6b45dc5dcdb9b0582e7a60d71b65a0dddd713252d5f794db8c23f5dc6aaeca3e

General

Target

6b45dc5dcdb9b0582e7a60d71b65a0dddd713252d5f794db8c23f5dc6aaeca3e
Size

448KB
MD5

7c98cb9e9873d236c71311454f1104df
SHA1

a02508d193dde010b725b755948e0dad4d8681c6
SHA256

6b45dc5dcdb9b0582e7a60d71b65a0dddd713252d5f794db8c23f5dc6aaeca3e
SHA512

fc8d0f41297fac563e35ea07d4f8cefb80937287ef9f67a3df1d66e9224e1045df8bc2585a983db5bb1260c63f8f41be95eacc59f680fd6f0208fc457dd21a3b
SSDEEP

12288:Xc4XBSV+CgJS2WKOcz4T35LMeRk8ERqFs:M4XAV+CMSeDml9sws

Score

N/A

Malware Config

Signatures

Files

6b45dc5dcdb9b0582e7a60d71b65a0dddd713252d5f794db8c23f5dc6aaeca3e
.exe windows x86

0c3d95c21639c4eb3ba1ceddc9a18faf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
GlobalReAlloc
LocalFree
GetTempPathW
VirtualAlloc
GetProcAddress
VirtualFree
ResumeThread
GetTickCount
SetFirmwareEnvironmentVariableA
Sleep
GetLastError
RemoveDirectoryW
GetSystemInfo
VirtualProtect
GetLocaleInfoA
HeapSize
LCMapStringW
LCMapStringA
GetStringTypeW
MultiByteToWideChar
CreateMutexA
GetSystemTime
ExitProcess
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapAlloc
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapFree
HeapReAlloc
LoadLibraryA
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
RaiseException
GetStringTypeA
VirtualQuery

user32

ShowWindow
PostMessageA
GetSystemMetrics

winmm

joySetCapture
midiStreamOut
midiDisconnect

avifil32

AVIFileOpenA

Sections

.TTEXT
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 388KB - Virtual size: 389KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c3d95c21639c4eb3ba1ceddc9a18faf

Headers

File Characteristics

Imports

kernel32

user32

winmm

avifil32

Sections

.TTEXT Size: 4KB - Virtual size: 1KB

.text Size: 32KB - Virtual size: 29KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 388KB - Virtual size: 389KB

.rsrc Size: 12KB - Virtual size: 432KB

.TTEXT
Size: 4KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 29KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 388KB - Virtual size: 389KB

.rsrc
Size: 12KB - Virtual size: 432KB