9a05f26a2cc8e463442dbd1c18de757aa94b2bc2b9b4b4e70e0bd80b588077c3

Sharing

Copy URL Twitter E-mail

General

Target

9a05f26a2cc8e463442dbd1c18de757aa94b2bc2b9b4b4e70e0bd80b588077c3
Size

65KB
MD5

a5fc162a3e9daa9a373edb2f984cc3e2
SHA1

91757faf4c85f50c0fa17e60c8b2aea8a199e308
SHA256

9a05f26a2cc8e463442dbd1c18de757aa94b2bc2b9b4b4e70e0bd80b588077c3
SHA512

3038c2b46823e0a6830eadb946e218824d8fa102c5878ffb93ca6c96b783ad94c670901a00ca404d1699283a29ded2d5732d06b1938247763da56c181f5ce2bc
SSDEEP

1536:o68rF4ZuXvN4ZbiJq5L1B5IrVsTVZ/0JnFU/UxftMYSLFTdB4:o7mYXOJTeVu3MJbxftM3LRdB4

Score

N/A

Malware Config

Signatures

Files

9a05f26a2cc8e463442dbd1c18de757aa94b2bc2b9b4b4e70e0bd80b588077c3
.zip
Readme-说明.htm
VolumeEasy.exe
.exe windows x86

803265a1037275c9f7c86cc03ae2a9e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerGetDevCapsA
mixerGetNumDevs
mixerGetLineInfoA
mixerGetLineControlsA
mixerOpen
mixerClose
mixerSetControlDetails
mixerGetControlDetailsA

comctl32

ImageList_Create
PropertySheetA
ImageList_Destroy
ImageList_ReplaceIcon

kernel32

HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
WriteFile
HeapSize
TerminateProcess
ExitProcess
HeapCreate
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
GetCPInfo
GetOEMCP
GetACP
GetProcAddress
HeapAlloc
HeapFree
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
VirtualFree
VirtualAlloc
CreateMutexA
GetLastError
GetVersionExA
GetCurrentProcess
SetPriorityClass
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
ReleaseMutex
CreateProcessA
Sleep
GetLogicalDrives
GetDriveTypeA
GetVolumeInformationA
GetPrivateProfileSectionA
SetLastError
GetModuleFileNameA
GetLocalTime
GetSystemInfo
VirtualQuery
LoadLibraryA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapReAlloc
RtlUnwind

user32

WinHelpA
DialogBoxParamA
TrackPopupMenu
GetCursorPos
ModifyMenuA
MessageBoxA
WaitForInputIdle
GetActiveWindow
RegisterClassA
LoadCursorA
DispatchMessageA
TranslateMessage
GetMessageA
FindWindowA
LoadMenuA
LoadIconA
EnumWindows
DestroyWindow
PostQuitMessage
GetWindowTextA
DrawFrameControl
DrawFocusRect
DrawTextExA
GetSystemMetrics
GetClassLongA
SystemParametersInfoA
IsWindowVisible
IsWindowEnabled
GetMenu
GetMenuStringA
GetSubMenu
GetDlgItemTextA
SetDlgItemTextA
EnableWindow
GetParent
GetDlgItem
ScreenToClient
CreateWindowExA
IsDlgButtonChecked
SetWindowTextA
CheckDlgButton
EndDialog
UnregisterHotKey
RegisterHotKey
LoadStringA
SetWindowPos
SetActiveWindow
SetDlgItemInt
LoadImageA
GetForegroundWindow
GetDesktopWindow
EqualRect
GetMenuItemInfoA
GetClassNameA
SendMessageA
SetWindowLongA
KillTimer
PostMessageA
GetWindowRect
ShowWindow
OffsetRect
MoveWindow
SetTimer
SetForegroundWindow
GetDC
ReleaseDC
DrawEdge
wsprintfA
DrawTextA
DrawIconEx
InvalidateRect
UpdateWindow
GetWindowLongA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
EndPaint
SetWindowRgn
GetSysColorBrush

gdi32

CreateRectRgn
CreateRectRgnIndirect
GetStockObject
CreateEllipticRgn
CreatePolygonRgn
FillRgn
SetViewportOrgEx
CreateSolidBrush
CombineRgn
BitBlt
DeleteDC
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
GetTextMetricsA
CreateFontIndirectA
SetBkColor
SetTextColor

comdlg32

ChooseFontA
ChooseColorA
GetOpenFileNameA

advapi32

OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA

shell32

Shell_NotifyIconA

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

803265a1037275c9f7c86cc03ae2a9e8

Headers

File Characteristics

Imports

winmm

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 63KB

.rsrc Size: 108KB - Virtual size: 105KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 63KB

.rsrc
Size: 108KB - Virtual size: 105KB