39ce6518ddf573e04633c57a1def96d754a950e9a624f1a89398cbdd085435f1

Sharing

Copy URL Twitter E-mail

General

Target

39ce6518ddf573e04633c57a1def96d754a950e9a624f1a89398cbdd085435f1
Size

512KB
MD5

008882d829ada6f33fa2ff514619c6f0
SHA1

1971d7c81b3f06c3f01322697f51b941ec1f2667
SHA256

39ce6518ddf573e04633c57a1def96d754a950e9a624f1a89398cbdd085435f1
SHA512

4d976b1a91aaff6dc90aeb3d1f3d3a51ffe9a0fc0e8ce0fea1aa11bce221002bfa6470b159fceb0f380812e1d40b7324edc75970296c4496b60e9b65b54ff09c
SSDEEP

6144:s7bQzb9ON2SfX74ocw70GjApvt9dl/8beMeEzxVhyTnRHy:s78ONHX78GMv/dl/rEzxVWn

Score

N/A

Malware Config

Signatures

Files

39ce6518ddf573e04633c57a1def96d754a950e9a624f1a89398cbdd085435f1
.exe windows x86

8e06de8ac79eac26b971f0637d573382

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreateEx

dinput

DirectInputCreateEx

winmm

timeGetTime

kernel32

ReadFile
QueryPerformanceFrequency
CreateFileA
CloseHandle
GetModuleHandleA
GetTickCount
Sleep
QueryPerformanceCounter
HeapAlloc
GetLastError
GetModuleFileNameA
UnhandledExceptionFilter
WriteFile
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
SetFilePointer
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetProcAddress
HeapSize
GetCurrentProcess
TerminateProcess
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
LoadLibraryA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
ExitProcess
HeapReAlloc
FlushFileBuffers
SetEndOfFile
SetStdHandle
GetStdHandle
SetHandleCount
RtlUnwind
HeapFree
GetCommandLineA
GetFileType
GetStartupInfoA
GetVersion

user32

ShowWindow
SetTimer
DispatchMessageA
TranslateMessage
GetMessageA
PeekMessageA
ChangeDisplaySettingsA
MessageBoxA
SetCursor
DefWindowProcA
PostQuitMessage
DestroyWindow
LoadIconA
RegisterClassA
GetSystemMetrics
CreateWindowExA
UpdateWindow

gdi32

GetStockObject

fmod

_FSOUND_Sample_SetLoopMode@8
_FSOUND_StopSound@4
_FSOUND_Sample_Free@4
_FSOUND_PlaySound@8
_FMUSIC_StopSong@4
_FSOUND_Stream_Stop@4
_FSOUND_Sample_Load@16
_FSOUND_Stream_Close@4
_FMUSIC_LoadSong@4
_FSOUND_Stream_OpenFile@12
_FSOUND_GetError@0
_FSOUND_Init@12
_FSOUND_SetPriority@8
_FSOUND_Close@0
_FMUSIC_PlaySong@4
_FMUSIC_FreeSong@4
_FSOUND_Stream_Play@8

Sections

.text
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rfzctsz
Size: 68KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8e06de8ac79eac26b971f0637d573382

Headers

File Characteristics

Imports

ddraw

dinput

winmm

kernel32

user32

gdi32

fmod

Sections

.text Size: 264KB - Virtual size: 264KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 132KB - Virtual size: 132KB

rfzctsz Size: 68KB - Virtual size: 96KB

.text
Size: 264KB - Virtual size: 264KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 132KB - Virtual size: 132KB

rfzctsz
Size: 68KB - Virtual size: 96KB