3fafb2cdb9d4246be77e43688f728ba6474e38d4e4fc19f5c586c8a5afeef996

Sharing

Copy URL Twitter E-mail

General

Target

3fafb2cdb9d4246be77e43688f728ba6474e38d4e4fc19f5c586c8a5afeef996
Size

165KB
MD5

a170e63bb8e54473db835832d003150b
SHA1

ea0de360d06b738265d5c5a0e855dbd491132677
SHA256

3fafb2cdb9d4246be77e43688f728ba6474e38d4e4fc19f5c586c8a5afeef996
SHA512

6523e59d6f69fcdbadf32e213c49ba80260688f6c9f4faf1e54c7551a5b6dc96b6f18c3ab6395df4500f0f0cd833feadef812c50858efb291f7ad3d8839e2e06
SSDEEP

3072:PKvDoIR/VvcfajZRDEirsRsBqMk/fkB7Ambzf1xQv3Ih4gcsxLV:P6DJtvcSjrE6OsBqMckB7A+KAheU

Score

N/A

Malware Config

Signatures

Files

3fafb2cdb9d4246be77e43688f728ba6474e38d4e4fc19f5c586c8a5afeef996
.exe windows x86

b0f8fe12270a2df1209bee4cf748527d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

FillRect
ReleaseDC
GetClientRect
wsprintfW
OffsetRect
GetDC
IsRectEmpty
PeekMessageW
DispatchMessageW
CopyRect
TranslateMessage
SetRectEmpty
GetWindowRect

avifil32

AVISaveOptions
AVIMakeCompressedStream

winmm

timeGetTime

shlwapi

PathFileExistsA
PathRenameExtensionW
PathCombineW
PathFileExistsW
PathAddBackslashW
PathAppendW
PathIsDirectoryW
PathRemoveBackslashW
PathRemoveFileSpecW

kernel32

QueryPerformanceCounter
GetSystemTime
FindFirstFileW
InterlockedIncrement
DeleteFileW
GetTempFileNameA
DeleteCriticalSection
WaitNamedPipeA
DisableThreadLibraryCalls
DeleteFileA
CreateFileA
GetTempPathA
CreateDirectoryW
GetTickCount
GetVersionExA
GetVersionExW
GetModuleFileNameW
SetFileAttributesW
MultiByteToWideChar
LoadLibraryW
GetACP
WriteFile
GetProcessAffinityMask
InterlockedDecrement
GetModuleFileNameA
WaitForSingleObject
GetTempPathW
SetFilePointer
TerminateProcess
GetCurrentThreadId
GetThreadLocale
GetLastError
RemoveDirectoryW
CopyFileA
EnumResourceTypesW
SetFileAttributesA
GetCurrentProcessId
CloseHandle
FreeLibrary
GetFileAttributesA
FindClose
LeaveCriticalSection
OutputDebugStringA
WideCharToMultiByte
GetTempFileNameW
LocalFree
lstrlenA
FindNextFileW
lstrlenW
MulDiv
CreateMutexA
Sleep
GetLocaleInfoA
ReadFile
ReleaseMutex
CreateDirectoryA
InitializeCriticalSection
InterlockedExchange
OutputDebugStringW
EnterCriticalSection
GetProcAddress
LocalAlloc
GetSystemTimeAsFileTime

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0f8fe12270a2df1209bee4cf748527d

Headers

File Characteristics

Imports

user32

avifil32

winmm

shlwapi

kernel32

Sections

.text Size: 96KB - Virtual size: 96KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 64KB - Virtual size: 64KB

.tls Size: 1024B - Virtual size: 100KB

.text
Size: 96KB - Virtual size: 96KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 64KB - Virtual size: 64KB

.tls
Size: 1024B - Virtual size: 100KB