4a635a8478da6e0f561b8d651c48254fb20cba819e1118c3a7aa0aaabda528fa

General

Target

4a635a8478da6e0f561b8d651c48254fb20cba819e1118c3a7aa0aaabda528fa
Size

84KB
MD5

12558b64ab2299ecd84d80e4ecf4df0a
SHA1

7ad41044e416b7ce228bb19bd1ad7e57465fa76e
SHA256

4a635a8478da6e0f561b8d651c48254fb20cba819e1118c3a7aa0aaabda528fa
SHA512

f3ea69a1e912b338fa4abb11ff1aa3f7f79488548aadbd74a79145f06cac31ad9841791e061fbd7653aa331f81ec7bf0ebf4425688e53601eb1b44c4bd668662
SSDEEP

1536:DB7N6TXCio6MhKb0GJy/8DrqXqcC9x2UAdlObBDypghBdLX:DpN6O56lNyUqavIOSKPL

Score

N/A

Malware Config

Signatures

Files

4a635a8478da6e0f561b8d651c48254fb20cba819e1118c3a7aa0aaabda528fa
.dll windows x86

3f30a3ee59821bac6a4b2cecbb6a0270

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetProcAddress
IsValidLocale
GetModuleHandleA
GetVersion
LoadLibraryA
GetHandleInformation
GetSystemTime

winspool.drv

EndDocPrinter
AddMonitorA
EnumFormsA
DeletePrinterDataA
GetPrintProcessorDirectoryA
AddPrinterA
GetJobA
EnumPrintersA
StartDocPrinterA
DeviceCapabilitiesA
SetPortA
ResetPrinterA
DeletePrinterDriverA
EnumPrinterDataExA
ConfigurePortA
DeleteFormA
AddPortA
DeletePrinterKeyA
AddPrinterDriverExA
FindNextPrinterChangeNotification
SetFormA
ConnectToPrinterDlg
ClosePrinter
EnumPrinterDataA
WritePrinter
DeleteMonitorA
StartPagePrinter
AbortPrinter
EnumPortsA
SetPrinterDataA
EnumMonitorsA
AddPrintProvidorA
GetPrinterDriverDirectoryA
SetJobA

msvcrt

_onexit
__dllonexit
_adjust_fdiv
malloc
_initterm
free
fopen
sprintf
printf
ftell
fclose
fwrite
memset
fseek
fread
_unlink

Exports

Exports

dmxo

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3f30a3ee59821bac6a4b2cecbb6a0270

Headers

File Characteristics

Imports

kernel32

winspool.drv

msvcrt

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 48KB - Virtual size: 47KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 48KB - Virtual size: 47KB

.reloc
Size: 4KB - Virtual size: 3KB