cdb0ffddb1104648a114fca2e70ba416a2ec9c631dc07ab2ec29b653e07c7254

Sharing

Copy URL Twitter E-mail

General

Target

cdb0ffddb1104648a114fca2e70ba416a2ec9c631dc07ab2ec29b653e07c7254
Size

202KB
MD5

61b708e88e65d458045f4f490170cd50
SHA1

88ca81203cb52901eb73d6a8dc25fa6418743ba8
SHA256

cdb0ffddb1104648a114fca2e70ba416a2ec9c631dc07ab2ec29b653e07c7254
SHA512

9526724356449cc050854d087f870b5d2422fba668b0c3db7609b2ca7519fb4c6193f03c4789bdaf2c6ca3786ac8d14649e02421a329f496ec81708038ecd500
SSDEEP

6144:JCM5/eHMqNV9EmPXNWDPBlIsB6FLWx5/MGL:QShqX9E6MLcsBcWL/MGL

Score

N/A

Malware Config

Signatures

Files

cdb0ffddb1104648a114fca2e70ba416a2ec9c631dc07ab2ec29b653e07c7254
.exe windows x86

19d0f472911ec4ee6dfc00dfac1b4b68

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfW
IsWindowVisible
TranslateMessage
LoadStringW
CheckDlgButton
IsWindow
InvalidateRect
CreateDialogParamW
GetAsyncKeyState
MoveWindow
GetWindowLongW
SetWindowLongW
GetClientRect
IsRectEmpty
SetDlgItemTextW
ShowWindow
PeekMessageW
DefWindowProcW
SetCursor
EnableWindow
ReleaseDC
LoadCursorW
DestroyWindow
SetDlgItemInt
GetWindowRect
CheckRadioButton
ClientToScreen
SendMessageW
GetDC
DispatchMessageW
GetDlgItemInt
GetDesktopWindow
GetDlgItem

kernel32

GetLastError
GlobalAlloc
lstrcmpiW
GetProcAddress
lstrcpynW
lstrcmpW
GetStartupInfoA
InterlockedIncrement
QueryPerformanceCounter
GetThreadPriority
InterlockedExchange
MultiByteToWideChar
LoadLibraryW
WaitForSingleObject
GetFileSize
lstrlenA
lstrcpyW
GetTickCount
GetACP
InterlockedDecrement
MulDiv
GetModuleFileNameA
SetUnhandledExceptionFilter
GetProfileIntA
GetFileAttributesW
GlobalUnlock
IsBadReadPtr
GlobalFree
lstrcpyA
IsBadCodePtr
GetVersionExW
GetSystemTimeAsFileTime
ReleaseSemaphore
SetLastError
GetFullPathNameW
GetQueuedCompletionStatus
WriteFile
CreateIoCompletionPort
GetPrivateProfileStringW
DeleteFileW
GetCurrentProcessId
SetEndOfFile
LeaveCriticalSection
GetProcessHeap
WideCharToMultiByte
GlobalLock
WaitForMultipleObjects
ReadFile
SetThreadPriority
CreateFileW
GetDiskFreeSpaceW
InitializeCriticalSection
CreateThread
SetFilePointer
ResetEvent
GlobalMemoryStatus
IsBadWritePtr
SetEvent
HeapFree
EnterCriticalSection
CreateSemaphoreW
DeleteCriticalSection
CloseHandle
GetCurrentThread
VirtualFree
GlobalHandle
GetSystemInfo
FreeLibrary
GetCurrentProcess
PostQueuedCompletionStatus
CreateEventW
lstrlenW
HeapAlloc

ole32

CoCreateInstance
CoUninitialize
StringFromGUID2
CoFreeUnusedLibraries
CoInitialize
CoTaskMemFree
CoTaskMemAlloc

ncobjapi

WmiCommitObject
WmiEventSourceDisconnect
WmiDestroyObject
WmiCreateObjectWithProps
WmiEventSourceConnect
WmiSetAndCommitObject
WmiCreateObjectWithFormat
WmiCreateObject
WmiIsObjectActive
WmiAddObjectProp

msvfw32

ICSendMessage
ICLocate
ICOpen
ICGetInfo
ICDecompress
ICCompress
ICClose

winmm

mixerClose
mixerGetID
mixerGetLineControlsW
waveInClose
waveInUnprepareHeader
mixerSetControlDetails
mixerGetLineInfoW
waveInGetDevCapsW
waveInPrepareHeader
waveInStart
mixerOpen
OpenDriver
waveInOpen
CloseDriver
mixerGetControlDetailsW
waveInAddBuffer
waveInStop
waveInReset
SendDriverMessage

nddeapi

NDdeGetTrustedShareA
NDdeIsValidShareNameA
NDdeGetShareSecurityW
NDdeGetErrorStringA
NDdeGetShareSecurityA
NDdeIsValidAppTopicListW
NDdeGetTrustedShareW
NDdeIsValidAppTopicListA

mydocs

DllCanUnloadNow
PerUserInit
DllGetClassObject

gdi32

GetTextExtentPoint32W
GetStockObject
PatBlt
GetObjectW
GetPaletteEntries
SelectObject

Sections

.text
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

19d0f472911ec4ee6dfc00dfac1b4b68

Headers

File Characteristics

Imports

user32

kernel32

ole32

ncobjapi

msvfw32

winmm

nddeapi

mydocs

gdi32

Sections

.text Size: 127KB - Virtual size: 127KB

.rdata Size: 34KB - Virtual size: 33KB

.data Size: 36KB - Virtual size: 357KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 984B

.text
Size: 127KB - Virtual size: 127KB

.rdata
Size: 34KB - Virtual size: 33KB

.data
Size: 36KB - Virtual size: 357KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 984B