7a5995d5b499c6fa12974e7c7bac47f9d503a4ec473de82556ca0a433bd94729

Sharing

Copy URL

Twitter E-mail

General

Target

7a5995d5b499c6fa12974e7c7bac47f9d503a4ec473de82556ca0a433bd94729
Size

541KB
MD5

3e152e8fee5bd23db610811f80f0cd2e
SHA1

744c34cc1afcc6228fc6b0f37f6f314bef913db0
SHA256

7a5995d5b499c6fa12974e7c7bac47f9d503a4ec473de82556ca0a433bd94729
SHA512

f30210a9732be30278552974eb237cbc84a3cf576e94053d9bcb55496114d73a720a1edda46646fa4734d1bc4892cf34ce4119fdbd35c001f828cdb43d30ac43
SSDEEP

12288:tfQyksZ2KXfGrlMo9pXfWnhcyTnskI7BlcKT:tfQyks6rlMoT+JI9lcK

Score

N/A

Malware Config

Signatures

Files

7a5995d5b499c6fa12974e7c7bac47f9d503a4ec473de82556ca0a433bd94729
.exe windows x86

891a20f24d90a2a5786e0cb8881dae40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lwrite
CreateThread
TerminateThread
Sleep
ReadFile
SetFilePointer
ExitProcess
GetCurrentDirectoryA
CloseHandle
GetSystemTime
GetLastError
VirtualAlloc
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
lstrcpyA
_lopen
GetFileSize
_lread
CreateFileA
_lclose
GetTimeZoneInformation
HeapReAlloc
GetDriveTypeA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
LoadLibraryA
GetProcAddress
MultiByteToWideChar
GetVersion
GetCommandLineA
FreeEnvironmentStringsA
GetModuleFileNameA
GetLocalTime
GetModuleHandleA
GetStartupInfoA
GetCurrentProcess
UnhandledExceptionFilter
HeapAlloc
HeapFree
TerminateProcess

user32

LoadCursorA
GetMessageA
wsprintfA
PeekMessageA
SetCursorPos
GetCursorPos
DestroyWindow
SetTimer
UpdateWindow
ShowWindow
CreateWindowExA
GetSystemMetrics
FillRect
KillTimer
ShowCursor
PostQuitMessage
DefWindowProcA
DispatchMessageA
TranslateMessage
RegisterClassA

gdi32

SetTextColor
TextOutA
GetStockObject
SelectObject
CreateFontIndirectA
DeleteObject
CreateSolidBrush
SetBkMode

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ddraw

DirectDrawCreate

dsound

DirectSoundCreate

winmm

mmioClose
mmioSeek
mmioRead
mmioOpenA
mciSendCommandA
timeGetTime

imm32

ImmAssociateContext
ImmDestroyContext

Sections

.text
Size: 165KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 904B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 342KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

891a20f24d90a2a5786e0cb8881dae40

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ddraw

dsound

winmm

imm32

Sections

.text Size: 165KB - Virtual size: 165KB

.rdata Size: 1024B - Virtual size: 904B

.data Size: 342KB - Virtual size: 1.2MB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 165KB - Virtual size: 165KB

.rdata
Size: 1024B - Virtual size: 904B

.data
Size: 342KB - Virtual size: 1.2MB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 28KB - Virtual size: 27KB