cab58ca808c198e992a8c14269478e88c84408a4a1a4b15393bbd12227a9afb8

Sharing

Copy URL Twitter E-mail

General

Target

cab58ca808c198e992a8c14269478e88c84408a4a1a4b15393bbd12227a9afb8
Size

497KB
MD5

1711651b89c51ca74edde00436f09348
SHA1

7072c94b977d435b8cff1940fe849e375bf272d4
SHA256

cab58ca808c198e992a8c14269478e88c84408a4a1a4b15393bbd12227a9afb8
SHA512

e2ccef9a17775fc73aa21a388488ccc7904b4becc8bead730fd7a6e0a8805a11bf1a6e1999fb567115b4287fe258023142207d8ec3f6d5e0219d099cfc28e2e8
SSDEEP

12288:eNRXNH7dzry/2xFjLNyLRXXLmooA0+CnCaGCoLBrKmmMu:aRXNH7dzryagLRLGqGos

Score

N/A

Malware Config

Signatures

Files

cab58ca808c198e992a8c14269478e88c84408a4a1a4b15393bbd12227a9afb8
.exe windows x86

3b155beca76340178a6452d92494dcbb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetTimeZoneInformation
GetModuleFileNameA
SetFilePointer
GetFileType
UnhandledExceptionFilter
SetHandleCount
ReadFile
GetStdHandle
LCMapStringW
LCMapStringA
HeapSize
MultiByteToWideChar
GetDriveTypeA
WideCharToMultiByte
TerminateProcess
ExitProcess
GetCurrentProcess
VirtualAlloc
VirtualFree
CloseHandle
HeapDestroy
GetProcAddress
HeapCreate
GetCommandLineA
GetStartupInfoA
GetVersion
GetFullPathNameA
GetModuleHandleA
GetCurrentDirectoryA
GetLastError
HeapFree
HeapAlloc
HeapReAlloc
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCPInfo
GetACP
GetEnvironmentStringsW
RtlUnwind
WriteFile
GetOEMCP
GetStringTypeW
SetStdHandle
GetStringTypeA
CreateFileA
LoadLibraryA
FlushFileBuffers
SetEndOfFile
CompareStringW
SetEnvironmentVariableA
VirtualProtect
FindFirstFileA
FindClose
FileTimeToSystemTime
DeleteFileA
RaiseException
FileTimeToLocalFileTime

user32

SendMessageA
MessageBoxA
SetWindowTextA
ValidateRect
ShowCursor
EnableWindow
CreateDialogParamA
WaitMessage
TranslateMessage
GetDlgItemInt
SetDlgItemInt
DialogBoxParamA
GetFocus
SetTimer
GetDlgItemTextA
KillTimer
CallWindowProcA
SendDlgItemMessageA
SetDlgItemTextA
EndDialog
GetKeyNameTextA
GetWindowTextA
EnableMenuItem
GetDlgItem
GetSubMenu
SetMenuItemInfoA
GetMenuItemCount
CheckMenuItem
GetAsyncKeyState
PostQuitMessage
DefWindowProcA
DrawMenuBar
GetMenu
GetSystemMetrics
GetWindowRect
SetWindowLongA
SetWindowPos
GetWindowLongA
AdjustWindowRect
ReleaseDC
MoveWindow
GetWindowDC
LoadCursorA
ClientToScreen
LoadIconA
ShowWindow
RegisterClassA
CreateWindowExA
LoadAcceleratorsA
UpdateWindow
SetFocus
TranslateAcceleratorA
PeekMessageA
DispatchMessageA
DestroyWindow

gdi32

GetTextMetricsA
GetStockObject
GetSystemPaletteEntries

comctl32

ord2
ord6
ord17

ddraw

DirectDrawCreate

winmm

joyGetPos
timeGetTime

dsound

DirectSoundCreate

wsock32

WSACleanup
getpeername
getsockname
recv
ioctlsocket
WSAStartup
accept
listen
bind
WSAAsyncSelect
closesocket
inet_addr
ntohs
send
connect
setsockopt
socket
htons

Sections

.text
Size: 330KB - Virtual size: 329KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 3.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3b155beca76340178a6452d92494dcbb

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

ddraw

winmm

dsound

wsock32

Sections

.text Size: 330KB - Virtual size: 329KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 140KB - Virtual size: 3.1MB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 20KB - Virtual size: 26KB

.text
Size: 330KB - Virtual size: 329KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 140KB - Virtual size: 3.1MB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 20KB - Virtual size: 26KB