e0882edcf1c1234ff3ddea8e09bbe31fc1a7b2bdb944065287ca4bda76d82752

Sharing

Copy URL Twitter E-mail

General

Target

e0882edcf1c1234ff3ddea8e09bbe31fc1a7b2bdb944065287ca4bda76d82752
Size

456KB
MD5

6f12378668b94f32e51434707c9cdbb8
SHA1

0374da19d32b2871cd3d240e8dd01b6b476572de
SHA256

e0882edcf1c1234ff3ddea8e09bbe31fc1a7b2bdb944065287ca4bda76d82752
SHA512

8b814a1933ca4b8fceff6c1791081a8acb4494ea2c0d78c3a96638893c352ded97b631c08e2e1d181b85e6f9ffe7c6e4966fbc0a33ebd0e17241835d3981c4c4
SSDEEP

12288:i/V+CgJS2WKOcz4T35LMeRk8ERqFs9lWrp:qV+CMSeDml9sws9lW

Score

N/A

Malware Config

Signatures

Files

e0882edcf1c1234ff3ddea8e09bbe31fc1a7b2bdb944065287ca4bda76d82752
.exe windows x86

8ecc7cafc0fbb8813b68b05fffe2d853

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
InterlockedIncrement
ExitProcess
VirtualFree
GetModuleHandleA
GetProcAddress
InterlockedExchange
Sleep
GetTickCount
ResetEvent
CreateMutexA
VirtualAlloc
GetSystemTime
GetSystemDirectoryA
GetSystemInfo
VirtualProtect
GetLocaleInfoA
HeapSize
RtlUnwind
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
GetStringTypeA
HeapReAlloc
HeapAlloc
GetCPInfo
GetStartupInfoA
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapFree
LoadLibraryA
GetACP
GetOEMCP
VirtualQuery

user32

EnableWindow
SendMessageA
DestroyWindow
PeekMessageA
GetSystemMetrics
MessageBoxA
LoadImageW
ShowWindow

winmm

midiOutReset
midiStreamRestart
midiStreamStop
midiStreamOut

Exports

Exports

?EnumWindowsProc@@YIHKK@Z

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.RIXE
Size: 4KB - Virtual size: 752B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 400KB - Virtual size: 816KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ecc7cafc0fbb8813b68b05fffe2d853

Headers

File Characteristics

Imports

kernel32

user32

winmm

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 21KB

.RIXE Size: 4KB - Virtual size: 752B

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 2KB

.vdata Size: 12KB - Virtual size: 9KB

.rsrc Size: 400KB - Virtual size: 816KB

.text
Size: 24KB - Virtual size: 21KB

.RIXE
Size: 4KB - Virtual size: 752B

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 2KB

.vdata
Size: 12KB - Virtual size: 9KB

.rsrc
Size: 400KB - Virtual size: 816KB