Files

a9d90b969599c5aa2ddf5aac06687fbbde827d0ed4d74c7c93e33d80081ad857
.exe windows x86

60dd9b93b255e0c685f1005ca82a0896

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
GlobalFree
lstrlenA
FormatMessageA
GetLastError
GlobalAlloc
Beep
GetProcAddress
LoadLibraryA
GetCurrencyFormatA
RaiseException
SetStdHandle
LCMapStringW
LCMapStringA
GetNumberFormatA
GetStringTypeA
CreatePipe
SetFilePointer
FlushFileBuffers
GetOEMCP
GetACP
GetCPInfo
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
WriteFile
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
Sleep
CloseHandle
VerLanguageNameA
GetCurrentThread
GetCurrentThreadId
GetStringTypeW
IsBadCodePtr
ReadFile
SetHandleCount
GetEnvironmentStringsW
SetHandleInformation
MultiByteToWideChar
GetLocaleInfoA
GetEnvironmentStrings
WideCharToMultiByte
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapReAlloc
HeapAlloc
TerminateProcess
GetCurrentProcess
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW

user32

GetParent
OpenIcon
CharNextA
LoadCursorA
OpenClipboard
IsClipboardFormatAvailable
EmptyClipboard
MoveWindow
LoadImageA
MessageBoxA
CreateWindowExA
SetRect
DrawCaption
CloseWindow
IsWindow
FlashWindowEx
GetDesktopWindow
GetWindowTextLengthW
GetWindowTextA
IsWindowEnabled
PostMessageA
PeekMessageW

gdi32

CreateCompatibleDC
GetObjectType
DeleteDC
CreateHatchBrush
EnumFontFamiliesA
DeleteObject

winspool.drv

GetJobA
OpenPrinterA

advapi32

GetTokenInformation
OpenThreadToken

shlwapi

PathCombineA

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60dd9b93b255e0c685f1005ca82a0896

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shlwapi

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 158KB - Virtual size: 158KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 158KB - Virtual size: 158KB