0b769ad91b95729837166feec98136275adb9e6328a956c4800c5963389f8109

Sharing

Copy URL Twitter E-mail

General

Target

0b769ad91b95729837166feec98136275adb9e6328a956c4800c5963389f8109
Size

416KB
MD5

57ad96d5fc8c874773017153f11b73e0
SHA1

ec8ffa8da1516471acdc7bfba33547e66a621165
SHA256

0b769ad91b95729837166feec98136275adb9e6328a956c4800c5963389f8109
SHA512

e063dda0106e1c8af7a8e8187db69cf033ca1720dcf4029595b250061b75d850ab8fcca0854fd062295e1300450267ab77817e9d87a730b76a3a683978ee5b7b
SSDEEP

12288:IeCBV1yUR3FW1rxMagTUkNbNewDalb4PioWmoTash/mJPaG7:4jMw0b4Pm10PaG7

Score

N/A

Malware Config

Signatures

Files

0b769ad91b95729837166feec98136275adb9e6328a956c4800c5963389f8109
.exe windows x86

1f2d59e466e207cc94f3b7424dabbc43

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
LCMapStringW
LCMapStringA
SetEndOfFile
GetOEMCP
GetACP
GetCPInfo
CreateProcessA
GetExitCodeProcess
MultiByteToWideChar
FlushFileBuffers
SetStdHandle
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
GetStringTypeW
GetStringTypeA
lstrcpyA
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
RtlUnwind
HeapSize
HeapReAlloc
ReadFile
SetFilePointer
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapFree
HeapAlloc
LoadLibraryA
OutputDebugStringA
GetProcAddress
GetFileAttributesA
CreateMutexA
GetLastError
GetDriveTypeA
GetVolumeInformationA
CreateFileA
WriteFile
GetCurrentDirectoryA
CloseHandle
GetVersionExA
GetModuleFileNameA
FreeLibrary
lstrlenA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetTickCount

user32

DispatchMessageA
TranslateMessage
MessageBoxA
wsprintfA
ShowCursor
GetWindowRect
PostMessageA
GetClientRect
UpdateWindow
ClientToScreen
RegisterClassA
RegisterClassExA
CreateWindowExA
SetFocus
GetDlgItem
SetDlgItemTextA
SendDlgItemMessageA
DialogBoxParamA
SetCursor
LoadCursorA
SetDlgItemInt
GetDlgItemInt
SendMessageA
PostQuitMessage
ScreenToClient
GetCursorPos
GetMessageA
PeekMessageA
ShowWindow
CreateDialogParamA
DestroyWindow
MoveWindow
SetWindowPos
ReleaseDC
EndDialog
GetDlgItemTextA
GetDC
LoadIconA
DefWindowProcA
GetSystemMetrics
LoadImageA

gdi32

GetTextMetricsA
BitBlt
SetDIBitsToDevice
DeleteDC
DeleteObject
CreateDIBitmap
CreateCompatibleDC
SelectObject
SetBkMode
GetStockObject
SetTextColor
PatBlt
TextOutA
CreateCompatibleBitmap
GetPixel

comdlg32

GetOpenFileNameA

advapi32

GetUserNameA

shell32

ShellExecuteA

ole32

CoUninitialize
CoInitialize
CoCreateInstance

comctl32

ord17

winmm

mciSendCommandA
timeKillEvent
joyGetPos
joyGetDevCapsA
timeGetDevCaps
timeSetEvent
timeEndPeriod
timeBeginPeriod

wsock32

socket
closesocket
WSACleanup
send
recv
WSAStartup
ioctlsocket
ntohs
WSAAsyncSelect
connect
WSAGetLastError

ddraw

DirectDrawCreate

dsound

ord1

Sections

.text
Size: 224KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f2d59e466e207cc94f3b7424dabbc43

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

winmm

wsock32

ddraw

dsound

Sections

.text Size: 224KB - Virtual size: 220KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 32KB - Virtual size: 1.2MB

.rsrc Size: 148KB - Virtual size: 147KB

.text
Size: 224KB - Virtual size: 220KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 32KB - Virtual size: 1.2MB

.rsrc
Size: 148KB - Virtual size: 147KB