1a35c9c7f31f2cd0ffe99716d833828ddb607e700a527da4ac6cbc571ab00329

General

Target

1a35c9c7f31f2cd0ffe99716d833828ddb607e700a527da4ac6cbc571ab00329
Size

132KB
MD5

a0a38a1a081415cfb9d7bba57f69c779
SHA1

989d452a905ccb225e30e3048c8be3099b27ff46
SHA256

1a35c9c7f31f2cd0ffe99716d833828ddb607e700a527da4ac6cbc571ab00329
SHA512

cb05d696be80b03b567eba401f108efc424a4dbf0661b39f952831632ad8e57bd464400c9f1d68fd4d0ca1b364b01adc5d7ffb0b02ac64d68de13e71303cdbc6
SSDEEP

3072:J7q4f/I6RPUgG/8m/cnQbko87Pdb/5F/gSsQ4X0vSBb0RC8TJz:FZ7RMgKJzbkP7Pdb/nJZUoRC8T

Score

N/A

Malware Config

Signatures

Files

1a35c9c7f31f2cd0ffe99716d833828ddb607e700a527da4ac6cbc571ab00329
.dll windows x86

017c60fcac11ab02f658ce5115ebd092

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFile
CreateProcessA
WaitForSingleObject
lstrlenA
LeaveCriticalSection
EnterCriticalSection
CreateEventA
InterlockedIncrement
UnmapViewOfFile
GetCommandLineA
CreateDirectoryA
ReleaseMutex
LoadLibraryA
lstrlenW
CloseHandle
InterlockedCompareExchange
GetModuleFileNameA
SetLastError
GetModuleHandleA
GetLastError
InterlockedDecrement
Sleep
ExitProcess
GetProcAddress
GetTickCount
CopyFileA
LocalFree
OpenEventA

ole32

CoUninitialize
OleSetContainedObject
OleCreate
CoInitialize
CoCreateGuid
CreateBindCtx

user32

SetTimer
DefWindowProcA
SetWindowLongA
GetParent
RegisterWindowMessageA
KillTimer
PostQuitMessage
TranslateMessage
SendMessageA
GetSystemMetrics
DestroyWindow
CreateWindowExA
DispatchMessageA
PostMessageA
GetWindowLongA
GetMessageA
FindWindowA
GetClassNameA

oleaut32

SysFreeString
SysAllocStringLen
SysAllocString

advapi32

RegOpenKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA

Exports

Exports

winMapaudio

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

017c60fcac11ab02f658ce5115ebd092

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

advapi32

Exports

Exports

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB