7404d79be9553ea5d6fc75179f18e22f030c237a64d1b0d1ba3907c109d0b448

Sharing

Copy URL Twitter E-mail

General

Target

7404d79be9553ea5d6fc75179f18e22f030c237a64d1b0d1ba3907c109d0b448
Size

219KB
MD5

84bad5f45f60efff2c4a2b842d5c3790
SHA1

1a1f6e1efd3d0cc311f3d99da2d5cbfa4263e485
SHA256

7404d79be9553ea5d6fc75179f18e22f030c237a64d1b0d1ba3907c109d0b448
SHA512

9906b6c9d206bd8cc63be207a7dbff1a55abe915a7e7f7ce07bd45db7f75eb9fbf26e983506e0c6711d7e32fca4b08eb0b6d1e9826284e0b1953912e4c4ac0b9
SSDEEP

6144:MolTr9u2jULeh8HBPoXO+bZ4/n9XbBrX3GgN+dg:MoPQ24LeeHdt+bZ4/n9trF+g

Score

N/A

Malware Config

Signatures

Files

7404d79be9553ea5d6fc75179f18e22f030c237a64d1b0d1ba3907c109d0b448
.exe windows x86

0fb4ec503e395f56918e3e950a298426

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
_acmdln
__p__fmode
__set_app_type
_controlfp
_XcptFilter
_exit
??1type_info@@UAE@XZ
_onexit
__dllonexit
_CIpow
printf
_CIacos
calloc
_beginthreadex
_strupr
wcscpy
atoi
wcstombs
wcslen
mbstowcs
_access
strncat
vsprintf
exit
fopen
fwrite
fclose
strrchr
??3@YAXPAX@Z
_except_handler3
free
malloc
strncpy
sprintf
puts
putchar
strstr
rand
_ftol
memmove
??2@YAPAXI@Z
_CxxThrowException
__CxxFrameHandler
__p__commode

kernel32

GetProcAddress
SetEvent
GetTickCount
CloseHandle
Sleep
WaitForSingleObject
LoadLibraryA
LocalFree
GetLocalTime
FreeLibrary
GetCurrentProcessId
InterlockedDecrement
WideCharToMultiByte
GetStartupInfoA
GetModuleHandleA
GetExitCodeThread
TerminateThread
CreateThread
lstrlenA
MultiByteToWideChar
GetLastError
CreateEventA

user32

PostThreadMessageA
CreateWindowExA
GetLastInputInfo
SendMessageA
GetMessageA
IsWindow

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

ws2_32

WSAStartup
WSACleanup
setsockopt
connect
htons
gethostbyname
socket
closesocket
getsockname
gethostname
htonl
WSASocketA
sendto
inet_addr
send
select
recv
ntohs

msvcp60

?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_Xran@std@@YAXXZ
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z

ole32

CLSIDFromProgID
CoCreateInstance
OleRun
CoInitialize
CoUninitialize
CLSIDFromString

oleaut32

GetErrorInfo
SysAllocString
VariantClear
SysFreeString

msvfw32

ICSendMessage

winmm

waveOutUnprepareHeader
waveInStart
waveInReset
waveInOpen
waveInClose
waveInUnprepareHeader
waveInPrepareHeader
waveOutPrepareHeader
waveOutWrite
waveInAddBuffer
waveOutClose
waveOutOpen

Sections

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 203KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fb4ec503e395f56918e3e950a298426

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

ws2_32

msvcp60

ole32

oleaut32

msvfw32

winmm

Sections

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 203KB - Virtual size: 230KB

.rsrc Size: 1024B - Virtual size: 952B

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 203KB - Virtual size: 230KB

.rsrc
Size: 1024B - Virtual size: 952B