ffd0be9f81512af981116cf4880df45e77f7b066931522ca0e36933e2b92a3ff

Sharing

Copy URL

Twitter E-mail

General

Target

ffd0be9f81512af981116cf4880df45e77f7b066931522ca0e36933e2b92a3ff
Size

298KB
MD5

7aacade6db3ab1863274e9c7e7104f52
SHA1

74f894a48ab528beffb87284c4923f0c20a41c34
SHA256

ffd0be9f81512af981116cf4880df45e77f7b066931522ca0e36933e2b92a3ff
SHA512

a81ad4c73a0b4bb873acaf07372c1f120a10393c3c75f3fe1d031e5dbbb53595aa5b1db8abf2ec0718a53f723e7a7a800573138d8f538ea0ab3cb7e6fe42fd4d
SSDEEP

6144:imAYnSqsCvAO0pFSaCXUAw061tOzlN1b0WIAX0f:inY9sCvKE4061wlnb0Z8

Score

N/A

Malware Config

Signatures

Files

ffd0be9f81512af981116cf4880df45e77f7b066931522ca0e36933e2b92a3ff
.dll windows x86

bced6668d7a565a6d26eb912aec885f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleFontSize
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetExitCodeThread
GetFileSize
GetFileTime
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
HeapAlloc
HeapCreate
FreeLibrary
HeapFree
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
OutputDebugStringA
QueryPerformanceCounter
ReadFile
ReleaseMutex
SetFilePointer
SetSystemPowerState
SetUnhandledExceptionFilter
SetupComm
Sleep
TerminateProcess
TlsAlloc
TlsFree
UnhandledExceptionFilter
VirtualAlloc
WaitForSingleObject
WritePrivateProfileSectionA
lstrcatA
lstrcmpA
lstrcpyA
lstrlenA
FreeEnvironmentStringsA
DisableThreadLibraryCalls
DeviceIoControl
DeleteFileA
CreateThread
CreateMutexA
CreateFileA
HeapDestroy
CloseHandle

advapi32

RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

winmm

midiOutShortMsg
midiOutReset
midiOutClose
midiOutOpen
midiOutGetDevCapsA
waveOutReset

ole32

UtGetDvtd32Info
CoUninitialize
CoInitialize
CoCreateInstance
CoTaskMemFree

user32

IsWindow
LoadStringA
MessageBoxA
RegisterWindowMessageA
CreatePopupMenu

Exports

Exports

InPlaceSubtract
Long_FromString
Member_Get
MemoryError
UnicodeError
_Length

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bced6668d7a565a6d26eb912aec885f6

Headers

File Characteristics

Imports

kernel32

advapi32

winmm

ole32

user32

Exports

Exports

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 139KB - Virtual size: 139KB

.data Size: 34KB - Virtual size: 34KB

.rsrc Size: 15KB - Virtual size: 15KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 139KB - Virtual size: 139KB

.data
Size: 34KB - Virtual size: 34KB

.rsrc
Size: 15KB - Virtual size: 15KB

.reloc
Size: 6KB - Virtual size: 5KB