f01331d74f9b8376fd7460b0ab8be1dd9b71f542a53741e69c7c26e9643de12b

Sharing

Copy URL Twitter E-mail

General

Target

f01331d74f9b8376fd7460b0ab8be1dd9b71f542a53741e69c7c26e9643de12b
Size

932KB
MD5

0713264263cd3fceaa5891af3f75c2b0
SHA1

be54a6fb6c2bddaa755e09d05b1a223d5b6389be
SHA256

f01331d74f9b8376fd7460b0ab8be1dd9b71f542a53741e69c7c26e9643de12b
SHA512

68671168854cc68fa9bebf708d648a963af321df2db883c2c995e2d35611a765ff2e57e0e04330942f1de36182e843c34d9a6911fd18744de4ec12897d6ff1a6
SSDEEP

24576:5LnKoQ/fTSFINtMPaj+7BUMVsYsFEKkoSBT546cLVXjmhhKBr3d:daHMULzkNBu6KV6hMBr3

Score

N/A

Malware Config

Signatures

Files

f01331d74f9b8376fd7460b0ab8be1dd9b71f542a53741e69c7c26e9643de12b
.exe windows x86

e170b77b06b523c7d08ee39439db80ce

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

kernel32

GetModuleFileNameA
WriteConsoleA
OutputDebugStringA
GetStdHandle
AllocConsole
SetFilePointer
SetEndOfFile
FindNextFileA
GetVersionExA
GetLogicalDriveStringsA
DeleteFileA
SetFileTime
WriteFile
FindFirstFileA
GetPrivateProfileIntA
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
UnhandledExceptionFilter
GetDriveTypeA
FreeEnvironmentStringsA
InterlockedIncrement
InterlockedDecrement
GetCurrentDirectoryA
IsBadWritePtr
HeapReAlloc
HeapSize
VirtualFree
HeapCreate
VirtualAlloc
GetEnvironmentVariableA
SetLastError
HeapDestroy
SetUnhandledExceptionFilter
CreateThread
GetVersion
ExitThread
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
GetFileAttributesA
TerminateProcess
GetFullPathNameA
HeapAlloc
HeapFree
ExitProcess
RaiseException
InterlockedExchange
RtlUnwind
TlsGetValue
ResumeThread
GetCurrentProcess
GetCurrentThread
TlsAlloc
GetCurrentThreadId
TlsSetValue
DuplicateHandle
CreateSemaphoreA
SetThreadPriority
LeaveCriticalSection
EnterCriticalSection
WaitForSingleObject
InitializeCriticalSection
LoadLibraryA
DeleteCriticalSection
GetEnvironmentStringsW
GetLastError
GetProcAddress
SetHandleCount
GetFileType
Sleep
IsBadCodePtr
MultiByteToWideChar
IsBadReadPtr
GetStringTypeW
GetCPInfo
GetStringTypeA
LCMapStringA
GetACP
GetOEMCP
LCMapStringW
CompareStringA
CompareStringW
FlushFileBuffers
CloseHandle
LocalFree
FormatMessageA
GlobalUnlock
GlobalLock
GlobalAlloc
WritePrivateProfileStringA
GetPrivateProfileStringA
Beep
ReadFile
CreateFileA
SetEnvironmentVariableA
SetStdHandle
FindClose
SetErrorMode

user32

SetClipboardViewer
GetDlgItemTextA
GetSystemMenu
SetDlgItemTextA
SetWindowTextA
EndDialog
DialogBoxParamA
CheckMenuItem
DrawMenuBar
AppendMenuA
GetWindowLongA
ShowWindow
CreateWindowExA
RegisterClassA
GetSysColorBrush
GetWindowPlacement
LoadCursorA
LoadIconA
SendMessageA
EnableMenuItem
SetForegroundWindow
GetMessageA
IsDialogMessageA
LoadKeyboardLayoutA
SetDlgItemInt
SetClassLongA
GetDlgCtrlID
GetKeyboardState
GetDlgItemInt
MapWindowPoints
DestroyAcceleratorTable
ToAscii
GetKeyState
OpenDesktopA
TranslateAcceleratorA
CreateAcceleratorTableA
FindWindowA
EnumDesktopWindows
CloseDesktop
TranslateMessage
GetClassNameA
PeekMessageA
EnableWindow
DispatchMessageA
GetWindowTextA
LoadImageA
CreateDialogParamA
GetDlgItem
GetSubMenu
DestroyIcon
DestroyMenu
TrackPopupMenu
GetMenuItemID
SetMenuDefaultItem
GetCursorPos
RegisterClassExA
LoadMenuA
EmptyClipboard
SetCursorPos
GetSystemMetrics
OpenClipboard
SetClipboardData
GetClipboardOwner
GetKeyboardLayoutNameA
GetClipboardData
CloseClipboard
EndPaint
SetScrollInfo
BeginPaint
GetForegroundWindow
SetTimer
PostMessageA
SetCursor
GetWindow
GetFocus
SetFocus
WindowFromPoint
ScreenToClient
MessageBoxA
ChangeClipboardChain
KillTimer
DestroyWindow
PostQuitMessage
DefWindowProcA
DrawTextA
ReleaseDC
GetDC
ShowScrollBar
GetClientRect
SetWindowPos
InvalidateRect
IsIconic
ScrollWindowEx
SetRect
UpdateWindow
SystemParametersInfoA
GetWindowRect
AdjustWindowRectEx
GetMenuState
SetWindowLongA
LoadStringA
SetWindowPlacement

gdi32

SetBkColor
UpdateColors
BitBlt
SetBkMode
CreatePalette
GdiFlush
CreateCompatibleDC
GetStockObject
GetDeviceCaps
CreateCompatibleBitmap
DeleteObject
SetTextColor
SelectObject
RealizePalette
ExtTextOutA
DeleteDC
StretchBlt
SelectPalette
GetClipBox
Rectangle
SetStretchBltMode
CreateFontIndirectA
SetPixelV
SetBrushOrgEx

comdlg32

GetSaveFileNameA
CommDlgExtendedError
GetOpenFileNameA

advapi32

RegOpenKeyA
RegEnumValueA
RegCloseKey
RegSetValueExA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyA
RegSetValueA
RegCreateKeyExA

shell32

Shell_NotifyIconA

wsock32

WSACleanup
accept
WSAStartup
inet_ntoa
listen
WSAAsyncSelect
send
bind
WSAGetLastError
shutdown
recv
setsockopt
socket
ioctlsocket
gethostbyname
htons
connect
getpeername
closesocket

comctl32

CreateToolbarEx
ord17

Sections

.text
Size: 232KB - Virtual size: 230KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 640KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e170b77b06b523c7d08ee39439db80ce

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

advapi32

shell32

wsock32

comctl32

Sections

.text Size: 232KB - Virtual size: 230KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 36KB - Virtual size: 42KB

.rsrc Size: 640KB - Virtual size: 1.8MB

.text
Size: 232KB - Virtual size: 230KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 36KB - Virtual size: 42KB

.rsrc
Size: 640KB - Virtual size: 1.8MB