100526d31b0423365409fe85751d1e7412fc7f7a966c0f14c2c46cd8c814bda4

Sharing

Copy URL Twitter E-mail

General

Target

100526d31b0423365409fe85751d1e7412fc7f7a966c0f14c2c46cd8c814bda4
Size

186KB
MD5

62bcc4c72aa2a36ca4c189e0d6d79180
SHA1

560bd6d19b9196bcbab3349ac0708bb02ee5d7ce
SHA256

100526d31b0423365409fe85751d1e7412fc7f7a966c0f14c2c46cd8c814bda4
SHA512

9eb9e249f2499c1ab9503ba7b2f22b92fe0c3844d4192c61c1847010d523480c5f6f32941f1dcc59805ae6dbd824069344bbb40a106d9168917dee5d03e7e401
SSDEEP

3072:o+lA4v/+bAiVSuoOcd/FlqKNXQ6vLYA60U++PzSHhqF3xJM5uVHqNcAhO4BVEY6J:UO+bZV6hFJNXQ6DYARU+ox25uRwcp4bs

Score

N/A

Malware Config

Signatures

Files

100526d31b0423365409fe85751d1e7412fc7f7a966c0f14c2c46cd8c814bda4
.exe windows x86

86868c84774481cadaeb3f32630cf084

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
InitializeCriticalSection
QueryPerformanceCounter
GlobalMemoryStatus
GetSystemInfo
IsBadReadPtr
GetFileAttributesW
GlobalUnlock
MulDiv
GlobalFree
lstrlenW
GetPrivateProfileStringW
LoadLibraryW
DeleteCriticalSection
CreateSemaphoreW
GetStartupInfoA
HeapFree
GetLastError
lstrcpynW
lstrcpyW
GlobalLock
GetQueuedCompletionStatus
GetProfileIntA
GlobalAlloc
lstrcmpiW
SetEvent
WaitForSingleObject
GetCurrentThread
HeapAlloc
GetEnvironmentStringsA
GetProcessHeap
CreateFileW
GetFullPathNameW
lstrlenA
GetVersionExW
CloseHandle
GetACP
CreateThread
CreateEventW
GetDiskFreeSpaceW
GetSystemTimeAsFileTime
IsBadWritePtr
IsBadCodePtr
GetModuleFileNameA
DeleteFileW
GetTickCount
GetProcAddress
MultiByteToWideChar
GetFileSize
lstrcpyA
EnterCriticalSection
CreateIoCompletionPort
GetThreadPriority
PostQueuedCompletionStatus
SetFilePointer
lstrcmpW
InterlockedExchange
WriteFile
InterlockedDecrement
ReadFile
GetSystemDefaultLangID
GlobalHandle
WideCharToMultiByte
WaitForMultipleObjects
LeaveCriticalSection
GetCurrentProcessId
SetThreadPriority
ResetEvent
SetEndOfFile
ReleaseSemaphore
GetCurrentProcess
VirtualFree
FreeLibrary
SetUnhandledExceptionFilter

user32

ClientToScreen
DestroyWindow
wsprintfW
TranslateMessage
CheckRadioButton
IsRectEmpty
GetWindowLongW
SetWindowLongW
SendMessageW
CheckDlgButton
GetDlgItem
ReleaseDC
EnableWindow
IsWindow
MoveWindow
DispatchMessageW
GetDC
ShowWindow
SetDlgItemInt
GetClientRect
GetDlgItemInt
LoadCursorW
GetAsyncKeyState
InvalidateRect
IsWindowVisible
GetDesktopWindow
GetWindowRect
SetCursor
DefWindowProcW
CreateDialogParamW
LoadStringW
SetDlgItemTextW
PeekMessageW

msvfw32

ICOpen
ICSendMessage
ICDecompress
ICGetInfo
ICClose
ICLocate
ICCompress

ole32

CoFreeUnusedLibraries
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoUninitialize
CoInitialize

winmm

waveInGetDevCapsW
waveInClose
CloseDriver
waveInStart
waveInReset
mixerGetID
mixerSetControlDetails
waveInAddBuffer
waveInUnprepareHeader
waveInOpen
mixerGetControlDetailsW
SendDriverMessage
mixerClose
mixerGetLineControlsW
mixerOpen
waveInPrepareHeader
waveInStop
mixerGetLineInfoW
OpenDriver

advapi32

RegSetValueW
RegQueryValueExW
RegEnumKeyW
RegCloseKey
RegOpenKeyW
RegEnumKeyExW
RegCreateKeyW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW

gdi32

GetObjectW
GetStockObject
PatBlt
GetPaletteEntries
GetTextExtentPoint32W
SelectObject

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86868c84774481cadaeb3f32630cf084

Headers

File Characteristics

Imports

kernel32

user32

msvfw32

ole32

winmm

advapi32

gdi32

version

Sections

.text Size: 158KB - Virtual size: 158KB

.rdata Size: 24KB - Virtual size: 24KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 158KB - Virtual size: 158KB

.rdata
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 1024B - Virtual size: 644B