7e481b67c9abd5573e5729ae49cdabd928b6916d7d030e1eafbc7426bd348322

Sharing

Copy URL

Twitter E-mail

General

Target

7e481b67c9abd5573e5729ae49cdabd928b6916d7d030e1eafbc7426bd348322
Size

153KB
MD5

4f00b3c0c35024171364b417cfe28221
SHA1

cde4a8c80453add7fb77f17b49d6f9df98f28a88
SHA256

7e481b67c9abd5573e5729ae49cdabd928b6916d7d030e1eafbc7426bd348322
SHA512

65026923cd8f16262073f306f972c26e1c526f931921e37878df452c303cf343185b211ea47c42c64973b7e1019d76943cab7f950c76c08c73f2fb15f989e964
SSDEEP

3072:Y5hCRdOx+tA0mKPGbfPKhOm75O9CeyPza:4u0z3KhEAV7a

Score

N/A

Malware Config

Signatures

Files

7e481b67c9abd5573e5729ae49cdabd928b6916d7d030e1eafbc7426bd348322
.exe windows x86

52ab207771fdc1ec59ebef71ce529bf8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveOutMessage
waveInMessage
waveOutGetNumDevs
waveInGetNumDevs

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

oleacc

AccessibleChildren
WindowFromAccessibleObject
AccessibleObjectFromWindow

kernel32

GetCurrentProcess
GetStringTypeW
GetStringTypeA
LCMapStringW
CloseHandle
CreateMutexA
WaitForSingleObject
ReleaseMutex
GetModuleFileNameA
UnmapViewOfFile
CreateFileMappingA
GetLastError
MapViewOfFile
lstrcatA
GetTickCount
CreateThread
Sleep
GetVersionExA
CreateEventA
GetSystemDirectoryA
CreateProcessA
ResetEvent
SetEvent
TerminateThread
HeapAlloc
GetProcessHeap
HeapFree
WideCharToMultiByte
OpenProcess
TerminateProcess
LCMapStringA
GetLocaleInfoA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSection
LoadLibraryA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleA
ExitProcess
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
RaiseException
RtlUnwind
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapSize
WriteFile
GetStdHandle
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection

user32

GetClassNameA
EnumWindows
GetParent
FindWindowA
PostMessageA
DefWindowProcA
SendMessageW
UpdateWindow
ShowWindow
CreateWindowExA
RegisterClassExA
DispatchMessageA
TranslateMessage
GetMessageA
SetTimer
SendMessageA
IsWindow
SetWindowPos
GetWindowThreadProcessId
PostQuitMessage

oleaut32

VariantInit
VariantClear
SysFreeString

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

52ab207771fdc1ec59ebef71ce529bf8

Headers

File Characteristics

Imports

winmm

version

oleacc

kernel32

user32

oleaut32

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 80KB - Virtual size: 80KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 80KB - Virtual size: 80KB