33201be2a12b5d23aa85259650fb9ef0665cd0c3ca673ffacbde5cc0fad4078b

Sharing

Copy URL Twitter E-mail

General

Target

33201be2a12b5d23aa85259650fb9ef0665cd0c3ca673ffacbde5cc0fad4078b
Size

142KB
MD5

7c74d463abd1d780c1c57e99667a8340
SHA1

83426fdbcbaebce2c3319661b002cd5b2434e6d1
SHA256

33201be2a12b5d23aa85259650fb9ef0665cd0c3ca673ffacbde5cc0fad4078b
SHA512

ef551f7e528895280c6940932267008b5a35f9fed0bc5e128d844f7ff255cf265cc707f1c5d7592700a70197b0ffba6258b12b45df48ecab95860a21bb3220a6
SSDEEP

3072:MJ77npCo6X3GwT/mzRhhnSgd8UrAhbLn6h3FEx+8jgfcE:MjpWGNfsgiWAZL6h3y1jS

Score

N/A

Malware Config

Signatures

Files

33201be2a12b5d23aa85259650fb9ef0665cd0c3ca673ffacbde5cc0fad4078b
.exe windows x86

c2c9d15cd73407ac55c2208f5c7b8a7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalUnlock
ReleaseMutex
DeleteFileA
DeviceIoControl
OutputDebugStringA
RaiseException
GetStartupInfoA
MoveFileA
TerminateThread
OpenEventA
CreateProcessA
GetVersion
GetCurrentProcess
ExitProcess
GetLastError
GetModuleFileNameA
SetFilePointer
WriteFile
CreateFileA
RemoveDirectoryA
LocalAlloc
LocalFree
GetVolumeInformationA
GetDiskFreeSpaceExA
GetDriveTypeA
CreateDirectoryA
GetVersionExA
GetPrivateProfileStringA
lstrcmpA
WideCharToMultiByte
MultiByteToWideChar
GetWindowsDirectoryA
lstrcatA
GetPrivateProfileSectionNamesA
lstrlenA
GetProcessHeap
HeapAlloc
FreeLibrary
CreateThread
GetLocalTime
GetTickCount
Sleep
GetProcAddress
InterlockedExchange
SetEvent
CloseHandle
CreateEventA
LeaveCriticalSection
VirtualAlloc
VirtualFree
WaitForSingleObject
GetModuleHandleA
LoadLibraryA
SetErrorMode

gdi32

CreateCompatibleDC
CreateDIBSection
SelectObject
BitBlt
CreateCompatibleBitmap
GetDIBits
DeleteObject
DeleteDC

advapi32

LookupAccountNameA
GetTokenInformation
LookupAccountSidA
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyA
RegEnumValueA
RegEnumKeyExA
OpenEventLogA
ClearEventLogA
CloseEventLog
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegCreateKeyExA
RegOpenKeyA
RegQueryValueA
LsaFreeMemory
LsaOpenPolicy
LsaClose
IsValidSid

shell32

SHGetFileInfoA

msvcrt

_ftol
strlen
strstr
memcmp
rand
strcpy
putchar
puts
sprintf
strncpy
strchr
malloc
strcmp
free
_except_handler3
strrchr
rename
strcat
atoi
wcscpy
ceil
strncat
atol
_beginthreadex
calloc
??1type_info@@UAE@XZ
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_strnicmp
memset
memmove
_CxxThrowException
__CxxFrameHandler
memcpy
??3@YAXPAX@Z
??2@YAPAXI@Z

winmm

waveInReset
waveInUnprepareHeader
waveInClose
waveOutReset
waveOutWrite
waveInStart
waveOutUnprepareHeader
waveOutGetNumDevs
waveOutOpen
waveOutPrepareHeader
waveInGetNumDevs
waveInOpen
waveInPrepareHeader
waveInStop
waveOutClose
waveInAddBuffer

wininet

InternetOpenA
InternetCloseHandle
InternetReadFile
InternetOpenUrlA

msvcp60

?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

netapi32

NetLocalGroupAddMembers
NetUserAdd

avicap32

capGetDriverDescriptionA

msvfw32

ICSendMessage
ICSeqCompressFrameEnd

Sections

.text
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c2c9d15cd73407ac55c2208f5c7b8a7a

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

shell32

msvcrt

winmm

wininet

msvcp60

netapi32

avicap32

msvfw32

Sections

.text Size: 85KB - Virtual size: 85KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 29KB - Virtual size: 30KB

.text
Size: 85KB - Virtual size: 85KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 29KB - Virtual size: 30KB