12b7dce728052d8d54f43fe3464d05dac425ff0b1977c6e02f2fb628d1f0e5fa

Sharing

Copy URL Twitter E-mail

General

Target

12b7dce728052d8d54f43fe3464d05dac425ff0b1977c6e02f2fb628d1f0e5fa
Size

712KB
MD5

f54540a7906fc2ef1255e8c495f4ab98
SHA1

9f95b5b9de8b5e9d464d643cb20ba31bc734c95b
SHA256

12b7dce728052d8d54f43fe3464d05dac425ff0b1977c6e02f2fb628d1f0e5fa
SHA512

d0457f14c7d6f64932fd0947e9b5c50d5dc8c576c7297372c88c90beddc0267ef3d3aeea681f79d79ca5c0c1e36dc26a4169ffd1beaf629346cca3cc06b77b7b
SSDEEP

6144:18zlNUYWR96w7ro4YQAuijME99G6EcFk/Yg3uJOit0D/rs/RcHsk2qxW1OAKknHu:+U1X4Oig/6U/AKknYSFj1

Score

N/A

Malware Config

Signatures

Files

12b7dce728052d8d54f43fe3464d05dac425ff0b1977c6e02f2fb628d1f0e5fa
.exe windows x86

d3659fc9d37451d20abf224877b3a9b4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
GlobalUnlock
GlobalFree
_lcreat
_lwrite
_lopen
_lread
GetTickCount
GetDriveTypeA
CreateFileA
lstrlenA
GlobalAlloc
OutputDebugStringA
SetEnvironmentVariableA
GetSystemTime
GetLocalTime
ExitProcess
GetOEMCP
TerminateProcess
GetCPInfo
SetFilePointer
GetACP
SetUnhandledExceptionFilter
VirtualAlloc
IsBadCodePtr
HeapAlloc
VirtualFree
HeapReAlloc
HeapCreate
HeapDestroy
HeapFree
SetHandleCount
GetEnvironmentStringsW
GetFileType
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
UnhandledExceptionFilter
SetConsoleCtrlHandler
FreeEnvironmentStringsA
IsBadReadPtr
GetLastError
CompareStringA
CloseHandle
FlushFileBuffers
LCMapStringW
LCMapStringA
RaiseException
SetStdHandle
GetStringTypeW
CompareStringW
_lclose
GetStringTypeA
MultiByteToWideChar
HeapValidate
WriteFile
InterlockedDecrement
LoadLibraryA
RtlUnwind
GetProcAddress
IsBadWritePtr
GetCurrentProcess
GetTimeZoneInformation
GetModuleFileNameA
InterlockedIncrement
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
DebugBreak
GetStdHandle

user32

SetCursor
UpdateWindow
DefWindowProcA
PostQuitMessage
SetTimer
TranslateMessage
CreateWindowExA
ShowWindow
UnregisterClassA
DestroyWindow
RegisterClassA
GetWindowLongA
KillTimer
MessageBoxA
ShowCursor
GetCursorPos
wsprintfA
GetMessageA
SendMessageA
SetWindowPos
LoadCursorA
WaitMessage
LoadIconA
PeekMessageA
SetFocus
PostMessageA
DispatchMessageA

gdi32

DeleteObject
GetStockObject
SetTextColor
SetBkMode
SelectObject
CreateFontIndirectA
TextOutA

shell32

ShellExecuteA

ddraw

DirectDrawCreate

winmm

mmioDescend
timeKillEvent
timeBeginPeriod
timeSetEvent
mmioOpenA
mmioClose
mmioRead
mmioAscend
mciSendCommandA
timeGetDevCaps
timeEndPeriod

dsound

ord1

msvfw32

MCIWndCreateA

Sections

.text
Size: 540KB - Virtual size: 539KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 84KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d3659fc9d37451d20abf224877b3a9b4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ddraw

winmm

dsound

msvfw32

Sections

.text Size: 540KB - Virtual size: 539KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 28KB - Virtual size: 35KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 16KB - Virtual size: 12KB

.reloc Size: 84KB - Virtual size: 104KB

.text
Size: 540KB - Virtual size: 539KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 28KB - Virtual size: 35KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 16KB - Virtual size: 12KB

.reloc
Size: 84KB - Virtual size: 104KB