dbc5ced638786bd9646bcde188a6fcaab43710686f867c33720f0d0a771b4f51

Sharing

Copy URL Twitter E-mail

General

Target

dbc5ced638786bd9646bcde188a6fcaab43710686f867c33720f0d0a771b4f51
Size

4.7MB
MD5

58321f7e468907bfa15811261f40ca49
SHA1

c4e29a779f4932b103bfee6827e30bb6ba43c8e9
SHA256

dbc5ced638786bd9646bcde188a6fcaab43710686f867c33720f0d0a771b4f51
SHA512

a4f536b144b5b95145200d993ade54457b125fac3984dc013bab056d0e4b3683937bbf73a86c4a1b844e2320ddbf667ae4b180dd4e90e3d30cc22c39c2684bf5
SSDEEP

24576:dA0Z1GzYkhnv0S+8ITuKOdnRz0glzqueOVi1L4nLMtG7Cydij:G0jeYkL+1uHHXNm0LMQWydij

Score

N/A

Malware Config

Signatures

Files

dbc5ced638786bd9646bcde188a6fcaab43710686f867c33720f0d0a771b4f51
.exe windows x86

1a03ae25fb88bafd7e6efeb7a18c9e6e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
timeGetDevCaps
timeEndPeriod
PlaySoundA
timeBeginPeriod

ffdecoder

?gpIDvdC2ptr@@3PAUIDvdControl2@@A
?fnGetDVDCopyRightState@@YAHPAH@Z
?gpIMFptr@@3PAUIMediaFilter@@A
?gpIFSptr@@3PAUIVideoFrameStep@@A
?gpIDvdI2ptr@@3PAUIDvdInfo2@@A
?gpIVWptr@@3PAUIVideoWindow@@A
?gpIMEptr@@3PAUIMediaEventEx@@A
?fnStartSendVideoAudioData@@YAHP6AHHH_J0PAD@ZP6AHHHH01@Z11@Z
?fpCreateDVDGraph@@YAHPAD@Z
?gpIMCptr@@3PAUIMediaControl@@A

ffencoder

?fnEncodeAudioData@@YAHHH_JPADH@Z
?fnStartFFEncoder@@YAHHQAPADHH_J@Z
?fnStopFFEncoder@@YAHXZ
?fnStartFFConvert@@YAHHQAPAD@Z
?fnEncodeVideoData@@YAHHH_JPADH@Z

kernel32

GetThreadLocale
GetCurrentDirectoryA
ReadFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
FindFirstFileA
GetFullPathNameA
GetTickCount
FileTimeToLocalFileTime
GetFileTime
HeapFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetEnvironmentVariableA
SetCurrentDirectoryA
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RtlUnwind
RaiseException
ExitThread
HeapSize
HeapDestroy
HeapCreate
VirtualFree
GetACP
GetStdHandle
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
SetHandleCount
GetFileType
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
LocalAlloc
GlobalFlags
GetCurrentProcessId
SuspendThread
ResumeThread
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcmpA
GetModuleFileNameW
FormatMessageA
LocalFree
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
MulDiv
FreeResource
InterlockedDecrement
InterlockedIncrement
ReleaseSemaphore
CreateEventA
CreateThread
SetThreadPriority
GetLocalTime
FileTimeToSystemTime
SystemTimeToFileTime
SetLastError
GetCurrentThreadId
lstrcpyA
WinExec
WriteFile
SetEvent
GetVersion
CompareStringA
InterlockedExchange
CompareStringW
GlobalFree
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalAlloc
WritePrivateProfileStringA
GetFileAttributesA
MultiByteToWideChar
GetLastError
GetDriveTypeA
GetLogicalDriveStringsA
CreateDirectoryA
Sleep
OutputDebugStringA
GetVolumeInformationA
GetModuleHandleA
GetModuleFileNameA
GetCurrentProcess
LeaveCriticalSection
EnterCriticalSection
GetLocaleInfoA
CloseHandle
CreateFileA
SetErrorMode
GetExitCodeProcess
CreateProcessA
GetWindowsDirectoryA
FreeLibrary
GetProcAddress
LoadLibraryA
GetSystemDirectoryA
GetVersionExA
lstrcpynA
lstrlenA
lstrcatA
WaitForSingleObject
FindResourceA
LoadResource
LockResource
SizeofResource
WideCharToMultiByte
DeleteCriticalSection
InitializeCriticalSection
ExitProcess

user32

IsDialogMessageA
MoveWindow
PostQuitMessage
MapDialogRect
SetWindowContextHelpId
ValidateRect
ShowOwnedPopups
GetWindowThreadProcessId
BringWindowToTop
TranslateAcceleratorA
SetMenu
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
ReuseDDElParam
UnpackDDElParam
UnregisterClassA
CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
MapWindowPoints
TrackPopupMenu
SetForegroundWindow
GetMenuItemID
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
DeferWindowPos
IntersectRect
GetWindowPlacement
GetWindow
EndPaint
BeginPaint
GetWindowDC
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
EndDialog
SetWindowPos
CloseClipboard
GetClipboardData
OpenClipboard
RegisterClassExA
GetSysColorBrush
GetClassNameA
GetPropA
CallNextHookEx
RemovePropA
SetRectEmpty
GetForegroundWindow
GetMenu
SetPropA
SetWindowsHookExA
GetMenuItemInfoA
GetMenuItemCount
EqualRect
UnhookWindowsHookEx
CallWindowProcA
MessageBeep
IsWindow
GetMessagePos
GetMessageA
SetCapture
DrawTextA
GrayStringA
DrawTextExA
GetCapture
TabbedTextOutA
ReleaseCapture
GetDlgCtrlID
DrawFrameControl
IsRectEmpty
GetNextDlgTabItem
FillRect
WindowFromPoint
CreateIconIndirect
GetIconInfo
DrawFocusRect
InflateRect
DrawStateA
OffsetRect
TrackPopupMenuEx
DestroyCursor
GetSysColor
FrameRect
GetActiveWindow
PostMessageA
LoadImageA
DestroyMenu
DestroyIcon
CopyRect
ClientToScreen
ScreenToClient
SetCursor
ReleaseDC
CharUpperA
GetDC
CopyIcon
LoadCursorA
GetCursorPos
CheckMenuItem
DeleteMenu
GetSubMenu
LoadMenuA
InvalidateRect
PtInRect
GetWindowRect
DrawIcon
IsIconic
SetWindowRgn
LoadBitmapA
AppendMenuA
GetSystemMenu
LoadIconA
ExitWindowsEx
DispatchMessageA
TranslateMessage
PeekMessageA
ShowCursor
MessageBoxA
KillTimer
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
GetMenuState
EnableMenuItem
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
SetTimer
SetRect
SetWindowTextA
UpdateWindow
ShowWindow
GetClassLongA
GetFocus
SetFocus
GetWindowTextLengthA
SetClipboardData
GetWindowTextA
wsprintfA
DefWindowProcA
GetWindowLongA
SetWindowLongA
SystemParametersInfoA
GetSystemMetrics
GetClientRect
GetParent
IsWindowVisible
EnableWindow
SendMessageA
GetKeyState

gdi32

SetTextColor
TextOutA
SaveDC
RestoreDC
SetBkMode
SetStretchBltMode
SetMapMode
ExcludeClipRect
LineTo
MoveToEx
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
CreateFontIndirectA
ScaleWindowExtEx
ExtSelectClipRgn
CreatePatternBrush
CreateRectRgnIndirect
GetMapMode
GetBkColor
GetRgnBox
GetDeviceCaps
CreateRectRgn
RoundRect
SetBkColor
SetPixel
CreateBitmap
CreateCompatibleBitmap
GetPixel
GetStockObject
CreateRoundRectRgn
Rectangle
CreatePenIndirect
StretchBlt
DeleteDC
DeleteObject
CombineRgn
ExtCreateRegion
CreateDIBSection
GetTextExtentPointA
BitBlt
GetObjectA
SelectObject
SetWindowExtEx
CreateCompatibleDC
GetTextExtentPoint32A
PtVisible
Escape
CreatePen
GetClipBox
RectVisible
ExtTextOutA
GetTextColor
CreateSolidBrush
CreateBrushIndirect

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegOpenKeyA
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCreateKeyA
RegEnumKeyA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
OpenProcessToken
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
RegSetValueA

shell32

SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteExA
ShellExecuteA
DragQueryFileA
DragFinish

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoTaskMemFree
CoUninitialize
OleInitialize
CoRegisterMessageFilter
CoInitializeEx
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoInitialize
CoCreateInstance

oleaut32

VariantInit
VariantCopy
SysAllocStringByteLen
SysStringLen
VariantChangeType
SysAllocStringLen
SysFreeString
VariantClear
SysAllocString
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect

Sections

.text
Size: 520KB - Virtual size: 516KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.0MB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a03ae25fb88bafd7e6efeb7a18c9e6e

Headers

File Characteristics

Imports

winmm

ffdecoder

ffencoder

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 520KB - Virtual size: 516KB

.rdata Size: 124KB - Virtual size: 120KB

.data Size: 24KB - Virtual size: 64KB

.rsrc Size: 4.0MB - Virtual size: 4.0MB

.text
Size: 520KB - Virtual size: 516KB

.rdata
Size: 124KB - Virtual size: 120KB

.data
Size: 24KB - Virtual size: 64KB

.rsrc
Size: 4.0MB - Virtual size: 4.0MB