1c5c37f0c8f143c7eb7915ebf66430f6d95a470efc473b2f5ad002a95ede97bd

Sharing

Copy URL

Twitter E-mail

General

Target

1c5c37f0c8f143c7eb7915ebf66430f6d95a470efc473b2f5ad002a95ede97bd
Size

320KB
MD5

83daa6b903ab26aa5432fa95818a3592
SHA1

30b5401eab8142c42041d19b3447c73d0b432a70
SHA256

1c5c37f0c8f143c7eb7915ebf66430f6d95a470efc473b2f5ad002a95ede97bd
SHA512

dba5c4ec7a59f670428b806052e9945719d13ab34423733ac29e1d58b100b015519456e84e43876a21110b3fec48a42ee8db745f1d3a8e2633cde4976e08cb35
SSDEEP

6144:sIyEr1fTcAYfph1u79Ize0ZPi92PnJhU8oCacVE9GWW3Ze8Y6:sIneRh2Gz5ZPi9WnxacVE87t

Score

N/A

Malware Config

Signatures

Files

1c5c37f0c8f143c7eb7915ebf66430f6d95a470efc473b2f5ad002a95ede97bd
.exe windows x86

4f51953d9e99579a5cc197149bedca98

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

winmm

mmioClose
midiOutGetDevCapsW
midiConnect
mmioOpenW
midiInReset
midiInGetNumDevs
mciDriverYield
mmioRead
mciGetDriverData
joySetCapture
midiOutOpen
GetDriverModuleHandle
waveInGetNumDevs
midiStreamOpen
midiOutGetDevCapsA
mmioDescend
joyGetNumDevs
auxGetDevCapsA
midiInStart
waveOutUnprepareHeader
mod32Message
aux32Message
mmTaskYield
mixerGetLineControlsA
mixerClose
auxGetDevCapsW
joyGetPos
midiInAddBuffer
mmioInstallIOProcA
midiStreamStop
mmioStringToFOURCCW
WOW32ResolveMultiMediaHandle
mciGetDeviceIDW
PlaySound
mmTaskBlock
waveOutSetPlaybackRate
mmDrvInstall
waveOutGetPlaybackRate
waveInReset
mixerGetLineInfoW
mmioAdvance
mmioOpenA
mixerMessage
waveInGetDevCapsW
midiOutGetErrorTextW
waveInPrepareHeader
waveOutSetVolume
timeGetSystemTime
auxOutMessage
mixerGetControlDetailsA
midiOutClose
waveOutGetVolume
midiInGetErrorTextA
CloseDriver
mmioGetInfo
waveOutGetPosition
midiInUnprepareHeader
midiInPrepareHeader
OpenDriver
mixerGetControlDetailsW
joyGetThreshold
midiStreamClose
mmioAscend
auxGetNumDevs
waveInMessage
mciSendCommandW
midiStreamRestart
NotifyCallbackData
mmioFlush
joyGetDevCapsW

kernel32

GetCurrentProcessId
FindNextFileW
GetPriorityClass
GetTickCount
EraseTape
FindVolumeMountPointClose
GetLocaleInfoW
FindFirstVolumeMountPointW
BackupWrite
CreateFileW
GetVersionExA
SetTapeParameters
CompareStringW
ExpandEnvironmentStringsW
ExitThread
LoadLibraryA
CreateDirectoryW
FileTimeToLocalFileTime
BackupRead
SetLastError
SetFilePointer
GetTapeParameters
InitializeCriticalSection
FindFirstFileW
VirtualAlloc
SystemTimeToTzSpecificLocalTime
GetLocalTime
FindNextVolumeMountPointW
GetFileAttributesW
VirtualFree
SetFileAttributesW
GetCurrentDirectoryW
GetComputerNameW
HeapFree
TerminateThread
LocalAlloc
GetCurrentProcess
GetSystemTimeAsFileTime
GetCompressedFileSizeW
EnterCriticalSection
LoadLibraryW
SetEvent
PrepareTape
HeapAlloc
SetEndOfFile
GetFileInformationByHandle
GetWindowsDirectoryW
LocalFree
FreeLibrary
BackupSeek
UnhandledExceptionFilter
FileTimeToSystemTime
FindClose
WideCharToMultiByte
CreateEventW
CloseHandle
DeleteFileW
GetLogicalDriveStringsW
VerSetConditionMask
GetTapeStatus
SetPriorityClass
RemoveDirectoryW
LeaveCriticalSection

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 604KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f51953d9e99579a5cc197149bedca98

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

Sections

.text Size: 179KB - Virtual size: 179KB

.data Size: 54KB - Virtual size: 54KB

.rsrc Size: 85KB - Virtual size: 604KB

.text
Size: 179KB - Virtual size: 179KB

.data
Size: 54KB - Virtual size: 54KB

.rsrc
Size: 85KB - Virtual size: 604KB