01ef8ae620a21d23835f5fd4d63372e33e5db20ce8f8febfc82bf36fbaa83ef7

Sharing

Copy URL

Twitter E-mail

General

Target

01ef8ae620a21d23835f5fd4d63372e33e5db20ce8f8febfc82bf36fbaa83ef7
Size

344KB
MD5

6322cb87da9bf288669900d2d81f6c2d
SHA1

276de4877c6cbce1142b30d7409560b6e6ec8e08
SHA256

01ef8ae620a21d23835f5fd4d63372e33e5db20ce8f8febfc82bf36fbaa83ef7
SHA512

65e28e35dee790cb21fa33c4e6ea3e3d5e6a16a507c978a1b5add6f96430c6a626f83c054fcb544e6ced8c1f9889ac97d40196f2941ba04b8d738b3df0b44d78
SSDEEP

6144:H/I/Lufwhvy3RDO9OWmxD0SdIRAXf7eAJjHlynEMAtt+NozrppHLKYUHxj1nrkbV:H/I/L9hvUA9OWSDtdkAjeAJjHlMAYGrX

Score

N/A

Malware Config

Signatures

Files

01ef8ae620a21d23835f5fd4d63372e33e5db20ce8f8febfc82bf36fbaa83ef7
.exe windows x86

31403d2f79efd0595e96fe5c6f3d8692

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegCreateKeyW
RegRestoreKeyW
RegOpenKeyW
RegEnumKeyExW
RegOpenKeyExW
RegConnectRegistryW
CloseServiceHandle
RegEnumValueA
QueryServiceConfigA
QueryServiceStatus
RegLoadKeyW
RegQueryValueExA
OpenServiceA
StartServiceA
RegQueryValueExW
RegSetValueExW
RegOpenKeyExA
CreateServiceA
GetOldestEventLogRecord
LsaLookupNames
LsaLookupSids
RegQueryValueA
ObjectOpenAuditAlarmA
RegEnumKeyA
RegSetValueExA
RegCreateKeyA
ChangeServiceConfigA
EncryptFileA
LsaRetrievePrivateData

user32

LookupIconIdFromDirectory
MapVirtualKeyExA
GetWindowThreadProcessId
OpenInputDesktop
DdeUninitialize
GetActiveWindow
GetClassInfoA
SetProcessWindowStation
GetKeyState
GetAsyncKeyState
DdePostAdvise
GetDoubleClickTime
GetCursorPos
SetCaretPos
GetClipCursor

winmm

mmioAdvance
PlaySoundW
timeBeginPeriod
waveInMessage
mixerGetID
mixerSetControlDetails
waveInGetNumDevs
waveInGetErrorTextW
auxSetVolume
waveOutGetPosition
midiOutGetErrorTextA
midiOutSetVolume
waveOutGetID
auxGetVolume
waveInAddBuffer
waveInOpen
waveInGetErrorTextA
mmioWrite
mmioRead
mmioClose
auxGetNumDevs
waveOutSetPlaybackRate
waveOutGetErrorTextW
waveInGetID
midiInOpen
waveInPrepareHeader
midiStreamOpen
midiStreamOut
waveOutPause
midiInGetNumDevs
mciSendCommandA
midiOutClose
mmioFlush
mixerGetDevCapsA
mixerGetDevCapsW
midiOutGetDevCapsW
waveInStart
midiOutGetErrorTextW
midiOutPrepareHeader
waveInGetDevCapsA
mmioSetBuffer
midiInStop
mciSendCommandW
DefDriverProc
sndPlaySoundW
midiInGetErrorTextA
midiInPrepareHeader
midiStreamStop
PlaySoundA
midiInAddBuffer
waveOutUnprepareHeader
GetDriverModuleHandle
waveInReset
waveInGetPosition
mciSendStringW
mmioOpenA
waveOutRestart
midiStreamPause
mmioSeek
waveInUnprepareHeader
joyGetDevCapsA
waveOutGetVolume
mciGetErrorStringW
mmioStringToFOURCCW
mixerGetLineControlsW
mciSendStringA
auxGetDevCapsW
mmioGetInfo
midiInGetDevCapsW
midiInStart
waveOutWrite
midiStreamRestart
joySetThreshold
mixerGetLineControlsA
waveOutGetDevCapsA
mixerGetLineInfoW
mixerGetNumDevs
midiOutLongMsg
joyGetPos
mciGetErrorStringA
joyGetNumDevs
timeKillEvent
joyGetPosEx
midiOutCachePatches
joySetCapture
waveOutGetNumDevs
midiInUnprepareHeader
waveInClose
waveOutGetPitch
OpenDriver
midiStreamPosition
timeGetDevCaps
midiOutMessage
midiInGetDevCapsA
mixerOpen
waveOutPrepareHeader
mmioAscend
midiInMessage
mmioDescend
waveOutGetDevCapsW
waveOutMessage
SendDriverMessage

comctl32

FlatSB_GetScrollPos
ImageList_SetDragCursorImage
FlatSB_GetScrollInfo
ImageList_Draw
FlatSB_SetScrollRange
_TrackMouseEvent
ord16
FlatSB_GetScrollProp
ord17
ImageList_DragEnter
ImageList_Add
ord4
ImageList_GetIcon
ImageList_Duplicate
ord15
ImageList_DragShowNolock
PropertySheetA
FlatSB_SetScrollInfo
ImageList_Create
InitializeFlatSB
ImageList_GetImageInfo
ImageList_ReplaceIcon
CreateToolbarEx
ImageList_Destroy
ord14
ImageList_BeginDrag
CreatePropertySheetPageA
ImageList_LoadImageA
ImageList_DragMove
ImageList_Remove
ImageList_GetIconSize
ImageList_DrawEx
ImageList_GetImageCount
ImageList_SetOverlayImage
InitCommonControlsEx
ord6
ImageList_SetImageCount
PropertySheetW
UninitializeFlatSB
ord3
CreatePropertySheetPageW
FlatSB_SetScrollProp
ord13

wininet

HttpOpenRequestA
InternetSetOptionExW
HttpQueryInfoW
FtpFindFirstFileW
FindFirstUrlCacheEntryA
UnlockUrlCacheEntryFile
HttpQueryInfoA
SetUrlCacheEntryInfoW
FtpPutFileW
InternetOpenUrlW
InternetHangUp
InternetOpenW
InternetSetFilePointer
FtpDeleteFileA
InternetTimeFromSystemTime
InternetAttemptConnect
InternetConfirmZoneCrossing
HttpOpenRequestW
InternetGetLastResponseInfoA
CreateUrlCacheEntryA
DeleteUrlCacheEntry
CommitUrlCacheEntryW
CreateUrlCacheGroup
InternetConnectW
InternetCreateUrlW
GetUrlCacheEntryInfoA
FindNextUrlCacheEntryW
HttpEndRequestA
GetUrlCacheEntryInfoExA
InternetAutodialHangup
InternetSetOptionExA
InternetLockRequestFile
FtpSetCurrentDirectoryW
GetUrlCacheEntryInfoExW
InternetFindNextFileW
InternetCheckConnectionW
HttpSendRequestExW
SetUrlCacheEntryGroup
GopherFindFirstFileA
CreateUrlCacheEntryW
RetrieveUrlCacheEntryFileA
InternetAutodial
GopherCreateLocatorA
FtpFindFirstFileA
SetUrlCacheEntryInfoA
InternetSetOptionA
GopherOpenFileA
HttpSendRequestA
FtpCreateDirectoryA
InternetReadFileExA
FindCloseUrlCache
HttpEndRequestW
HttpAddRequestHeadersA

kernel32

EnumResourceNamesW
GetProcessHeap
GetTimeZoneInformation
GlobalAddAtomW
GetStringTypeExA
HeapCreate
GetModuleHandleA
GetPrivateProfileStringW
_hread

msvcrt

_controlfp
_execl
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
atol
malloc
getwc

Sections

.text
Size: 288KB - Virtual size: 285KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

31403d2f79efd0595e96fe5c6f3d8692

Headers

File Characteristics

Imports

advapi32

user32

winmm

comctl32

wininet

kernel32

msvcrt

Sections

.text Size: 288KB - Virtual size: 285KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 20KB - Virtual size: 129KB

.rsrc Size: 24KB - Virtual size: 21KB

.text
Size: 288KB - Virtual size: 285KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 20KB - Virtual size: 129KB

.rsrc
Size: 24KB - Virtual size: 21KB