42ccded2ab16ebaadbefb05d8ed5d7ea5aa0951546a89e67704eda01c92f5a34

Sharing

Copy URL Twitter E-mail

General

Target

42ccded2ab16ebaadbefb05d8ed5d7ea5aa0951546a89e67704eda01c92f5a34
Size

1.0MB
MD5

44844e8092f4540c60c22937115989db
SHA1

ad0df0720602f70d3adc40cb0960484783968a29
SHA256

42ccded2ab16ebaadbefb05d8ed5d7ea5aa0951546a89e67704eda01c92f5a34
SHA512

cc9f40d99b694c7174178514194e92c940d06bda01693430410a87c7b7868947ffb2cf037b4793bf18cff10489e220a31dd8d73f71c388fcde6d70a92f66ff7e
SSDEEP

12288:AOFGRcAh/kfsHb+tvdr1d6+8tRRdRCN5HaHoeQdA0rufpfR+b1OuyF:TGRcAgsSVdWbo5HflDafpfRw1OuyF

Score

N/A

Malware Config

Signatures

Files

42ccded2ab16ebaadbefb05d8ed5d7ea5aa0951546a89e67704eda01c92f5a34
.exe windows x86

08ccea901d84050a33f1ff9cfbd52f37

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemInfo
QueryPerformanceCounter
QueryPerformanceFrequency
GetSystemDefaultLangID
CreateDirectoryA
RemoveDirectoryA
ExitThread
MoveFileA
DeleteFileA
SetFileAttributesA
CreateThread
OpenMutexA
CreateProcessA
GetExitCodeThread
GlobalMemoryStatus
CopyFileA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
ReleaseMutex
GetLastError
CreateMutexA
SetWaitableTimer
CreateWaitableTimerA
CreateEventA
SetEvent
lstrlenA
TerminateThread
lstrcpyA
GetCurrentDirectoryA
ResetEvent
GetSystemTime
WaitForSingleObjectEx
FreeLibrary
ReleaseSemaphore
CreateSemaphoreA
FlushFileBuffers
SetStdHandle
LoadLibraryA
GetStringTypeW
GetStringTypeA
GetWindowsDirectoryA
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
SetThreadAffinityMask
LCMapStringW
LCMapStringA
WideCharToMultiByte
UnhandledExceptionFilter
GetOEMCP
GetACP
GetCPInfo
SetUnhandledExceptionFilter
HeapSize
HeapReAlloc
GetCurrentProcess
TerminateProcess
TlsGetValue
SetLastError
TlsAlloc
HeapAlloc
HeapFree
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
ResumeThread
InterlockedIncrement
InterlockedDecrement
TlsSetValue
GetCurrentThreadId
RaiseException
RtlUnwind
WaitForMultipleObjects
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
OpenProcess
FindFirstFileA
FindNextFileA
FindClose
GetLocalTime
SetCurrentDirectoryA
GetLogicalDriveStringsA
GetFileAttributesA
DeviceIoControl
SetErrorMode
GetVolumeInformationA
GetDriveTypeA
GetModuleFileNameA
MultiByteToWideChar
GetCurrentThread
WaitForSingleObject
SetThreadIdealProcessor
SetThreadPriority
GlobalAlloc
GlobalLock
GlobalUnlock
WinExec
Sleep
GetComputerNameA
GetVersionExA
SetFileTime
GetFileTime
GetFileSize
SetFilePointer
WriteFile
ReadFile
CloseHandle
CreateFileA
LeaveCriticalSection
EnterCriticalSection
FreeEnvironmentStringsA
GetTickCount
DeleteCriticalSection

user32

KillTimer
SetTimer
ReleaseDC
GetDC
CreateWindowExA
SendMessageA
ShowWindow
MoveWindow
GetWindowRect
SetCursor
SystemParametersInfoA
PostQuitMessage
GetWindowLongA
PeekMessageA
TranslateMessage
DispatchMessageA
MsgWaitForMultipleObjects
GetMessageA
SetRect
GetClientRect
FillRect
SetClassLongA
ShowCursor
SwapMouseButton
IsIconic
FindWindowA
BringWindowToTop
SetForegroundWindow
GetKeyboardState
CloseWindow
EnableWindow
IsDlgButtonChecked
WaitForInputIdle
GetAsyncKeyState
LoadIconA
LoadCursorA
RegisterClassExA
GetWindowPlacement
GetWindowThreadProcessId
wsprintfA
CallWindowProcA
GetWindowTextA
DestroyWindow
InvalidateRect
UpdateWindow
GetSystemMetrics
GetCursorPos
SetCursorPos
SetWindowLongA
SetWindowPos
DialogBoxParamA
GetDlgItemTextA
SendDlgItemMessageA
SetDlgItemTextA
GetDlgItem
SetFocus
EndDialog
MessageBoxA
IsWindow
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
RedrawWindow
BeginPaint
EndPaint
PostMessageA
DefWindowProcA
SetWindowTextA

gdi32

GetStockObject
RemoveFontResourceA
RemoveFontMemResourceEx
AddFontMemResourceEx
AddFontResourceA
CreateRectRgn
SelectClipRgn
SetStretchBltMode
SetBrushOrgEx
StretchDIBits
BitBlt
CreatePalette
SetBkMode
SetTextColor
SelectPalette
TextOutA
CreateFontA
CreateCompatibleDC
CreateDIBSection
GetObjectA
SelectObject
DeleteDC
EnumFontFamiliesExA
DeleteObject

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegSetValueExA
GetUserNameA
ImpersonateLoggedOnUser
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
DuplicateTokenEx
RevertToSelf
OpenProcessToken

shell32

SHChangeNotify
ShellExecuteA
SHBrowseForFolderA
DragQueryFileA
SHGetSpecialFolderLocation
SHGetMalloc
DragAcceptFiles
DragFinish
SHGetPathFromIDListA

ole32

CoInitialize
CoTaskMemAlloc
CoUninitialize
CoTaskMemFree
CoCreateInstance
CoFreeUnusedLibraries
OleDraw

ddraw

DirectDrawCreate

winmm

timeGetTime
mciSendCommandA
timeEndPeriod
timeGetDevCaps
timeBeginPeriod
PlaySoundA

imm32

ImmGetDefaultIMEWnd

atl

ord41

dsound

ord11

Exports

Exports

??4SThreadParam@@QAEAAU0@ABU0@@Z

Sections

.text
Size: 588KB - Virtual size: 588KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 288KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdat
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

08ccea901d84050a33f1ff9cfbd52f37

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

ddraw

winmm

imm32

atl

dsound

Exports

Exports

Sections

.text Size: 588KB - Virtual size: 588KB

.rdata Size: 32KB - Virtual size: 32KB

.data Size: 76KB - Virtual size: 240KB

.rsrc Size: 288KB - Virtual size: 288KB

.rdat Size: 8KB - Virtual size: 5KB

.text
Size: 588KB - Virtual size: 588KB

.rdata
Size: 32KB - Virtual size: 32KB

.data
Size: 76KB - Virtual size: 240KB

.rsrc
Size: 288KB - Virtual size: 288KB

.rdat
Size: 8KB - Virtual size: 5KB