f764e674a2cad534c507a8e0ef934da547e3b7a30c7decea053fb6598c4f2ea1

Sharing

Copy URL Twitter E-mail

General

Target

f764e674a2cad534c507a8e0ef934da547e3b7a30c7decea053fb6598c4f2ea1
Size

211KB
MD5

50540d6a14ed5d339d597483ad47b9f9
SHA1

ed1b395d8f975cb449cb3f250ea5ee7e90d33a9c
SHA256

f764e674a2cad534c507a8e0ef934da547e3b7a30c7decea053fb6598c4f2ea1
SHA512

8b44bc85bda72d93571576a1186906c08247a0b0b97c172e9ad464a8e613ea150dc259cc3e45e27c009898757df85ad82c62a3800575e00e7d2aea74e88fe17b
SSDEEP

3072:uskvkDOHPsh5aDo4LBJYwj3bK+8lno7Zf8WWrWIrGed3rz+e3oDAfi+UuyuCl9u/:uskMDO8aH6ZZFk9Wrwed3H+er6puLu8/

Score

N/A

Malware Config

Signatures

Files

f764e674a2cad534c507a8e0ef934da547e3b7a30c7decea053fb6598c4f2ea1
.exe windows x86

85f279ef30959a5564fb267c006676a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalSize
DeleteCriticalSection
SetErrorMode
lstrcatA
IsBadReadPtr
GetModuleHandleA
LoadLibraryW
GlobalAlloc
WideCharToMultiByte
lstrcpynW
lstrcpyW
LeaveCriticalSection
CreateFileW
GlobalFree
GetLocaleInfoA
GetTickCount
lstrlenW
EnterCriticalSection
InitializeCriticalSection
MultiByteToWideChar
SetUnhandledExceptionFilter
MulDiv
ResetEvent
GetOverlappedResult
GetDiskFreeSpaceW
GetFullPathNameW
WriteFile
lstrcpyA
lstrlenA
GlobalUnlock
GetLastError
CloseHandle
LocalFree
GetSystemTimeAsFileTime
GetCurrentProcessId
GlobalReAlloc
LocalAlloc
GetFileSize
lstrcmpW
QueryPerformanceCounter
ReadFile

msacm32

acmFormatDetailsW
acmFormatTagDetailsW
acmGetVersion
acmStreamPrepareHeader
acmFormatSuggest
acmStreamSize
acmStreamUnprepareHeader
acmFormatChooseW
acmStreamConvert
acmMetrics
acmStreamOpen
acmStreamClose

msvfw32

ICOpen
ICSendMessage
ICCompressorFree
ICCompress
ICGetInfo
ICDecompress
ICClose
ICCompressorChoose
ICGetDisplayFormat

user32

GetDlgItem
PeekMessageW
SendMessageW
TranslateMessage
SetDlgItemInt
SetRectEmpty
GetDC
wsprintfW
SendDlgItemMessageW
ReleaseDC
SetDlgItemTextW
DestroyWindow
IsDlgButtonChecked
IsRectEmpty
MessageBoxW
DialogBoxParamW
SetRect
CharPrevW
EnableWindow
EndDialog
CheckDlgButton
LoadStringW
MessageBeep

msvcrt

??2@YAPAXI@Z
__getmainargs
_initterm
memmove
_adjust_fdiv
_ftol
__p__commode
mbstowcs
malloc
__set_app_type
atoi
free
_purecall
_vsnwprintf
??3@YAXPAX@Z
exit

advapi32

RegQueryValueW
RegOpenKeyW
RegCloseKey
RegEnumKeyW
RegQueryValueExA
RegOpenKeyA

winmm

mmioWrite
mmioOpenW
mmioRead
mmioClose
mmioSeek

ole32

OleGetClipboard
OleInitialize
CoCreateInstance
ReleaseStgMedium
OleFlushClipboard
CoGetMarshalSizeMax
CoGetMalloc
CoUnmarshalInterface
CreateStreamOnHGlobal
OleSetClipboard
OleUninitialize
CoMarshalInterface

Sections

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85f279ef30959a5564fb267c006676a3

Headers

File Characteristics

Imports

kernel32

msacm32

msvfw32

user32

msvcrt

advapi32

winmm

ole32

Sections

.text Size: 168KB - Virtual size: 167KB

.rdata Size: 35KB - Virtual size: 35KB

.rdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 168KB - Virtual size: 167KB

.rdata
Size: 35KB - Virtual size: 35KB

.rdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB