b4938cfc6aa20078b4f6f7c6f6297cf2c0676209fa9a63f4dd255592b89d7281

Sharing

Copy URL Twitter E-mail

General

Target

b4938cfc6aa20078b4f6f7c6f6297cf2c0676209fa9a63f4dd255592b89d7281
Size

236KB
MD5

e46f7ee156f3ffa120abdcc034833fa2
SHA1

59718d6c2280d8193fd103b470d230abac91cfe4
SHA256

b4938cfc6aa20078b4f6f7c6f6297cf2c0676209fa9a63f4dd255592b89d7281
SHA512

06e37971809fd2f0884f5bf78b06ba8d7895df9cc4e54e0e8a585fe88e600eae09600489aa8b9f638c68e0e7967b2d87b09d9bab9078b705e31636f4238ad472
SSDEEP

6144:JA+kZsEZQ68Zj8gk794OQSiXnt67p17+kTq8x2A+:Jrkx8Zj8H9cLXt6z7vuW

Score

N/A

Malware Config

Signatures

Files

b4938cfc6aa20078b4f6f7c6f6297cf2c0676209fa9a63f4dd255592b89d7281
.exe windows x86

9da0073a93f6cfdf6d229619bc829221

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
MultiByteToWideChar
GetStringTypeW
IsBadReadPtr
SetUnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
LCMapStringA
LCMapStringW
CompareStringA
CompareStringW
ReadFile
CloseHandle
DeleteFileA
CreateFileA
WritePrivateProfileStringA
FindFirstFileA
GetCurrentDirectoryA
GetPrivateProfileStringA
GetPrivateProfileIntA
IsBadCodePtr
lstrcpynA
WriteFile
GetFileType
SetEnvironmentVariableA
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
ExitProcess
TerminateProcess
GetCurrentProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapFree
HeapAlloc
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
WideCharToMultiByte
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetProcAddress
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings

user32

MessageBoxA
DestroyIcon
LoadIconA
FillRect
DrawTextA
wsprintfA
GetDlgItem
SendMessageA
CheckDlgButton
SetDlgItemInt
IsDlgButtonChecked
GetDlgItemInt
DialogBoxParamA
EndDialog

gdi32

MoveToEx
LineTo
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
StretchBlt
GetTextExtentPointA
SetTextAlign
TextOutA
CreateFontIndirectA
DeleteObject
SelectObject
EndDoc
DeleteDC
CreateDCA
SetBkMode
GetDeviceCaps
GetCurrentObject
StartDocA
EndPage
StartPage
CreatePen

winspool.drv

EnumPrintersA

comdlg32

PrintDlgA

shell32

Shell_NotifyIconA

Sections

.text
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9da0073a93f6cfdf6d229619bc829221

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

shell32

Sections

.text Size: 44KB - Virtual size: 41KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 176KB - Virtual size: 177KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 44KB - Virtual size: 41KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 176KB - Virtual size: 177KB

.rsrc
Size: 4KB - Virtual size: 3KB