146812c7595f22401b621b09f2b5bd4a98aaf65188a9c63b59c7a7a9ec5fc987

Sharing

Copy URL Twitter E-mail

General

Target

146812c7595f22401b621b09f2b5bd4a98aaf65188a9c63b59c7a7a9ec5fc987
Size

185KB
MD5

4e9d858dcca8893a702847e3149863a5
SHA1

b48d80a3dba26067058b8da2c568095b94cfe14b
SHA256

146812c7595f22401b621b09f2b5bd4a98aaf65188a9c63b59c7a7a9ec5fc987
SHA512

953bfbf0705bfbede2d56323535228a2536f424da4cb7d2638c24a5475ff6dee1bff561294b0e2755c29eae34276099c2a539c0e1516ea9e5aae316462cf35e0
SSDEEP

3072:aPoW4uiHWsF9pFp3ut221iZ9+Bw3D9yYu5hJJLp7bYaRvWvvV26iNnqjCJzvaor9:aPcumF9X2k9DJZ0hbV7bYaqabahA+A

Score

N/A

Malware Config

Signatures

Files

146812c7595f22401b621b09f2b5bd4a98aaf65188a9c63b59c7a7a9ec5fc987
.exe windows x86

c8e593ecb3bc0409c482e1d6026d7afc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICGetInfo
ICSendMessage
ICOpen
ICLocate
ICDecompress
ICClose
ICCompress

kernel32

HeapFree
lstrcmpiW
GetDiskFreeSpaceW
GetStartupInfoA
ResetEvent
GetProcessHeap
GetSystemInfo
MultiByteToWideChar
MulDiv
SetUnhandledExceptionFilter
WaitForSingleObject
InitializeCriticalSection
GetVersionExW
GetFullPathNameW
InterlockedDecrement
GetQueuedCompletionStatus
GlobalHandle
IsBadWritePtr
CreateFileW
IsBadCodePtr
GetProfileIntA
GlobalLock
SetFilePointer
GetThreadPriority
WaitForMultipleObjects
DeleteFileW
CreateThread
GetCurrentProcess
InterlockedIncrement
lstrcmpW
HeapAlloc
GetCurrentThread
GetSystemDefaultLangID
SetEvent
PostQueuedCompletionStatus
LeaveCriticalSection
GetFileSize
WriteFile
WideCharToMultiByte
ReleaseSemaphore
GlobalUnlock
GetLastError
IsBadReadPtr
lstrcpyW
GetEnvironmentStringsW
GetCurrentProcessId
lstrcpyA
SetEndOfFile
GlobalMemoryStatus
GetFileAttributesW
EnterCriticalSection
FreeLibrary
CreateEventW
GetTickCount
lstrlenW
GetSystemTimeAsFileTime
GetModuleFileNameA
GetPrivateProfileStringW
VirtualFree
ReadFile
GlobalAlloc
lstrlenA
InterlockedExchange
CloseHandle
LoadLibraryW
IsBadHugeReadPtr
CreateSemaphoreW
lstrcpynW
CreateIoCompletionPort
GlobalFree
QueryPerformanceCounter
DeleteCriticalSection
SetThreadPriority

user32

GetAsyncKeyState
IsWindow
GetClientRect
SetDlgItemInt
GetDlgItem
GetWindowLongW
wsprintfW
SetWindowLongW
ReleaseDC
CreateDialogParamW
SetDlgItemTextW
IsWindowVisible
InvalidateRect
CheckRadioButton
DefWindowProcW
ShowWindow
GetDC
DestroyWindow
MoveWindow
GetDlgItemInt
TranslateMessage
DispatchMessageW
LoadCursorW
SendMessageW
IsRectEmpty
SetCursor
EnableWindow
PeekMessageW
CheckDlgButton
GetDesktopWindow
LoadStringW
GetWindowRect
ClientToScreen

winmm

mixerGetLineControlsW
mixerGetID
waveInStop
waveInClose
CloseDriver
mixerGetControlDetailsW
mixerGetLineInfoW
waveInStart
mixerClose
waveInOpen
SendDriverMessage
waveInReset
waveInGetDevCapsW
mixerOpen
waveInUnprepareHeader
waveInAddBuffer
OpenDriver
waveInPrepareHeader
mixerSetControlDetails

advapi32

RegEnumKeyW
RegSetValueExW
RegSetValueW
RegEnumKeyExW
RegOpenKeyW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyW

ole32

CoTaskMemFree
CoTaskMemAlloc
CoFreeUnusedLibraries
CoInitialize
CoCreateInstance
CoUninitialize
StringFromGUID2

gdi32

SelectObject
GetPaletteEntries
GetStockObject
GetObjectW
GetTextExtentPoint32W
PatBlt

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

msvcrt

_purecall
_ftol
??2@YAPAXI@Z
wcslen
??3@YAXPAX@Z
_except_handler3

Sections

.text
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8e593ecb3bc0409c482e1d6026d7afc

Headers

File Characteristics

Imports

msvfw32

kernel32

user32

winmm

advapi32

ole32

gdi32

version

msvcrt

Sections

.text Size: 157KB - Virtual size: 156KB

.rdata Size: 25KB - Virtual size: 24KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 157KB - Virtual size: 156KB

.rdata
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 1024B - Virtual size: 644B