225e843400c12b6cbd6bc90519acb854753621b30c62f3b714b4c72d13986623

Sharing

Copy URL

Twitter E-mail

General

Target

225e843400c12b6cbd6bc90519acb854753621b30c62f3b714b4c72d13986623
Size

650KB
MD5

9e6ba6dafb056951f248f895c7b19754
SHA1

e2486e5b7f82381774d0ef3de85fedcd502938ed
SHA256

225e843400c12b6cbd6bc90519acb854753621b30c62f3b714b4c72d13986623
SHA512

0f027ca25c4d53c04f1b530812b6c976eb3d62e3ac4fdd348cf2a45449fe5685c793d83b4b0b3421520abea03038b3332ce48b99ef34348dd92f6dc6127998e1
SSDEEP

12288:/IPzZnP0TUWmRYA7JfsLCCGySYQbd2kkzwpliqZ1NNqUY3ipygTLNVlb2Y:/IP9nB/1EL1GBUjQlrZ1jqXgLXlX

Score

N/A

Malware Config

Signatures

Files

225e843400c12b6cbd6bc90519acb854753621b30c62f3b714b4c72d13986623
.rar
2名高三女学生酒吧被下药，被带到酒店进行疯狂性虐待、各种姿势爆操视频.com
.exe windows x86

522b3c5f996a02332ad67eb756645e92

Code Sign

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
HeapFree
TerminateProcess
HeapSize
HeapReAlloc
GetACP
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
WriteFile
GetCurrentProcess
SetErrorMode
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalFree
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalFlags
lstrcpynA
GetLastError
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedIncrement
InterlockedDecrement
CloseHandle
GetModuleFileNameA
GlobalAlloc
lstrcmpA
GetCurrentThread
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GlobalFree
LockResource
FindResourceA
LoadResource
GlobalLock
GlobalUnlock
MulDiv
SetLastError
GetWindowsDirectoryA
Sleep
GetModuleHandleA
FreeEnvironmentStringsW
GetProcAddress

user32

GetFocus
DispatchMessageA
PeekMessageA
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
PostMessageA
IsDialogMessageA
SetWindowTextA
ShowWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
PostQuitMessage
SetCursor
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
LoadStringA
DestroyMenu
GetClassNameA
PtInRect
LoadCursorA
GetSysColorBrush
SetFocus
AdjustWindowRectEx
CopyRect
IsWindowVisible
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
ReleaseDC
ClientToScreen
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
GetDC
LoadIconA
LoadBitmapA
wsprintfA
EnableWindow
MessageBoxA
CallWindowProcA
UnregisterClassA

gdi32

SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SaveDC
DeleteObject
SetMapMode
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
CreateBitmap
SetTextColor
DeleteDC
Ellipse
SetBkColor
GetStockObject
SelectObject
BitBlt
RestoreDC

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA

comctl32

ord17

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 368KB - Virtual size: 376KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

522b3c5f996a02332ad67eb756645e92

Code Sign

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 368KB - Virtual size: 376KB

.rsrc Size: 1.7MB - Virtual size: 1.7MB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 368KB - Virtual size: 376KB

.rsrc
Size: 1.7MB - Virtual size: 1.7MB