758255ba2b241c6f185e73b8ddca9ae700b5a8e96fcdf4f475aa11aba461a2a5

Sharing

Copy URL Twitter E-mail

General

Target

758255ba2b241c6f185e73b8ddca9ae700b5a8e96fcdf4f475aa11aba461a2a5
Size

696KB
MD5

6d79721c84b0d1aec2a6582129c13381
SHA1

ca077e1e7b7c5f2c646e283545576da7e3b1fabf
SHA256

758255ba2b241c6f185e73b8ddca9ae700b5a8e96fcdf4f475aa11aba461a2a5
SHA512

dbd837b57a2173ceae997bc69553c2ad48df2fab946d8f6a5419151bf61347146a3c6ae84b2baef506b87cda83227bba44d5764303506140337f6d7738222367
SSDEEP

12288:6+PwoGlm2Y6Xw8kMRcccco28lVGns9ctGWBm7W7W6IHL0NlzyceOKP:6hoT2Ygfzcccco3Gns97WGWy6IoFc

Score

N/A

Malware Config

Signatures

Files

758255ba2b241c6f185e73b8ddca9ae700b5a8e96fcdf4f475aa11aba461a2a5
.exe windows x86

750addbbc1fe021326d5eb195dd3a5b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFileInfoA
ShellExecuteExA
ShellExecuteA
SHGetMalloc
Shell_NotifyIconA
SHChangeNotify
ord155
SHGetSpecialFolderLocation

winspool.drv

SetPrinterW
ord204
GetPrinterW
SetPrinterDataW
EnumJobsW
OpenPrinterW
EnumPrintersW
FreePrinterNotifyInfo
GetJobW
FindNextPrinterChangeNotification
SetJobW
FindFirstPrinterChangeNotification
DeviceCapabilitiesW
EnumPortsW
ClosePrinter

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerLanguageNameA
VerQueryValueA

advapi32

RegDeleteValueA
RegCreateKeyExA
OpenProcessToken
InitializeSecurityDescriptor
GetLengthSid
RegCloseKey

gdi32

BitBlt
CreateRectRgnIndirect
CreateFontA
GetStockObject
MoveToEx
CreateFontIndirectA
SetTextAlign
UnrealizeObject
GetDeviceCaps
SelectPalette
DPtoLP
SetBkColor
SetMapMode
GetPaletteEntries
SelectObject
SetWindowExtEx
GetDCOrgEx
SetStretchBltMode
SetRectRgn
IntersectClipRect
GetDIBits
DeleteObject
SaveDC
RestoreDC

comctl32

ImageList_Destroy
ImageList_BeginDrag
ord17
ImageList_ReplaceIcon
ImageList_DragEnter

kernel32

HeapFree
WideCharToMultiByte
FlushFileBuffers
GetUserDefaultLCID
SetLastError
GetModuleFileNameA
GetCurrentProcess
VirtualFree
GetDateFormatA
GetACP
GetCurrentThread
TlsGetValue
GetVersionExA
GetLastError
DeleteCriticalSection
TerminateProcess
GetModuleHandleA
UnhandledExceptionFilter
EnterCriticalSection
HeapDestroy
SetFilePointer
QueryPerformanceCounter
FatalAppExitA
GetCPInfo
GetStdHandle
GetFileType
LoadLibraryA
LCMapStringA
GetOEMCP
WriteFile
TlsFree
HeapSize
GetLocaleInfoW
ExitProcess
HeapAlloc
GetSystemTimeAsFileTime
SetHandleCount
TlsAlloc
InitializeCriticalSection
GetTimeFormatA
CompareStringA
CloseHandle
CompareStringW
VirtualProtect
SetStdHandle
GetTimeZoneInformation
HeapCreate
IsValidCodePage
HeapReAlloc
GetEnvironmentStringsW
InterlockedExchange
IsBadWritePtr
IsValidLocale
FreeEnvironmentStringsA
MultiByteToWideChar
RtlUnwind
LeaveCriticalSection
FreeEnvironmentStringsW
TlsSetValue
GetTickCount
GetEnvironmentStrings
GetCurrentProcessId
GetSystemInfo
GetCommandLineA
GetStringTypeW
GetStringTypeA
LCMapStringW
GetLocaleInfoA
GetProcAddress
GetStartupInfoA
SetEnvironmentVariableA
EnumSystemLocalesA
CreateMutexA
ReadFile
GetCurrentThreadId
VirtualAlloc
VirtualQuery

user32

DrawFocusRect
ShowWindow
UnhookWindowsHookEx
EnableWindow
SetWindowLongA
AppendMenuA
PeekMessageA
AdjustWindowRectEx
GetCapture
GetSysColor
GetWindowTextLengthA
MessageBoxA
InvalidateRect
SendMessageA
RegisterWindowMessageA
CreateAcceleratorTableA
ValidateRect
RegisterClassA
IsRectEmpty
EndDialog
SetWindowPos
GetParent
GetMenuItemInfoA
ReleaseCapture
SetScrollPos
GetDlgCtrlID
InflateRect
IsWindow
DrawTextExA
DispatchMessageA
SetRectEmpty
TranslateMessage
GetClientRect
GetDC
GetDesktopWindow
KillTimer
CloseClipboard
RegisterClassExA
LoadIconA
SetMenuDefaultItem
FindWindowA
UnregisterClassA
GetSubMenu
DestroyWindow
ReleaseDC
GetWindowTextA
GetActiveWindow
RedrawWindow
GetFocus
EqualRect
TranslateAcceleratorA
GetWindowLongA
GetMessageA
GetMenu
FrameRect
DrawEdge

Sections

.text
Size: 92KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 452KB - Virtual size: 451KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

750addbbc1fe021326d5eb195dd3a5b2

Headers

File Characteristics

Imports

shell32

winspool.drv

version

advapi32

gdi32

comctl32

kernel32

user32

Sections

.text Size: 92KB - Virtual size: 88KB

.rdata Size: 452KB - Virtual size: 451KB

.data Size: 100KB - Virtual size: 107KB

.rsrc Size: 48KB - Virtual size: 44KB

.text
Size: 92KB - Virtual size: 88KB

.rdata
Size: 452KB - Virtual size: 451KB

.data
Size: 100KB - Virtual size: 107KB

.rsrc
Size: 48KB - Virtual size: 44KB