7a6e78fa3f7945ec0736ef7a12722d1d1e25c4819ea1bfe0cb568f4a59026e87

Sharing

Copy URL Twitter E-mail

General

Target

7a6e78fa3f7945ec0736ef7a12722d1d1e25c4819ea1bfe0cb568f4a59026e87
Size

97KB
MD5

3676d040698cec260afe868ef10afc61
SHA1

cd0c338bb4d4ec764f2587e6025e6471018851ed
SHA256

7a6e78fa3f7945ec0736ef7a12722d1d1e25c4819ea1bfe0cb568f4a59026e87
SHA512

35e6beab6a1fee48365d0f2733460a9083c18aa9a9e815f53be5f105dacf3cf266e8db471139511c17348511aa8ed62183df391e5067ca651216187c493d6c76
SSDEEP

1536:J5LvHdr8QQB51TgmhgADz/kdUJWP9SdiRZA4gJc6gJcWgJc:7Lv9ryZ8mhT/KyViRZEcXcDc

Score

N/A

Malware Config

Signatures

Files

7a6e78fa3f7945ec0736ef7a12722d1d1e25c4819ea1bfe0cb568f4a59026e87
.exe windows x86

77ce309793850345d5b5ddfc6bf5cccb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord4
ord8
FlatSB_SetScrollRange
ord17
CreatePropertySheetPageW
FlatSB_GetScrollRange
FlatSB_SetScrollProp
DestroyPropertySheetPage
PropertySheetA

advapi32

RegSetValueA
RegisterEventSourceW
RegRestoreKeyA
BackupEventLogW
RegOverridePredefKey
OpenThreadToken
RegNotifyChangeKeyValue
RegCreateKeyExA

kernel32

GetProfileSectionA
WritePrivateProfileStructA
GetPrivateProfileStructA
GetProfileStringA
GetModuleHandleA
GetProcAddress
VirtualAlloc
GetStartupInfoA

winspool.drv

DeletePrinterConnectionW
DeletePrinterKeyA
GetPrinterDriverW
EnumPrinterDriversW
AdvancedDocumentPropertiesA
ConnectToPrinterDlg
GetPrinterDriverA
GetPrinterW
AddFormA
AddPrintProcessorA
EnumJobsW
AddPrinterA
ConfigurePortA

netapi32

NetAuditClear
NetErrorLogWrite
Netbios
NetGetDCName
NetFileClose
NetFileGetInfo
NetGroupAddUser
NetErrorLogRead
NetErrorLogClear
NetGetJoinableOUs
NetConfigGetAll
NetConnectionEnum
NetAuditWrite
NetConfigSet
NetGetAnyDCName

msvfw32

ICClose
GetOpenFileNamePreviewA
DrawDibProfileDisplay
DrawDibStop

avifil32

AVIStreamFindSample
AVIStreamGetFrame
AVIStreamSampleToTime
AVIFileOpenA
AVIStreamStart
AVIStreamInfoA
EditStreamSetNameW
EditStreamCopy
AVIFileExit
AVIStreamSetFormat

avicap32

capCreateCaptureWindowA

usp10

ScriptItemize
ScriptGetProperties
ScriptXtoCP
ScriptIsComplex
ScriptString_pSize
ScriptStringCPtoX
ScriptGetFontProperties
ScriptApplyLogicalWidth
ScriptTextOut
ScriptStringGetOrder
ScriptString_pcOutChars
ScriptGetLogicalWidths

hlink

ord22

msvcrt

_fullpath
fprintf
free
fopen
freopen
asin
acos
atan
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77ce309793850345d5b5ddfc6bf5cccb

Headers

File Characteristics

Imports

comctl32

advapi32

kernel32

winspool.drv

netapi32

msvfw32

avifil32

avicap32

usp10

hlink

msvcrt

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 14KB - Virtual size: 17KB

.rsrc Size: 64KB - Virtual size: 63KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 14KB - Virtual size: 17KB

.rsrc
Size: 64KB - Virtual size: 63KB