cec8430800f8be82989ecd0c86d249424368cbc604666bb33034a4593d314813

Sharing

Copy URL Twitter E-mail

General

Target

cec8430800f8be82989ecd0c86d249424368cbc604666bb33034a4593d314813
Size

964KB
MD5

1133e76efbdf40918274f72cd5d60c40
SHA1

6e94e6e448bc696f0b09abe6e4053e50892dff23
SHA256

cec8430800f8be82989ecd0c86d249424368cbc604666bb33034a4593d314813
SHA512

b038f7e2ae3770c9da6c21a9fd1d0234f069d8f1eeaa4c1b303025235067f5b2edfcb3617ab064c32aa8cacc8ae15bad8706f2b63413d96372ff42d868b1da53
SSDEEP

12288:PB7/sj6VUgm27JZlciD3sai+XcJjVMqizWJtD0797/:PB7Ej6VUjCtbi+XcJjVMqizWH07V

Score

N/A

Malware Config

Signatures

Files

cec8430800f8be82989ecd0c86d249424368cbc604666bb33034a4593d314813
.exe windows x86

354154996ecf6797f81ba593a2a15b13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

skinmagic

ord1
ord4
ord10
ord2
ord5
ord8
ord7

dsp_util

?GetSeekable@@YAJPBDPAH@Z
?GetDXVersion@@YAKXZ
?GetFileInfo@@YAJPBDPAN11PAH2PAJ33@Z
??1CMySeeker@@UAE@XZ
??1CMyPlayer@@UAE@XZ

appsys

_appsys_is_sub@0
_appsys_company@0
_appsys_is_edit@0
_appsys_email@0
_appsys_app_name@0
_appsys_chksum_fun0@0
_appsys_trialtime@0
_appsys_homesite@0
_appsys_buynow@0
_appsys_fullname@0
_appsys_regdata_ini@0
_appsys_appsite@0
_appsys_init@0
_appsys_license_name@0
_appsys_filter@0

kernel32

GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetFileAttributesA
GlobalReAlloc
FindNextFileA
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
GetCurrentProcessId
GlobalFlags
TlsGetValue
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
DuplicateHandle
GetOEMCP
SetErrorMode
GetTickCount
RtlUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
HeapFree
HeapAlloc
HeapReAlloc
VirtualProtect
VirtualAlloc
VirtualQuery
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
GetCommandLineA
GetProcessHeap
GetStartupInfoA
ExitThread
CreateThread
SetStdHandle
GetFileType
HeapSize
GetACP
HeapDestroy
HeapCreate
VirtualFree
GetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetHandleCount
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetDriveTypeA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetLocaleInfoW
SetEnvironmentVariableA
GetThreadLocale
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpA
CreateEventA
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
InterlockedDecrement
GetModuleFileNameW
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GlobalFree
FreeResource
MulDiv
LocalAlloc
LocalLock
LocalUnlock
GlobalAlloc
lstrcpynA
GetPrivateProfileStringA
OpenMutexA
CreateMutexA
ExitProcess
CopyFileA
GetExitCodeProcess
WaitForSingleObject
TerminateProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetFileTime
GetSystemDirectoryA
GetTempPathA
GetModuleFileNameA
GetSystemDefaultLangID
FormatMessageA
LocalFree
FileTimeToLocalFileTime
FileTimeToSystemTime
DeleteFileA
GetFileSize
SetCurrentDirectoryA
GetSystemInfo
CompareStringW
CompareStringA
InterlockedExchange
CreateFileA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CloseHandle
Sleep
CreateDirectoryA
GetCurrentDirectoryA
WritePrivateProfileStringA
GlobalLock
GlobalUnlock
GetWindowsDirectoryA
FreeLibrary
lstrcatA
WinExec
lstrcpyA
SetEndOfFile
lstrlenW
GetLastError
SetLastError
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetCPInfo
lstrlenA
lstrcmpiA
MultiByteToWideChar
GetVersion
GetVersionExA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
InterlockedIncrement
CreateFileW

user32

GetMenuStringA
GetWindowDC
DestroyMenu
ValidateRect
GetMessageA
GetWindowThreadProcessId
MapDialogRect
SetWindowContextHelpId
UnregisterClassA
GetDCEx
CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
SetParent
RegisterClipboardFormatA
PostThreadMessageA
SetDlgItemTextA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
CheckMenuItem
SendDlgItemMessageA
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetWindowTextLengthA
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
MapWindowPoints
TrackPopupMenu
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetDlgCtrlID
CallWindowProcA
IntersectRect
GetWindowPlacement
SetActiveWindow
IsWindowEnabled
SetRectEmpty
IsChild
GetMenu
GetLastActivePopup
MessageBoxA
CreateDialogIndirectParamA
IsDialogMessageA
WaitMessage
PostQuitMessage
DestroyWindow
CheckDlgButton
MoveWindow
WinHelpA
BeginPaint
EndPaint
GetDialogBaseUnits
GetAsyncKeyState
GetWindow
GetClassNameA
LoadStringA
BringWindowToTop
SetWindowPos
LoadIconA
UpdateWindow
GetSystemMenu
LoadMenuA
EnableMenuItem
DrawIcon
IsIconic
OpenIcon
FindWindowA
PeekMessageA
DispatchMessageA
TranslateMessage
CharUpperA
ExitWindowsEx
RegisterWindowMessageA
IsRectEmpty
EndDialog
SetFocus
GetWindowTextA
GetDlgItem
SetWindowTextA
ShowWindow
CreateWindowExA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetWindowLongA
CopyIcon
MessageBeep
IsWindow
GetMessagePos
ShowScrollBar
RedrawWindow
LockWindowUpdate
SetCursorPos
IsWindowVisible
LoadImageA
EnableWindow
SendMessageA
PtInRect
InflateRect
CopyRect
DrawFrameControl
SetCursor
DestroyCursor
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
ClientToScreen
FrameRect
OffsetRect
GetIconInfo
CreateIconIndirect
DrawStateA
IsMenu
GetKeyState
ReleaseCapture
SetCapture
DrawFocusRect
GetMenuItemInfoA
DrawIconEx
DestroyIcon
GetSysColorBrush
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ModifyMenuA
GetSubMenu
GetMenuState
GetMenuItemID
GetMenuItemCount
AppendMenuA
CreatePopupMenu
PostMessageA
GetWindowRect
GetClientRect
ScreenToClient
GetDC
ReleaseDC
InvalidateRect
SetTimer
KillTimer
GetFocus
GetDesktopWindow
GetParent
LoadCursorA
DefWindowProcA
GetClassInfoA
GetSystemMetrics
SystemParametersInfoA
GetCursorPos
GetSysColor
GetWindowLongA
SetForegroundWindow
SetRect
LoadBitmapA
FillRect
DrawEdge
CreateMenu
GetForegroundWindow

gdi32

GetPixel
IntersectClipRect
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
BitBlt
ScaleWindowExtEx
SetRectRgn
CombineRgn
GetCharWidthA
StretchDIBits
GetTextColor
GetRgnBox
SetMapMode
PatBlt
Ellipse
GetBkMode
GetDeviceCaps
CreateCompatibleDC
CreateCompatibleBitmap
CreateSolidBrush
CreatePen
GetTextExtentPoint32A
GetTextMetricsA
Rectangle
SelectObject
SetBkMode
RestoreDC
SaveDC
GetClipBox
CreateRectRgnIndirect
ExtSelectClipRgn
GetObjectA
SetWindowExtEx
CreateFontIndirectA
CreatePatternBrush
SetBrushOrgEx
SelectClipRgn
MoveToEx
LineTo
GetTextCharsetInfo
EnumFontFamiliesA
CreateDCA
CreateRectRgn
GetCurrentObject
CreateFontA
CreateBrushIndirect
RoundRect
SetBkColor
SetTextColor
GetStockObject
LPtoDP
DPtoLP
GetWindowExtEx
GetViewportExtEx
GetMapMode
GetBkColor
CreateBitmap
CreateDIBSection
DeleteObject
DeleteDC
GetTextExtentPoint32W
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
SetPixel
ExcludeClipRect

msimg32

TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyA
RegQueryValueExA
RegEnumKeyA
RegDeleteKeyA
RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegQueryValueA
RegOpenKeyExA

shell32

SHGetMalloc
ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
DragQueryFileA
DragFinish
ShellExecuteExA

comctl32

_TrackMouseEvent

shlwapi

PathStripToRootA
PathIsUNCA
PathFindFileNameA
PathFindExtensionA

oledlg

ord8

ole32

CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoUninitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal

oleaut32

SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysFreeString
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysStringLen
SysAllocStringByteLen
VariantCopy

winmm

PlaySoundA

Exports

Exports

??0CMyPlayer@@QAE@ABV0@@Z
??0CMySeeker@@QAE@ABV0@@Z
??4CMyPlayer@@QAEAAV0@ABV0@@Z
??4CMySeeker@@QAEAAV0@ABV0@@Z
??_7CMyPlayer@@6B@
??_7CMySeeker@@6B@

Sections

.text
Size: 604KB - Virtual size: 604KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

354154996ecf6797f81ba593a2a15b13

Headers

File Characteristics

Imports

skinmagic

dsp_util

appsys

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

Exports

Exports

Sections

.text Size: 604KB - Virtual size: 604KB

.rdata Size: 136KB - Virtual size: 134KB

.data Size: 16KB - Virtual size: 36KB

.rsrc Size: 204KB - Virtual size: 204KB

.text
Size: 604KB - Virtual size: 604KB

.rdata
Size: 136KB - Virtual size: 134KB

.data
Size: 16KB - Virtual size: 36KB

.rsrc
Size: 204KB - Virtual size: 204KB