96fbe17d130e7c493502bc91bbc7ef2363f3af778b3e264ac1e1f598e292b7fe

Sharing

Copy URL

Twitter E-mail

General

Target

96fbe17d130e7c493502bc91bbc7ef2363f3af778b3e264ac1e1f598e292b7fe
Size

328KB
MD5

a196a504f8f5f94050da18649ac2234c
SHA1

ad0b622345e6154066ce5201680fa47fe7efd5e9
SHA256

96fbe17d130e7c493502bc91bbc7ef2363f3af778b3e264ac1e1f598e292b7fe
SHA512

c0f36cc36b34363458abaa71cf0286059acfcc773cc5764e8eb57cd9b3525f01d4c76b2fa1e762f8d59ddac3a4c95829fb34398818a4ef7e508a397aa3794678
SSDEEP

6144:74Mhd2I32kGecpJ1vd5mObLiDOHYGyzo8tGNbeLptuNqmEV:sMCI3/GfD1mObkOwa2yFe

Score

N/A

Malware Config

Signatures

Files

96fbe17d130e7c493502bc91bbc7ef2363f3af778b3e264ac1e1f598e292b7fe
.exe windows x86

b5106b74e93259d19918216844983aa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

ntohs
ntohl

mwmp4dec

ord1
ord6
ord9
ord2
ord4
ord3
ord7

msvfw32

DrawDibOpen
DrawDibClose

comctl32

InitCommonControlsEx

shlwapi

PathFileExistsA
PathRemoveArgsA
PathRemoveFileSpecA

ddraw

DirectDrawEnumerateA
DirectDrawCreateEx

kernel32

SwitchToThread
Sleep
WaitForSingleObject
ResetEvent
SetFilePointer
GetFileSize
TerminateThread
GetExitCodeThread
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
GetCurrentDirectoryA
EnterCriticalSection
GetPrivateProfileStringA
FreeLibrary
GetProcAddress
LoadLibraryA
lstrcpynA
lstrcmpA
GetSystemDirectoryA
lstrcatA
GetUserDefaultLangID
GetModuleFileNameA
SetEvent
GetStartupInfoA
GetModuleHandleA
OutputDebugStringA
CreateThread
GetLastError
CreateEventA
lstrlenA
lstrcpyA
CloseHandle
ReadFile
GetFileSizeEx
CreateFileA

user32

ReleaseDC
GetWindowLongA
SystemParametersInfoA
LoadMenuA
GetCursorPos
EnableMenuItem
TrackPopupMenu
PtInRect
SetTimer
KillTimer
BeginPaint
EndPaint
CopyRect
IntersectRect
EqualRect
OffsetRect
IsRectEmpty
DrawTextA
FillRect
GetClientRect
GetMonitorInfoA
GetMenuState
EndDialog
GetWindowRect
DialogBoxParamA
EnumDisplayMonitors
ShowWindow
CreateWindowExA
EnableWindow
DestroyWindow
FindWindowA
LoadIconA
SetClassLongA
SetWindowTextA
SetDlgItemTextA
GetMenu
ModifyMenuA
GetSubMenu
GetSystemMetrics
GetDlgItem
SetWindowLongA
CheckMenuItem
InvalidateRect
CallWindowProcA
CreateDialogParamA
SetWindowPos
SendMessageA
DestroyMenu
SetRect
MessageBoxA
wsprintfA
GetDC
SetCapture
LoadBitmapA
ReleaseCapture
PostQuitMessage
MoveWindow
ClientToScreen

gdi32

GetClipBox
StretchDIBits
SetTextColor
SetBkMode
CreatePen
CreateBrushIndirect
Rectangle
CreateCompatibleDC
SelectObject
StretchBlt
DeleteDC
CreateFontIndirectA
CreateSolidBrush
DeleteObject

comdlg32

GetOpenFileNameA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

mwmp4dec_wm

ord4
ord7
ord2
ord3
ord1
ord6

ijl15

ord4
ord2
ord3

winmm

waveOutGetNumDevs
waveOutGetDevCapsA
waveOutGetVolume
waveOutSetVolume
timeKillEvent
timeGetDevCaps
timeBeginPeriod
timeSetEvent
timeEndPeriod

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

msvcrt

_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_controlfp
_onexit
__dllonexit
memcpy
_errno
free
realloc
calloc
memmove
_except_handler3
sprintf
??2@YAPAXI@Z
_ftol
fseek
fopen
fwrite
_vsnprintf
gmtime
malloc
__CxxFrameHandler
atoi
??3@YAXPAX@Z
_close
memset
printf
sscanf
fgets
fclose
strcmp

dsound

ord1

Exports

Exports

SoundAddToPlayBuffer
SoundClose
SoundCreateDSBuffer
SoundDestroyDSBuffer
SoundNotifyBufferSize
SoundOpen
SoundStart
SoundStop

Sections

.text
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 10.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

)��?�
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b5106b74e93259d19918216844983aa8

Headers

File Characteristics

Imports

ws2_32

mwmp4dec

msvfw32

comctl32

shlwapi

ddraw

kernel32

user32

gdi32

comdlg32

advapi32

mwmp4dec_wm

ijl15

winmm

version

msvcrt

dsound

Exports

Exports

Sections

.text Size: 184KB - Virtual size: 180KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 16KB - Virtual size: 10.4MB

.rsrc Size: 16KB - Virtual size: 12KB

)���?� Size: 88KB - Virtual size: 88KB

.text
Size: 184KB - Virtual size: 180KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 16KB - Virtual size: 10.4MB

.rsrc
Size: 16KB - Virtual size: 12KB

)��?�
Size: 88KB - Virtual size: 88KB