9aaf1f313c2370208df32e357f6940b4b663b694a751dc010d14e345d3740dc5

Sharing

Copy URL Twitter E-mail

General

Target

9aaf1f313c2370208df32e357f6940b4b663b694a751dc010d14e345d3740dc5
Size

596KB
MD5

220bbb5a4f1a156a7556c202e3e96142
SHA1

3898e767ac93d6fbab36b9e4f8172a70a20c1c67
SHA256

9aaf1f313c2370208df32e357f6940b4b663b694a751dc010d14e345d3740dc5
SHA512

1edacb6dd74933fbff46014316dcb6c90d2a5c19422e14b82bc07f62ea049999eef079d00f7743f37fb123d488f98eb401f27646a67d04e5376c463fff9c82c3
SSDEEP

12288:8Xme+x7jzYVjzcO66fZWBgReoizwtUlW6svUx:wR+xXzYVjzcOZWBgRe3wtUlWdMx

Score

N/A

Malware Config

Signatures

Files

9aaf1f313c2370208df32e357f6940b4b663b694a751dc010d14e345d3740dc5
.exe windows x86

dcd30191ef8a88d53ddc1622516e5903

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

kernel32

CompareStringW
CompareStringA
FlushFileBuffers
GetOEMCP
GetACP
LCMapStringW
LCMapStringA
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
IsBadCodePtr
IsBadReadPtr
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetDriveTypeA
InterlockedIncrement
InterlockedDecrement
HeapSize
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
SetEnvironmentVariableA
SetUnhandledExceptionFilter
ExitThread
CreateThread
GetVersion
GetStartupInfoA
GetModuleHandleA
GetFullPathNameA
GetFileAttributesA
TerminateProcess
ExitProcess
HeapAlloc
HeapFree
RtlUnwind
RaiseException
InterlockedExchange
TlsGetValue
ResumeThread
TlsAlloc
GetCurrentProcess
GetCurrentThread
DuplicateHandle
GetCurrentThreadId
TlsSetValue
SetThreadPriority
CreateSemaphoreA
WaitForSingleObject
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryA
GetProcAddress
SetStdHandle
GetModuleFileNameA
lstrcpyA
GetCommandLineA
GetCurrentDirectoryA
OutputDebugStringA
GetStdHandle
WriteConsoleA
SetFilePointer
SetEndOfFile
AllocConsole
GetVersionExA
GetLogicalDriveStringsA
FindNextFileA
SetFileTime
WriteFile
DeleteFileA
SetErrorMode
FindFirstFileA
FindClose
CreateFileA
ReadFile
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
Beep
Sleep
GetLastError
GetSystemDirectoryA
SetLastError

user32

LoadKeyboardLayoutA
GetMessageA
SetClassLongA
GetDlgCtrlID
SetDlgItemInt
GetDlgItemInt
MapWindowPoints
GetKeyboardState
ToAscii
DialogBoxParamA
EndDialog
SetWindowTextA
IsDialogMessageA
GetKeyState
DestroyAcceleratorTable
TranslateAcceleratorA
CreateAcceleratorTableA
OpenDesktopA
EnumDesktopWindows
CloseDesktop
FindWindowA
GetClassNameA
PeekMessageA
TranslateMessage
DispatchMessageA
SetDlgItemTextA
LoadStringA
SetWindowLongA
GetDlgItemTextA
GetWindowLongA
SetTimer
SetClipboardViewer
CheckMenuItem
DrawMenuBar
AppendMenuA
GetSystemMenu
ShowWindow
CreateWindowExA
RegisterClassA
GetSysColorBrush
LoadCursorA
LoadIconA
SendMessageA
EnableMenuItem
SetForegroundWindow
SetWindowPos
GetWindowTextA
EnableWindow
CreateDialogParamA
GetDlgItem
LoadImageA
DestroyIcon
DestroyMenu
GetSubMenu
GetMenuItemID
SetMenuDefaultItem
TrackPopupMenu
RegisterClassExA
LoadMenuA
GetCursorPos
SetCursorPos
GetSystemMetrics
EmptyClipboard
SetClipboardData
GetClipboardOwner
OpenClipboard
GetClipboardData
CloseClipboard
GetKeyboardLayoutNameA
SetScrollInfo
BeginPaint
EndPaint
GetForegroundWindow
GetWindow
GetFocus
SetCursor
WindowFromPoint
ScreenToClient
SetFocus
MessageBoxA
ChangeClipboardChain
PostQuitMessage
DefWindowProcA
KillTimer
PostMessageA
DestroyWindow
ReleaseDC
GetDC
DrawTextA
GetClientRect
ShowScrollBar
IsIconic
ScrollWindowEx
InvalidateRect
UpdateWindow
SystemParametersInfoA
SetRect
AdjustWindowRectEx
GetMenuState
GetWindowRect
GetWindowPlacement
SetWindowPlacement

gdi32

SetBrushOrgEx
SetStretchBltMode
SetPixelV
CreateFontIndirectA
StretchBlt
SetBkMode
Rectangle
GetClipBox
BitBlt
CreatePalette
GetDeviceCaps
GetStockObject
SetTextColor
SetBkColor
CreateCompatibleBitmap
DeleteObject
ExtTextOutA
SelectObject
RealizePalette
SelectPalette
DeleteDC
GdiFlush
CreateCompatibleDC
UpdateColors

comdlg32

CommDlgExtendedError
GetSaveFileNameA
GetOpenFileNameA

advapi32

RegDeleteValueA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyExA
RegOpenKeyA
RegEnumValueA
RegCloseKey
RegCreateKeyA
RegSetValueA
RegCreateKeyExA
RegQueryValueExA

shell32

Shell_NotifyIconA

wsock32

WSACleanup
accept
inet_ntoa
bind
listen
WSAAsyncSelect
send
recv
WSAStartup
shutdown
closesocket
setsockopt
socket
ioctlsocket
gethostbyname
htons
connect
getpeername
WSAGetLastError

comctl32

CreateToolbarEx
ord17

Sections

.text
Size: 236KB - Virtual size: 235KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Y
Size: 240KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dcd30191ef8a88d53ddc1622516e5903

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

advapi32

shell32

wsock32

comctl32

Sections

.text Size: 236KB - Virtual size: 235KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 40KB - Virtual size: 43KB

.rsrc Size: 56KB - Virtual size: 53KB

Y Size: 240KB - Virtual size: 240KB

.text
Size: 236KB - Virtual size: 235KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 40KB - Virtual size: 43KB

.rsrc
Size: 56KB - Virtual size: 53KB

Y
Size: 240KB - Virtual size: 240KB