f558de0335c77eede2cf3ac7c0b1423ed6db8ccdf3aa06eb86ced5b530c56860

Sharing

Copy URL Twitter E-mail

General

Target

f558de0335c77eede2cf3ac7c0b1423ed6db8ccdf3aa06eb86ced5b530c56860
Size

389KB
MD5

912dd6a54dfd95fcdb3e81a087f2a639
SHA1

1ec051de5f822996300acf952341ab7bd2139471
SHA256

f558de0335c77eede2cf3ac7c0b1423ed6db8ccdf3aa06eb86ced5b530c56860
SHA512

adff9f179d89d4a76af4cbe549a3f4a1f4c6fb7dcb5dcf46b04cc7698f1a298b30835ab2e1d9069b50beda9e83e0fdf6bbbb621b752bd1ef2ab068317c9bca11
SSDEEP

6144:sEPX9EAxKLxNqCDYLH5i6aJP46AqDOMBA+CpacmPoFInUcazSECMRA6+4aTm57PE:sEFvxKL7twHz5aax6DanCN6+LqP7w

Score

N/A

Malware Config

Signatures

Files

f558de0335c77eede2cf3ac7c0b1423ed6db8ccdf3aa06eb86ced5b530c56860
.dll windows x86

c703c1692fa4b8c04fd675d6d7bf4e38

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

user32

wsprintfW
TranslateMessage
SetWindowTextA
PeekMessageA
GetWindowThreadProcessId
GetClassNameA
EnumWindows
EnumChildWindows
DispatchMessageA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

dbghelp

ImageNtHeader
SymEnumSourceFiles
SymEnumSymbols
SymFindFileInPath
SymGetTypeInfo
SymInitialize
SymCleanup

msvcrt

system
strtoul
strrchr
strncmp
strchr
sqrt
sprintf
realloc
rand
printf
memset
mbtowc
malloc
localeconv
isxdigit
iswprint
isupper
isspace
isdigit
isalpha
gmtime
fputws
fprintf
ferror
fclose
calloc
atoi
_wspawnle
_wrmdir
wcstoul
_wcsicmp
_tzset
_strupr
_strtime
_strrev
_strnicmp
_strlwr
_stricmp
_snprintf
_read
_purecall
_onexit
_lseeki64
_lock
_itoa
_ismbclegal
_ismbblead
_isatty
_iob
_initterm
_flsbuf
_fileno
_expand
_execlp
_atoi64
_amsg_exit
__pioinfo
__p__pctype
__mb_cur_max
__dllonexit
__badioinfo
wcsstr
wcsrchr
wcsncpy
wcsncmp
wcschr
tmpnam
_write
time
strtol

kernel32

DebugBreak
EnterCriticalSection
ExitProcess
FileTimeToLocalFileTime
CreateFileMappingA
FindClose
FindFirstFileA
FindResourceA
FormatMessageA
FreeLibrary
CreateDirectoryA
CompareFileTime
FileTimeToSystemTime
lstrlenW
lstrlenA
lstrcmpA
WriteFile
WinExec
WideCharToMultiByte
VirtualFreeEx
VirtualAllocEx
VirtualAlloc
UnmapViewOfFile
UnhandledExceptionFilter
TlsAlloc
TerminateProcess
SystemTimeToFileTime
SetUnhandledExceptionFilter
SetLastError
SetFilePointer
SetCommMask
SearchPathA
RtlUnwind
ReadFile
QueryPerformanceCounter
MultiByteToWideChar
MapViewOfFile
LockResource
LocalFree
LoadResource
LoadLibraryA
IsBadStringPtrA
IsBadReadPtr
InterlockedExchange
InterlockedCompareExchange
HeapFree
HeapAlloc
GetVersionExW
GetVersionExA
GetVersion
GetTickCount
GetSystemTimeAsFileTime
GetSystemTime
GetProcessWorkingSetSize
GetProcessPriorityBoost
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocalTime
GetLastError
GetFileSize
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCommandLineA
GetCommConfig
GetCPInfo
CloseHandle

advapi32

RegOpenKeyExA
RegOpenKeyExW
RegCloseKey

Exports

Exports

AllocADsMem
CreateEffectFromResourceA
CreateSyncReader
GetSource3i
VecLoadMemory
mpegInOpenMPEGIdxW
mpegSplitSeekFrame

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c703c1692fa4b8c04fd675d6d7bf4e38

Headers

File Characteristics

Imports

version

user32

ole32

dbghelp

msvcrt

kernel32

advapi32

Exports

Exports

Sections

.text Size: 74KB - Virtual size: 74KB

.rdata Size: 175KB - Virtual size: 175KB

.data Size: 69KB - Virtual size: 71KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 74KB - Virtual size: 74KB

.rdata
Size: 175KB - Virtual size: 175KB

.data
Size: 69KB - Virtual size: 71KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 5KB - Virtual size: 4KB