75564fc98f7ccda6eb188483b8160181bc857cfc897bbf6d4050c474b67bc7cc

General

Target

75564fc98f7ccda6eb188483b8160181bc857cfc897bbf6d4050c474b67bc7cc
Size

798KB
MD5

418845a43b752d3eb1006b1b7f41b871
SHA1

444267798f46040d8398f8c5981d85de423a5b1d
SHA256

75564fc98f7ccda6eb188483b8160181bc857cfc897bbf6d4050c474b67bc7cc
SHA512

6faadd741c3a23990f15c14d8db2d6afd981626b1161220f32b9597dc9ceb926a64d3f1aa628e1d5b05b42809f778ded6d9c93b5affced7145d384e3b61e8219
SSDEEP

24576:v/b2suzFJhwvx4J6qirRzcdVZpB/BP8Ru:nb2hz4xyDppV8Ru

Score

N/A

Malware Config

Signatures

Files

75564fc98f7ccda6eb188483b8160181bc857cfc897bbf6d4050c474b67bc7cc
.exe windows x86

d5f9e05a859f4e115165e8c7492f08da

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

IsValidLocale
CreateFileW
SetEvent
CreateFileW
GetFileAttributesW
GetVersionExA
GetModuleHandleA
GetCurrentThreadId
SetFilePointer
HeapDestroy
InterlockedExchange
ResumeThread
LeaveCriticalSection
AddAtomW
GetLocaleInfoA
LocalFlags
lstrlenA
GetStdHandle
SuspendThread
OpenEventW
GetModuleFileNameA
GetTickCount
VirtualProtect
CreateMutexA
CreateDirectoryA

user32

IsMenu
DispatchMessageA
LoadCursorA
wsprintfA
DestroyIcon
GetWindowLongA
PeekMessageA
SetRect
DestroyMenu
MessageBoxA
IsMenu
GetWindowLongA
GetWindowTextA

dplayx

DllCanUnloadNow
DllRegisterServer
DllUnregisterServer
DllGetClassObject

advapi32

IsValidAcl

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 793KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d5f9e05a859f4e115165e8c7492f08da

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

dplayx

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 10B

.rsrc Size: 793KB - Virtual size: 2.2MB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 10B

.rsrc
Size: 793KB - Virtual size: 2.2MB