a6d47834a42fde2352cf909f67ce506f6967f6994ecc8d6dd34891cbe4604631

Sharing

Copy URL Twitter E-mail

General

Target

a6d47834a42fde2352cf909f67ce506f6967f6994ecc8d6dd34891cbe4604631
Size

616KB
MD5

924ed52796101f27039c827fed5592a5
SHA1

621e432093462194113bba2d6959dac0f752abc0
SHA256

a6d47834a42fde2352cf909f67ce506f6967f6994ecc8d6dd34891cbe4604631
SHA512

a254b2806adf9100e38bead874f0861e3d564dbf4ec7b367f47aea8d71ddf3de58a479e827a7e6264da8e2f4c3c1c01401dcbe46977b7ad6e49d3d3bbcd92b5f
SSDEEP

12288:SibUTHO3BXvwbjgx1bYpDuPMeE6YWj+yyhIY+24r4k:7bUTwX4bUxpmJ6h6Janr

Score

N/A

Malware Config

Signatures

Files

a6d47834a42fde2352cf909f67ce506f6967f6994ecc8d6dd34891cbe4604631
.exe windows x86

5bd901154a801cc5b38ce757178e07da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
LoadLibraryA
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
SetStdHandle
LCMapStringW
LCMapStringA
RaiseException
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
FlushFileBuffers
GetFileAttributesA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetModuleFileNameA
WriteFile
GetFileType
GetStdHandle
IsBadReadPtr
SetFilePointer
ReadFile
HeapSize
GetProcAddress
HeapReAlloc
HeapAlloc
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteFileA
MoveFileA
GetCurrentProcess
TerminateProcess
ExitProcess
HeapFree
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
IsBadCodePtr
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
MulDiv
GetCurrentDirectoryA
GetPrivateProfileStringA
GetTimeFormatA
GetPrivateProfileIntA
MultiByteToWideChar
CreateFileA
GetFileTime
CloseHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVersionExA
GetDateFormatA
SetHandleCount
GetLastError
WideCharToMultiByte

user32

GetWindowRect
ClientToScreen
GetClientRect
SetWindowTextA
SetDlgItemTextA
SendDlgItemMessageA
EndDialog
ShowWindow
EnableWindow
GetDlgItem
GetDlgItemTextA
PostMessageA
DefWindowProcA
WaitMessage
DestroyCursor
LoadCursorFromFileA
LoadCursorA
ReleaseCapture
SetCapture
DrawMenuBar
RedrawWindow
GetSystemMetrics
SetCursorPos
PeekMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
PostQuitMessage
DialogBoxParamA
LoadIconA
RegisterClassA
CreateWindowExA
UpdateWindow
LoadAcceleratorsA
ShowCursor
SetCursor
GetForegroundWindow
MessageBoxA

winmm

timeBeginPeriod
timeEndPeriod
waveOutSetVolume
auxSetVolume
mciSendStringA
timeGetTime

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ole32

CoCreateInstance
CoUninitialize
CoInitialize

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey

gdi32

SetTextColor
SetBkColor
SelectObject
GetTextExtentPoint32A
DeleteObject
DeleteDC
GetStockObject
CreateFontA
GetDeviceCaps
SetMapMode
CreateDIBSection
CreateCompatibleDC
SetTextAlign
ExtTextOutA

shell32

ShellExecuteA

d3d8

Direct3DCreate8

dsound

ord11

Sections

.text
Size: 484KB - Virtual size: 482KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5bd901154a801cc5b38ce757178e07da

Headers

File Characteristics

Imports

kernel32

user32

winmm

comdlg32

ole32

advapi32

gdi32

shell32

d3d8

dsound

Sections

.text Size: 484KB - Virtual size: 482KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 16KB - Virtual size: 1.4MB

.rsrc Size: 92KB - Virtual size: 90KB

.text
Size: 484KB - Virtual size: 482KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 16KB - Virtual size: 1.4MB

.rsrc
Size: 92KB - Virtual size: 90KB