04643030ee3139257c98f67baf1aabc94f2b66ed1c45dedc10efd1c15d343ee8

Sharing

Copy URL Twitter E-mail

General

Target

04643030ee3139257c98f67baf1aabc94f2b66ed1c45dedc10efd1c15d343ee8
Size

306KB
MD5

602c8db51c2a6baab167832eec6d2540
SHA1

a19cb233fd9382381745e021f75ad58580a12df4
SHA256

04643030ee3139257c98f67baf1aabc94f2b66ed1c45dedc10efd1c15d343ee8
SHA512

224a391e8f5e25a24e82a5d6b11db9161b85e430b8df5c6909bc43fc45f966de24f5c7a7342f1b627a7d2580f9de1d509b77f0d03e2c12e435adfcc742da63f6
SSDEEP

6144:UOkkq06QdYFVJFsPJKClSRUaeqjqDH7atEuOPOgz+Lzo0naG0:1XV/dAVJFsBKvjqPauz+LPaG0

Score

N/A

Malware Config

Signatures

Files

04643030ee3139257c98f67baf1aabc94f2b66ed1c45dedc10efd1c15d343ee8
.exe windows x86

f0227785903f3cf581b98f9197279c5b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

audiow32

ord136
ord133
ord132
ord121
ord125
ord127
ord126
ord122
ord144
ord117
ord137
ord135
ord145
ord116
ord142
ord134
ord143
ord123
ord119
ord110
ord102
ord107
ord103
ord109
ord106
ord118

ddraw

DirectDrawCreate

kernel32

GetCPInfo
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetFileType
SetHandleCount
SetFilePointer
ReadFile
GetStringTypeW
GetACP
GetStdHandle
WriteFile
GetOEMCP
CreateSemaphoreA
OpenSemaphoreA
Sleep
OutputDebugStringA
GetVersionExA
QueryPerformanceFrequency
QueryPerformanceCounter
FindClose
FindNextFileA
FindFirstFileA
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
FlushFileBuffers
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
SetStdHandle
CreateFileA
GetStringTypeA
SetPriorityClass
LoadLibraryA
HeapDestroy
VirtualFree
GetCurrentProcess
CloseHandle
HeapCreate
GetProcAddress
HeapSize
GetLastError
TerminateProcess
ExitProcess
HeapReAlloc
GetVersion
GetCommandLineA
RaiseException
GetModuleHandleA
HeapAlloc
GetStartupInfoA
GetLocalTime
LCMapStringW
HeapFree
GetSystemTime
GetTimeZoneInformation
RtlUnwind
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
VirtualAlloc

user32

SetActiveWindow
PeekMessageA
WaitMessage
DefWindowProcA
SetCursorPos
GetMessageA
TranslateMessage
PostMessageA
ClientToScreen
OffsetRect
ClipCursor
ShowCursor
MessageBoxA
BeginPaint
PostQuitMessage
SetFocus
SetWindowLongA
ReleaseDC
GetSystemMetrics
CopyRect
AdjustWindowRectEx
LoadCursorA
GetWindowRect
MoveWindow
CreateWindowExA
LoadIconA
RegisterClassExA
DispatchMessageA
ShowWindow
GetClientRect
DestroyWindow
EndPaint
GetDC

gdi32

GdiFlush
SelectObject
CreateDIBSection
CreateCompatibleDC
SelectPalette
BitBlt
DeleteObject
StretchBlt
DeleteDC

advapi32

RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegQueryValueExA

shell32

ShellExecuteA

Sections

.text
Size: 193KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0227785903f3cf581b98f9197279c5b

Headers

File Characteristics

Imports

winmm

audiow32

ddraw

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 193KB - Virtual size: 193KB

.rdata Size: 34KB - Virtual size: 33KB

.data Size: 12KB - Virtual size: 2.3MB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 60KB - Virtual size: 59KB

.text
Size: 193KB - Virtual size: 193KB

.rdata
Size: 34KB - Virtual size: 33KB

.data
Size: 12KB - Virtual size: 2.3MB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 60KB - Virtual size: 59KB