c86faa880279e31f4928bbf24db99f231a6733ca63d118f8cb6b5b1e22e77a89

Sharing

Copy URL

Twitter E-mail

General

Target

c86faa880279e31f4928bbf24db99f231a6733ca63d118f8cb6b5b1e22e77a89
Size

216KB
MD5

323df6344d2518bd061e4e32888c0b2a
SHA1

58846eb9caa638eea55223a6112212c813dfb51f
SHA256

c86faa880279e31f4928bbf24db99f231a6733ca63d118f8cb6b5b1e22e77a89
SHA512

2efeac473554f5bbbee618ca6ec2aeebc564ad76bae222b0776bcc73963afd3910a51fddf23c66e42690c9103ca7980081ed62259489443bc17b1118de09b2a6
SSDEEP

3072:tZnavcAd8Yo33qMofGonRVJogh4ydDeuw49T0FelNV4zUBaM35LuEvSunTfy9rA9:acAo3a2oRjDh4C6uTaW0on5ZnLyyVs+

Score

N/A

Malware Config

Signatures

Files

c86faa880279e31f4928bbf24db99f231a6733ca63d118f8cb6b5b1e22e77a89
.exe windows x86

60dd9b93b255e0c685f1005ca82a0896

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
GlobalFree
lstrlenA
FormatMessageA
GetLastError
GlobalAlloc
Beep
GetProcAddress
LoadLibraryA
GetCurrencyFormatA
RaiseException
SetStdHandle
LCMapStringW
LCMapStringA
GetNumberFormatA
GetStringTypeA
CreatePipe
SetFilePointer
FlushFileBuffers
GetOEMCP
GetACP
GetCPInfo
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
WriteFile
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
Sleep
CloseHandle
VerLanguageNameA
GetCurrentThread
GetCurrentThreadId
GetStringTypeW
IsBadCodePtr
ReadFile
SetHandleCount
GetEnvironmentStringsW
SetHandleInformation
MultiByteToWideChar
GetLocaleInfoA
GetEnvironmentStrings
WideCharToMultiByte
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapReAlloc
HeapAlloc
TerminateProcess
GetCurrentProcess
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW

user32

GetParent
OpenIcon
CharNextA
LoadCursorA
OpenClipboard
IsClipboardFormatAvailable
EmptyClipboard
MoveWindow
LoadImageA
MessageBoxA
CreateWindowExA
SetRect
DrawCaption
CloseWindow
IsWindow
FlashWindowEx
GetDesktopWindow
GetWindowTextLengthW
GetWindowTextA
IsWindowEnabled
PostMessageA
PeekMessageW

gdi32

CreateCompatibleDC
GetObjectType
DeleteDC
CreateHatchBrush
EnumFontFamiliesA
DeleteObject

winspool.drv

GetJobA
OpenPrinterA

advapi32

GetTokenInformation
OpenThreadToken

shlwapi

PathCombineA

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

60dd9b93b255e0c685f1005ca82a0896

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shlwapi

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 11KB

.rsrc Size: 158KB - Virtual size: 158KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 11KB

.rsrc
Size: 158KB - Virtual size: 158KB