9e592c0dbc794c2388ace9a5ee46bcb70de481b452b6c59e025807f0f3157649

Sharing

Copy URL Twitter E-mail

General

Target

9e592c0dbc794c2388ace9a5ee46bcb70de481b452b6c59e025807f0f3157649
Size

199KB
MD5

9665f8393ae3ca23bc9b374ea7de4203
SHA1

5178670e1f763eec5f6f79eb7b6999ac8a499674
SHA256

9e592c0dbc794c2388ace9a5ee46bcb70de481b452b6c59e025807f0f3157649
SHA512

108fc11b6489461c155f0d1922e2801ca279495157439babca839f917efbcf1d753154ca2350a2c48b1ac8d31f2a48c626e2f7a167911531dd5ab6264d07aa55
SSDEEP

6144:i+mAKU455wXN3Muggzq1/bMsxYL5XKPhKqpSG0cnM2:pmAKkdve5e1ETpS9e

Score

N/A

Malware Config

Signatures

Files

9e592c0dbc794c2388ace9a5ee46bcb70de481b452b6c59e025807f0f3157649
.exe windows x86

4bf1d32c2534442c2f36995fdecdffc1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PostQueuedCompletionStatus
GetEnvironmentStringsW
GetDiskFreeSpaceW
GetTickCount
GetCPInfo
InterlockedExchange
lstrcpyA
GetCurrentProcess
GetQueuedCompletionStatus
GlobalMemoryStatus
SetEvent
SetEndOfFile
HeapAlloc
lstrlenA
DeleteFileW
CreateThread
LeaveCriticalSection
ReleaseSemaphore
GetProfileIntA
GetSystemDefaultLangID
GlobalUnlock
GlobalFree
lstrcmpiW
QueryPerformanceCounter
WaitForSingleObject
IsBadWritePtr
IsBadReadPtr
GetPrivateProfileStringW
InitializeCriticalSection
SetThreadPriority
lstrcpyW
lstrcmpW
GetModuleFileNameA
GlobalAlloc
WaitForMultipleObjects
VirtualFree
DeleteCriticalSection
MulDiv
CreateFileW
GetSystemInfo
GetFileSize
GetCurrentThread
GetCurrentProcessId
CreateSemaphoreW
LoadLibraryW
SetFilePointer
GlobalHandle
GetVersionExW
GetThreadPriority
CreateEventW
WideCharToMultiByte
InterlockedDecrement
MultiByteToWideChar
GetFullPathNameW
GetSystemTimeAsFileTime
FreeLibrary
CreateIoCompletionPort
SetUnhandledExceptionFilter
GetFileAttributesW
WriteFile
GetProcessHeap
InterlockedIncrement
GetLastError
GlobalLock
CloseHandle
lstrlenW
ReadFile
GetStartupInfoA
IsBadCodePtr
lstrcpynW
EnterCriticalSection
ResetEvent
IsBadHugeReadPtr
HeapFree

gdi32

PatBlt
GetStockObject
GetPaletteEntries
GetObjectW
GetTextExtentPoint32W
SelectObject

winmm

OpenDriver
waveInUnprepareHeader
waveInPrepareHeader
waveInGetDevCapsW
waveInStart
waveInStop
mixerClose
mixerOpen
CloseDriver
SendDriverMessage
mixerGetLineInfoW
mixerGetLineControlsW
waveInAddBuffer
mixerGetControlDetailsW
waveInReset
waveInClose
mixerSetControlDetails
waveInOpen
mixerGetID

user32

GetDesktopWindow
IsRectEmpty
CheckDlgButton
InvalidateRect
EnableWindow
ShowWindow
SetWindowLongW
GetAsyncKeyState
CheckRadioButton
LoadCursorW
GetClientRect
DestroyWindow
ClientToScreen
LoadStringW
GetDlgItem
DispatchMessageW
SetCursor
TranslateMessage
IsWindowVisible
CreateDialogParamW
wsprintfW
GetDlgItemInt
PeekMessageW
GetWindowRect
IsWindow
GetDC
ReleaseDC
SendMessageW
SetDlgItemInt
SetDlgItemTextW
GetWindowLongW
MoveWindow
DefWindowProcW

ole32

CoUninitialize
CoCreateInstance
StringFromGUID2
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoFreeUnusedLibraries

msvcrt

_ftol
_purecall
??3@YAXPAX@Z
wcslen
_except_handler3
??2@YAPAXI@Z

advapi32

RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyW
RegSetValueExW
RegCreateKeyW
RegEnumKeyW
RegCloseKey
RegOpenKeyExW
RegSetValueW

msvfw32

ICClose
ICDecompress
ICOpen
ICGetInfo
ICLocate
ICCompress
ICSendMessage

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4bf1d32c2534442c2f36995fdecdffc1

Headers

File Characteristics

Imports

kernel32

gdi32

winmm

user32

ole32

msvcrt

advapi32

msvfw32

version

Sections

.text Size: 171KB - Virtual size: 170KB

.data Size: 25KB - Virtual size: 25KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 171KB - Virtual size: 170KB

.data
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 1024B - Virtual size: 644B