5962a9b02d7eaccb9983fca2d895e149e44e3acbb3f7ffc89ed26605f45fbea9

Sharing

Copy URL Twitter E-mail

General

Target

5962a9b02d7eaccb9983fca2d895e149e44e3acbb3f7ffc89ed26605f45fbea9
Size

124KB
MD5

aa3b59fd7653baad84b89c6d099dfe50
SHA1

33d45c1bb3e7e251cd013182ccbeacb991c56dbc
SHA256

5962a9b02d7eaccb9983fca2d895e149e44e3acbb3f7ffc89ed26605f45fbea9
SHA512

f10d51b9f1bc80171b8ffeb531df1ca2e550935fb6faf7073127c42a638b2e5dba7dea8246eaee149dfd958a2b7dc71425ce45288d31d931a6b89a6bcfd49f68
SSDEEP

3072:3UoG68ji1j7z9mQL4aXQBgO4wzQhsG2jG2d/DVy0qhpvJ:3Br8jmj3zLcgDwJJVZDVy0qhpB

Score

N/A

Malware Config

Signatures

Files

5962a9b02d7eaccb9983fca2d895e149e44e3acbb3f7ffc89ed26605f45fbea9
.dll windows x86

66824d03bb1e909ad8a07c640480dde6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
HeapWalk
WriteConsoleOutputCharacterW
GetProfileStringA
GetLongPathNameA
FreeLibraryAndExitThread
GetAtomNameA
GetEnvironmentVariableA
QueryDosDeviceW
GenerateConsoleCtrlEvent
SleepEx
WaitCommEvent
LoadLibraryA
ClearCommError
SwitchToFiber
FindNextVolumeMountPointW
TerminateProcess
RegisterWaitForInputIdle
EraseTape
HeapValidate
GetProfileIntW
ExpungeConsoleCommandHistoryA
SetConsoleMaximumWindowSize
GetFileInformationByHandle
EnumResourceNamesA
LockFile
SetCommConfig
SetCalendarInfoW
GetCurrentThread
SetWaitableTimer
IsValidLocale
SetFilePointer
GetTapeStatus
VerLanguageNameA
FileTimeToDosDateTime
EnumCalendarInfoA
SetThreadExecutionState
EnumResourceLanguagesA
OpenEventA
GetLastError
SetThreadLocale
GetVolumeInformationW
GetSystemTime
HeapFree
CancelWaitableTimer
SystemTimeToFileTime
GetPrivateProfileSectionA
OpenFileMappingA
GlobalMemoryStatus
GetCurrencyFormatA
SystemTimeToTzSpecificLocalTime
GetConsoleAliasExesLengthA
FreeLibrary
WriteFile
LockResource
ChangeTimerQueueTimer
SetVDMCurrentDirectories
AreFileApisANSI
WaitNamedPipeW
GetPrivateProfileStructW
SetComputerNameW
GetCPInfoExW
CreateHardLinkW
FindAtomW
GetConsoleKeyboardLayoutNameW
EnumCalendarInfoW
GlobalReAlloc
SetUnhandledExceptionFilter
AddAtomA
DeleteFiber
GetProcAddress
GetHandleInformation
VirtualAlloc
GetVersion
GetModuleHandleA
EnumDateFormatsExA

gdi32

GetICMProfileW
GetOutlineTextMetricsA
CombineTransform
GetTextExtentExPointA
GetStockObject
GetEnhMetaFileHeader
SetBrushOrgEx
AnimatePalette
GdiPlayPageEMF
WidenPath
SelectObject
GetDIBits
SetColorAdjustment
GdiDeleteSpoolFileHandle
SetViewportExtEx
StrokePath
CreateCompatibleBitmap
PolyTextOutA
GetRasterizerCaps
CreateDIBSection
DeleteDC
GetFontData
TextOutW
GetColorAdjustment
GetTextExtentExPointI
SetPixelFormat
DescribePixelFormat
GetEnhMetaFileDescriptionW
GetCharABCWidthsI
GdiGetPageHandle
CreatePatternBrush
CreateFontIndirectW
CreateCompatibleDC
SetEnhMetaFileBits
GdiPlayEMF
GetNearestColor
SetRectRgn
GetClipRgn
OffsetRgn
GetBkColor
FlattenPath
GetObjectA
CombineRgn
UpdateICMRegKeyA
SetBkColor
AbortDoc
GetObjectType
ColorMatchToTarget

opengl32

glVertex4i
glColor3i
glPolygonMode
glColor3d
glPopName
glGetLightiv
wglUseFontOutlinesA
glRectiv
glPointSize
glTranslatef
glRasterPos2i
glTexCoord1fv
wglCreateContext
glTexCoord2i
glVertexPointer
glDebugEntry
wglDeleteContext
glNormal3fv
glAccum
glEndList
glTexImage1D
glColor4uiv
glColor3uiv
glTexGenf
glTexSubImage2D
glDrawArrays
wglMakeCurrent
glTexEnviv
glClear
glCopyTexImage2D
GlmfPlayGlsRecord
glRasterPos4iv
glGetBooleanv
glGetTexParameteriv

version

VerFindFileA
VerFindFileW
VerInstallFileW

winspool.drv

ord210
DevQueryPrint
StartDocPrinterA
SpoolerDevQueryPrintW
ord209
PrinterMessageBoxA
ord103
ord100
AddPrinterDriverW
DEVICECAPABILITIES
StartDocDlgA
QueryColorProfile
AddPortExW
SetPrinterA
CreatePrinterIC
SetPrinterDataA
AddPrinterConnectionW
DevQueryPrintEx
EndPagePrinter
ResetPrinterA
AddPrintProvidorA
DeletePortA
DocumentPropertySheets
EnumPortsW
AddMonitorA
EXTDEVICEMODE
DeletePrinterDataA
QuerySpoolMode
ExtDeviceMode
EnumPortsA
DeviceCapabilitiesA
AbortPrinter
DocumentPropertiesA
ord213
DeleteMonitorW
OpenPrinterA
AddPrinterW
EnumPrinterDriversA
DeletePrintProcessorA
ScheduleJob
SetFormW
SetPrinterDataExA
AddPrinterConnectionA
FindFirstPrinterChangeNotification
EnumPrintProcessorsA

msvcrt

_mbsnbset
iswalpha
_mbsnicoll
fclose
_i64toa
fwrite
_safe_fdivr
_atoi64
fprintf
feof
_dstbias
fopen
ferror
fputs
_wfopen
ftell
_itoa
getwchar
fputc
_mbcasemap
sprintf
_unlink
fmod
fwprintf
fsetpos
printf
_setmbcp
_errno
__winitenv
__p__fmode
fread
_ui64tow
memset
fseek
_mbsrchr
_mbsinc
_outpd

Exports

Exports

Dkcasvm
Fpeqy
Mmxhu
Mqkcemw
Ptwh
Tuwmz
Ulju
Vcgbd
Wyeghgu
Xmjbqifwai

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66824d03bb1e909ad8a07c640480dde6

Headers

File Characteristics

Imports

kernel32

gdi32

opengl32

version

winspool.drv

msvcrt

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 52KB - Virtual size: 49KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 52KB - Virtual size: 49KB

.reloc
Size: 8KB - Virtual size: 7KB