304cc353723352647f9bd13fddebb2568b360760199987480b4aa1dea165b6c8

Sharing

Copy URL Twitter E-mail

General

Target

304cc353723352647f9bd13fddebb2568b360760199987480b4aa1dea165b6c8
Size

476KB
MD5

92d921950a7c646792789cc7aff721d0
SHA1

2ee1972ef20c1a4673317f6ed542238a09e84d44
SHA256

304cc353723352647f9bd13fddebb2568b360760199987480b4aa1dea165b6c8
SHA512

8b0cbb8b74ec97523a5b817acf68786e6402ac4736dfd05930e5db0ce8d7a217e7febbb1def0bac5add7e74f7c518d298e99ea1bddf95b956bb01e5cec93956d
SSDEEP

6144:Lb24tiZ5+OYCUkRBIxAHAfLdf5N+QxfkBN+JmV1d3XgneZYb4LfFu4B5n86g6/yz:LPtwDY4SRhESmV1dZYb0fzy660I

Score

N/A

Malware Config

Signatures

Files

304cc353723352647f9bd13fddebb2568b360760199987480b4aa1dea165b6c8
.exe windows x86

124c991f10abb736d103f28fed349089

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dinput8

DirectInput8Create

kernel32

WritePrivateProfileStringW
FlushFileBuffers
CreateFileA
HeapSize
CreateMutexW
CreateDirectoryW
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
RtlUnwind
InitializeCriticalSection
GetPrivateProfileStringW
GetPrivateProfileIntW
GetVersionExW
CloseHandle
ReleaseMutex
GetLastError
GetUserDefaultLangID
ExpandEnvironmentStringsW
SetCurrentDirectoryW
GetLocaleInfoA
LoadLibraryA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
Sleep

user32

GetFocus
SendMessageW
KillTimer
SetTimer
BeginPaint
EndDialog
GetDlgItem
SetFocus
DialogBoxParamW
GetClientRect
GetWindowRect
LoadImageW
EnableWindow
SetWindowTextW
PostMessageW
EndPaint
DefDlgProcW
RegisterClassExW
LoadCursorW
LoadIconW
LoadStringW
SetWindowPos

gdi32

BitBlt
SelectObject
CreateCompatibleDC
GetObjectW
DeleteObject
DeleteDC

advapi32

RegOpenKeyExW
RegCloseKey
RegQueryValueExW

shell32

SHGetFolderPathW
ShellExecuteExW

Sections

.text
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 384KB - Virtual size: 16.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

124c991f10abb736d103f28fed349089

Headers

File Characteristics

Imports

dinput8

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 48KB - Virtual size: 44KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 384KB - Virtual size: 16.0MB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 48KB - Virtual size: 44KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 384KB - Virtual size: 16.0MB

.rsrc
Size: 20KB - Virtual size: 17KB