a61b0cd87cc7a106cdf965e7a2c73e4fd8a1f32e3b129421e04d489607fe6651

Sharing

Copy URL Twitter E-mail

General

Target

a61b0cd87cc7a106cdf965e7a2c73e4fd8a1f32e3b129421e04d489607fe6651
Size

186KB
MD5

295ef58fdb8af028211d9ff39313b440
SHA1

812e6e934a18bfe2488ac3663976edd740551444
SHA256

a61b0cd87cc7a106cdf965e7a2c73e4fd8a1f32e3b129421e04d489607fe6651
SHA512

184222225f47086bdf64ba075e6baf0c5cb1426d506822ddf6c246e689c7964fd4b6346b333df7891fedef88540317e596fa748ea8a2b4af53bc607a5b8c3ae0
SSDEEP

3072:o+lA4v/+bAiVSuoOcd/FlqKNXQ6vLYA60U++PzSHhqF3xJM5uVHqNcAhO4BVEY6L:UO+bZV6hFJNXQ6DYARU+ox25uRwcp4bS

Score

N/A

Malware Config

Signatures

Files

a61b0cd87cc7a106cdf965e7a2c73e4fd8a1f32e3b129421e04d489607fe6651
.exe windows x86

86868c84774481cadaeb3f32630cf084

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
InitializeCriticalSection
QueryPerformanceCounter
GlobalMemoryStatus
GetSystemInfo
IsBadReadPtr
GetFileAttributesW
GlobalUnlock
MulDiv
GlobalFree
lstrlenW
GetPrivateProfileStringW
LoadLibraryW
DeleteCriticalSection
CreateSemaphoreW
GetStartupInfoA
HeapFree
GetLastError
lstrcpynW
lstrcpyW
GlobalLock
GetQueuedCompletionStatus
GetProfileIntA
GlobalAlloc
lstrcmpiW
SetEvent
WaitForSingleObject
GetCurrentThread
HeapAlloc
GetEnvironmentStringsA
GetProcessHeap
CreateFileW
GetFullPathNameW
lstrlenA
GetVersionExW
CloseHandle
GetACP
CreateThread
CreateEventW
GetDiskFreeSpaceW
GetSystemTimeAsFileTime
IsBadWritePtr
IsBadCodePtr
GetModuleFileNameA
DeleteFileW
GetTickCount
GetProcAddress
MultiByteToWideChar
GetFileSize
lstrcpyA
EnterCriticalSection
CreateIoCompletionPort
GetThreadPriority
PostQueuedCompletionStatus
SetFilePointer
lstrcmpW
InterlockedExchange
WriteFile
InterlockedDecrement
ReadFile
GetSystemDefaultLangID
GlobalHandle
WideCharToMultiByte
WaitForMultipleObjects
LeaveCriticalSection
GetCurrentProcessId
SetThreadPriority
ResetEvent
SetEndOfFile
ReleaseSemaphore
GetCurrentProcess
VirtualFree
FreeLibrary
SetUnhandledExceptionFilter

user32

ClientToScreen
DestroyWindow
wsprintfW
TranslateMessage
CheckRadioButton
IsRectEmpty
GetWindowLongW
SetWindowLongW
SendMessageW
CheckDlgButton
GetDlgItem
ReleaseDC
EnableWindow
IsWindow
MoveWindow
DispatchMessageW
GetDC
ShowWindow
SetDlgItemInt
GetClientRect
GetDlgItemInt
LoadCursorW
GetAsyncKeyState
InvalidateRect
IsWindowVisible
GetDesktopWindow
GetWindowRect
SetCursor
DefWindowProcW
CreateDialogParamW
LoadStringW
SetDlgItemTextW
PeekMessageW

msvfw32

ICOpen
ICSendMessage
ICDecompress
ICGetInfo
ICClose
ICLocate
ICCompress

ole32

CoFreeUnusedLibraries
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoUninitialize
CoInitialize

winmm

waveInGetDevCapsW
waveInClose
CloseDriver
waveInStart
waveInReset
mixerGetID
mixerSetControlDetails
waveInAddBuffer
waveInUnprepareHeader
waveInOpen
mixerGetControlDetailsW
SendDriverMessage
mixerClose
mixerGetLineControlsW
mixerOpen
waveInPrepareHeader
waveInStop
mixerGetLineInfoW
OpenDriver

advapi32

RegSetValueW
RegQueryValueExW
RegEnumKeyW
RegCloseKey
RegOpenKeyW
RegEnumKeyExW
RegCreateKeyW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW

gdi32

GetObjectW
GetStockObject
PatBlt
GetPaletteEntries
GetTextExtentPoint32W
SelectObject

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86868c84774481cadaeb3f32630cf084

Headers

File Characteristics

Imports

kernel32

user32

msvfw32

ole32

winmm

advapi32

gdi32

version

Sections

.text Size: 158KB - Virtual size: 158KB

.rdata Size: 24KB - Virtual size: 24KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 158KB - Virtual size: 158KB

.rdata
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 1024B - Virtual size: 644B