e55380b5d55b26ffcd3d6d1072a67d4753b9d4be17659478efb51ae31320dd36

Sharing

Copy URL Twitter E-mail

General

Target

e55380b5d55b26ffcd3d6d1072a67d4753b9d4be17659478efb51ae31320dd36
Size

203KB
MD5

80172d410c0b63e49aef7f51a5d28b59
SHA1

23938c0805e751efecd0a9ced97c829e62c9ab9b
SHA256

e55380b5d55b26ffcd3d6d1072a67d4753b9d4be17659478efb51ae31320dd36
SHA512

f17b60f04635bf91a4781f5e19c0209379ddb5a0cf31ff8fc67e9fec59b027f7c406144a42b073023a78ca7ad4b3aee1e27f737ff72d9a5f6b8c7de1149ec393
SSDEEP

3072:V7irCS7Q78i6ipC6UdLZ1CbTOQTXoHV4IIWwmgSuYMrlVmtDFq1L7wnqd6q:VeaFEdLKXOOo14Ibwme3ALqxVd

Score

N/A

Malware Config

Signatures

Files

e55380b5d55b26ffcd3d6d1072a67d4753b9d4be17659478efb51ae31320dd36
.exe windows x86

71c49e44464c94faf7deb1ab9c44cc5d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoCreateInstance
CoFreeUnusedLibraries
StringFromGUID2
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree

kernel32

VirtualFree
IsBadWritePtr
GetProfileIntA
HeapFree
InterlockedExchange
GetFullPathNameW
GetCurrentProcessId
lstrcpyA
GlobalUnlock
CreateIoCompletionPort
InitializeCriticalSection
GetModuleFileNameA
PostQueuedCompletionStatus
GetCurrentProcess
InterlockedIncrement
GlobalAlloc
GetLocaleInfoW
GetFileAttributesW
SetFilePointer
lstrcpynW
lstrlenA
EnterCriticalSection
SetEndOfFile
GetLastError
CreateSemaphoreW
SetThreadPriority
GetTickCount
GetACP
HeapAlloc
ReadFile
ResetEvent
IsBadReadPtr
GetFileSize
lstrcmpiW
DeleteCriticalSection
GetProcessHeap
WaitForMultipleObjects
GetStartupInfoA
GetPrivateProfileStringW
LoadLibraryW
InterlockedDecrement
GetThreadPriority
GlobalMemoryStatus
GlobalFindAtomW
IsBadCodePtr
WideCharToMultiByte
GetSystemTimeAsFileTime
GlobalLock
WriteFile
CreateThread
GetCurrentThread
DeleteFileW
QueryPerformanceCounter
GetVersionExW
lstrcpyW
GlobalHandle
GetQueuedCompletionStatus
GetDiskFreeSpaceW
FreeLibrary
GlobalFree
MulDiv
WaitForSingleObject
SetUnhandledExceptionFilter
LeaveCriticalSection
lstrcmpW
SetEvent
GetSystemInfo
SetLastError
CreateEventW
ReleaseSemaphore
CreateFileW
GetProcAddress
MultiByteToWideChar
CloseHandle
lstrlenW

user32

EnableWindow
GetWindowLongW
PeekMessageW
SetDlgItemTextW
ShowWindow
DispatchMessageW
GetDC
InvalidateRect
CheckDlgButton
TranslateMessage
SetCursor
GetClientRect
LoadStringW
GetWindowRect
GetDlgItem
CreateDialogParamW
SendMessageW
GetDlgItemInt
CheckRadioButton
GetDesktopWindow
SetDlgItemInt
DefWindowProcW
SetWindowLongW
ClientToScreen
LoadCursorW
DestroyWindow
GetAsyncKeyState
IsWindowVisible
IsRectEmpty
MoveWindow
IsWindow
ReleaseDC

winmm

mixerGetID
waveInReset
SendDriverMessage
OpenDriver
waveInGetDevCapsW
mixerGetLineInfoW
mixerGetControlDetailsW
waveInPrepareHeader
mixerGetLineControlsW
mixerClose
waveInStop
waveInUnprepareHeader
CloseDriver
waveInStart
waveInOpen
mixerSetControlDetails
waveInAddBuffer
waveInClose
mixerOpen

gdi32

GetStockObject
GetObjectW
PatBlt
GetTextExtentPoint32W
SelectObject
GetPaletteEntries

nddeapi

NDdeIsValidAppTopicListA
NDdeGetTrustedShareW
NDdeGetErrorStringA
NDdeGetShareSecurityW
NDdeIsValidAppTopicListW
NDdeIsValidShareNameA
NDdeGetShareSecurityA
NDdeGetTrustedShareA

ncobjapi

WmiCommitObject
WmiCreateObject
WmiAddObjectProp
WmiCreateObjectWithProps
WmiDestroyObject
WmiIsObjectActive
WmiEventSourceConnect
WmiSetAndCommitObject
WmiEventSourceDisconnect
WmiCreateObjectWithFormat

msvfw32

ICDecompress
ICGetInfo
ICClose
ICOpen
ICSendMessage
ICLocate

mydocs

PerUserInit
DllGetClassObject
DllCanUnloadNow

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 477KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

71c49e44464c94faf7deb1ab9c44cc5d

Headers

File Characteristics

Imports

ole32

kernel32

user32

winmm

gdi32

nddeapi

ncobjapi

msvfw32

mydocs

Sections

.text Size: 136KB - Virtual size: 136KB

.rdata Size: 34KB - Virtual size: 33KB

.data Size: 28KB - Virtual size: 477KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 952B

.text
Size: 136KB - Virtual size: 136KB

.rdata
Size: 34KB - Virtual size: 33KB

.data
Size: 28KB - Virtual size: 477KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 952B