779d6d831f8bc22c7acc9897e38fbf497cbee058910c96bef3cfd97eca1e772d

General

Target

779d6d831f8bc22c7acc9897e38fbf497cbee058910c96bef3cfd97eca1e772d
Size

184KB
MD5

704ff0549c440bca6938d6d150594ab0
SHA1

02376bdddde5093841134902d34b3d3d3050a586
SHA256

779d6d831f8bc22c7acc9897e38fbf497cbee058910c96bef3cfd97eca1e772d
SHA512

7066c1807560d0cc1b68767a5fe99ced14d7b0e06073d0fb30e2d75d4f51801753d3ca311195881336b002b57d9d720325b9449c08609926628e98c69c40a26c
SSDEEP

3072:UMG272lHu4XDZBhdGt444BIQLKwL3s4YLmspSrqUnfBueARph4Y:U6iZXDZBhdGt444BRT3snLm/7nfBqpD

Score

N/A

Malware Config

Signatures

Files

779d6d831f8bc22c7acc9897e38fbf497cbee058910c96bef3cfd97eca1e772d
.exe windows x86

e25b3b14260773058c1a198149a01b67

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

realloc
fprintf
exit
sprintf
remove
sscanf
fclose
fseek
fopen
fsetpos
ftell
fgetpos
clearerr
fread
malloc
strtoul
strtol
_errno
isxdigit
_HUGE
strtod
setlocale
fflush
fwrite
_chsize
_finite
floor
calloc
memmove
strncmp
strstr
time
gmtime
getenv
_iob
strtok
setbuf
free

kernel32

TlsFree
LoadLibraryA
GetProcAddress
InitializeCriticalSection
TlsAlloc
LeaveCriticalSection
EnterCriticalSection
TlsSetValue
TlsGetValue
DeleteCriticalSection
VirtualAllocEx
GetCurrentProcessId
OpenProcess

winmm

waveOutGetDevCapsA
mciSendStringA
midiInPrepareHeader
mixerGetControlDetailsW
waveOutSetVolume
waveInMessage
mciLoadCommandResource
midiOutCacheDrumPatches
waveOutUnprepareHeader
mmioAdvance
midiOutLongMsg
midiStreamClose
mixerMessage
timeSetEvent
mmioSeek
midiInGetDevCapsW
joyReleaseCapture
mmioRenameW
midiStreamProperty
waveOutBreakLoop
timeEndPeriod
waveInOpen
tid32Message
mmsystemGetVersion
midiInGetNumDevs
mciFreeCommandResource
waveInGetDevCapsW
WOW32DriverCallback

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 18KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 146KB - Virtual size: 385KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e25b3b14260773058c1a198149a01b67

Headers

File Characteristics

Imports

msvcrt

kernel32

winmm

Sections

.text Size: 12KB - Virtual size: 12KB

.bss Size: 18KB - Virtual size: 1.6MB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 146KB - Virtual size: 385KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 12KB - Virtual size: 12KB

.bss
Size: 18KB - Virtual size: 1.6MB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 146KB - Virtual size: 385KB

.rsrc
Size: 3KB - Virtual size: 2KB