d5fd2a1f9807e9248cb75a7c258f798f192609e30ce4f9a5b6abe23e5e8bac25

Sharing

Copy URL Twitter E-mail

General

Target

d5fd2a1f9807e9248cb75a7c258f798f192609e30ce4f9a5b6abe23e5e8bac25
Size

199KB
MD5

4366cafdb626ae524dbb8b84e4a3bb35
SHA1

61625a79ca933ec3e1693f72104a0585310390db
SHA256

d5fd2a1f9807e9248cb75a7c258f798f192609e30ce4f9a5b6abe23e5e8bac25
SHA512

45761e0a2770dfbba3b999fe011489dcd66e8b7279020320e153a072ef425867797c07d48a259f45eef3a7334f984f5b8fb7d9176a1d804c51fae838f349b75e
SSDEEP

6144:i+mAKU455wXN3Muggzq1/bMsxYL5XKPhKqpSG0cnMv:pmAKkdve5e1ETpS9n

Score

N/A

Malware Config

Signatures

Files

d5fd2a1f9807e9248cb75a7c258f798f192609e30ce4f9a5b6abe23e5e8bac25
.exe windows x86

4bf1d32c2534442c2f36995fdecdffc1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PostQueuedCompletionStatus
GetEnvironmentStringsW
GetDiskFreeSpaceW
GetTickCount
GetCPInfo
InterlockedExchange
lstrcpyA
GetCurrentProcess
GetQueuedCompletionStatus
GlobalMemoryStatus
SetEvent
SetEndOfFile
HeapAlloc
lstrlenA
DeleteFileW
CreateThread
LeaveCriticalSection
ReleaseSemaphore
GetProfileIntA
GetSystemDefaultLangID
GlobalUnlock
GlobalFree
lstrcmpiW
QueryPerformanceCounter
WaitForSingleObject
IsBadWritePtr
IsBadReadPtr
GetPrivateProfileStringW
InitializeCriticalSection
SetThreadPriority
lstrcpyW
lstrcmpW
GetModuleFileNameA
GlobalAlloc
WaitForMultipleObjects
VirtualFree
DeleteCriticalSection
MulDiv
CreateFileW
GetSystemInfo
GetFileSize
GetCurrentThread
GetCurrentProcessId
CreateSemaphoreW
LoadLibraryW
SetFilePointer
GlobalHandle
GetVersionExW
GetThreadPriority
CreateEventW
WideCharToMultiByte
InterlockedDecrement
MultiByteToWideChar
GetFullPathNameW
GetSystemTimeAsFileTime
FreeLibrary
CreateIoCompletionPort
SetUnhandledExceptionFilter
GetFileAttributesW
WriteFile
GetProcessHeap
InterlockedIncrement
GetLastError
GlobalLock
CloseHandle
lstrlenW
ReadFile
GetStartupInfoA
IsBadCodePtr
lstrcpynW
EnterCriticalSection
ResetEvent
IsBadHugeReadPtr
HeapFree

gdi32

PatBlt
GetStockObject
GetPaletteEntries
GetObjectW
GetTextExtentPoint32W
SelectObject

winmm

OpenDriver
waveInUnprepareHeader
waveInPrepareHeader
waveInGetDevCapsW
waveInStart
waveInStop
mixerClose
mixerOpen
CloseDriver
SendDriverMessage
mixerGetLineInfoW
mixerGetLineControlsW
waveInAddBuffer
mixerGetControlDetailsW
waveInReset
waveInClose
mixerSetControlDetails
waveInOpen
mixerGetID

user32

GetDesktopWindow
IsRectEmpty
CheckDlgButton
InvalidateRect
EnableWindow
ShowWindow
SetWindowLongW
GetAsyncKeyState
CheckRadioButton
LoadCursorW
GetClientRect
DestroyWindow
ClientToScreen
LoadStringW
GetDlgItem
DispatchMessageW
SetCursor
TranslateMessage
IsWindowVisible
CreateDialogParamW
wsprintfW
GetDlgItemInt
PeekMessageW
GetWindowRect
IsWindow
GetDC
ReleaseDC
SendMessageW
SetDlgItemInt
SetDlgItemTextW
GetWindowLongW
MoveWindow
DefWindowProcW

ole32

CoUninitialize
CoCreateInstance
StringFromGUID2
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoFreeUnusedLibraries

msvcrt

_ftol
_purecall
??3@YAXPAX@Z
wcslen
_except_handler3
??2@YAPAXI@Z

advapi32

RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyW
RegSetValueExW
RegCreateKeyW
RegEnumKeyW
RegCloseKey
RegOpenKeyExW
RegSetValueW

msvfw32

ICClose
ICDecompress
ICOpen
ICGetInfo
ICLocate
ICCompress
ICSendMessage

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4bf1d32c2534442c2f36995fdecdffc1

Headers

File Characteristics

Imports

kernel32

gdi32

winmm

user32

ole32

msvcrt

advapi32

msvfw32

version

Sections

.text Size: 171KB - Virtual size: 170KB

.data Size: 25KB - Virtual size: 25KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 171KB - Virtual size: 170KB

.data
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 1024B - Virtual size: 644B