8a2a638d58d40befefa46b50246b4baf8a33dc5cebb2d23d0d6749730a393060

Sharing

Copy URL Twitter E-mail

General

Target

8a2a638d58d40befefa46b50246b4baf8a33dc5cebb2d23d0d6749730a393060
Size

114KB
MD5

0b8893e2cc58c030ce766347874e15f0
SHA1

6c3b5e9026242f949ffa2032a385881ff9509e11
SHA256

8a2a638d58d40befefa46b50246b4baf8a33dc5cebb2d23d0d6749730a393060
SHA512

e71363beb5b8a8f47964fa7262a551853cbdbf3f357a909ceae3eaacde77c23f949c3aeeee95183efc27b1debd2b213d2b446f2cb7f3c4530835b2d4fe81d518
SSDEEP

3072:H8zp/dS9ULiSXTJo2+Rg7qqzoI7h+aS1Gh:czW9zGtZNzo0naGh

Score

N/A

Malware Config

Signatures

Files

8a2a638d58d40befefa46b50246b4baf8a33dc5cebb2d23d0d6749730a393060
.exe windows x86

c7c7da46d97a3e58da58693f337f9de1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_lclose
_lread
GetTickCount
_lopen
GlobalFree
LocalAlloc
GlobalAlloc
LockResource
FindResourceA
LoadResource
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetLocalTime
CompareStringW
CompareStringA
LoadLibraryA
GetProcAddress
GetStringTypeW
GetStringTypeA
FlushFileBuffers
RtlUnwind
GetOEMCP
GetACP
GetCPInfo
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
FreeEnvironmentStringsA
GetModuleFileNameA
OutputDebugStringA
UnhandledExceptionFilter
VirtualAlloc
HeapReAlloc
SetEnvironmentVariableA
GetLastError
CloseHandle
ReadFile
HeapAlloc
HeapFree
GetFileType
CreateFileA
GetTimeZoneInformation
GetSystemTime
SetEndOfFile
VirtualFree
WriteFile
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
SetFilePointer
SetStdHandle
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate

user32

LoadImageA
MessageBoxA
SetTimer
GetAsyncKeyState
PostMessageA
GetActiveWindow
WaitMessage
DispatchMessageA
TranslateMessage
GetMessageA
PeekMessageA
SetCursor
UpdateWindow
ShowWindow
CreateWindowExA
GetSystemMetrics
RegisterClassA
LoadCursorA
LoadIconA
DestroyWindow
DefWindowProcA
PostQuitMessage

gdi32

GetStockObject
SetBkMode
DeleteDC
StretchBlt
GetObjectA
CreateCompatibleDC
SetPixel
SelectObject
SetTextColor
DeleteObject
SetBkColor
CreateFontA
GetPixel
TextOutA

ddraw

DirectDrawCreate

dsound

DirectSoundCreate

winmm

mciSendStringA

Sections

.text
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 1023B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c7c7da46d97a3e58da58693f337f9de1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ddraw

dsound

winmm

Sections

.text Size: 58KB - Virtual size: 57KB

.rdata Size: 1024B - Virtual size: 1023B

.data Size: 13KB - Virtual size: 22KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 38KB - Virtual size: 37KB

.text
Size: 58KB - Virtual size: 57KB

.rdata
Size: 1024B - Virtual size: 1023B

.data
Size: 13KB - Virtual size: 22KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 38KB - Virtual size: 37KB