de1ff0c47da12a21d3959446c32340a03b0fd93555a22a33cd9e3a8908af3db7

Sharing

Copy URL Twitter E-mail

General

Target

de1ff0c47da12a21d3959446c32340a03b0fd93555a22a33cd9e3a8908af3db7
Size

199KB
MD5

57feac4542e174bc4e2d9c38169eecb0
SHA1

039b0872c2efd204e757685359e452b9f7b801dd
SHA256

de1ff0c47da12a21d3959446c32340a03b0fd93555a22a33cd9e3a8908af3db7
SHA512

02b53bcc981406145644b5b3f767c353b986d3cec6a7c8b0cbaac655289389f8f0bc3a2fb7465797d36b710b55d057912f51da7115d35148f1610afe7803f838
SSDEEP

6144:i+mAKU455wXN3Muggzq1/bMsxYL5XKPhKqpSG0cnMw:pmAKkdve5e1ETpS9Y

Score

N/A

Malware Config

Signatures

Files

de1ff0c47da12a21d3959446c32340a03b0fd93555a22a33cd9e3a8908af3db7
.exe windows x86

4bf1d32c2534442c2f36995fdecdffc1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PostQueuedCompletionStatus
GetEnvironmentStringsW
GetDiskFreeSpaceW
GetTickCount
GetCPInfo
InterlockedExchange
lstrcpyA
GetCurrentProcess
GetQueuedCompletionStatus
GlobalMemoryStatus
SetEvent
SetEndOfFile
HeapAlloc
lstrlenA
DeleteFileW
CreateThread
LeaveCriticalSection
ReleaseSemaphore
GetProfileIntA
GetSystemDefaultLangID
GlobalUnlock
GlobalFree
lstrcmpiW
QueryPerformanceCounter
WaitForSingleObject
IsBadWritePtr
IsBadReadPtr
GetPrivateProfileStringW
InitializeCriticalSection
SetThreadPriority
lstrcpyW
lstrcmpW
GetModuleFileNameA
GlobalAlloc
WaitForMultipleObjects
VirtualFree
DeleteCriticalSection
MulDiv
CreateFileW
GetSystemInfo
GetFileSize
GetCurrentThread
GetCurrentProcessId
CreateSemaphoreW
LoadLibraryW
SetFilePointer
GlobalHandle
GetVersionExW
GetThreadPriority
CreateEventW
WideCharToMultiByte
InterlockedDecrement
MultiByteToWideChar
GetFullPathNameW
GetSystemTimeAsFileTime
FreeLibrary
CreateIoCompletionPort
SetUnhandledExceptionFilter
GetFileAttributesW
WriteFile
GetProcessHeap
InterlockedIncrement
GetLastError
GlobalLock
CloseHandle
lstrlenW
ReadFile
GetStartupInfoA
IsBadCodePtr
lstrcpynW
EnterCriticalSection
ResetEvent
IsBadHugeReadPtr
HeapFree

gdi32

PatBlt
GetStockObject
GetPaletteEntries
GetObjectW
GetTextExtentPoint32W
SelectObject

winmm

OpenDriver
waveInUnprepareHeader
waveInPrepareHeader
waveInGetDevCapsW
waveInStart
waveInStop
mixerClose
mixerOpen
CloseDriver
SendDriverMessage
mixerGetLineInfoW
mixerGetLineControlsW
waveInAddBuffer
mixerGetControlDetailsW
waveInReset
waveInClose
mixerSetControlDetails
waveInOpen
mixerGetID

user32

GetDesktopWindow
IsRectEmpty
CheckDlgButton
InvalidateRect
EnableWindow
ShowWindow
SetWindowLongW
GetAsyncKeyState
CheckRadioButton
LoadCursorW
GetClientRect
DestroyWindow
ClientToScreen
LoadStringW
GetDlgItem
DispatchMessageW
SetCursor
TranslateMessage
IsWindowVisible
CreateDialogParamW
wsprintfW
GetDlgItemInt
PeekMessageW
GetWindowRect
IsWindow
GetDC
ReleaseDC
SendMessageW
SetDlgItemInt
SetDlgItemTextW
GetWindowLongW
MoveWindow
DefWindowProcW

ole32

CoUninitialize
CoCreateInstance
StringFromGUID2
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoFreeUnusedLibraries

msvcrt

_ftol
_purecall
??3@YAXPAX@Z
wcslen
_except_handler3
??2@YAPAXI@Z

advapi32

RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyW
RegSetValueExW
RegCreateKeyW
RegEnumKeyW
RegCloseKey
RegOpenKeyExW
RegSetValueW

msvfw32

ICClose
ICDecompress
ICOpen
ICGetInfo
ICLocate
ICCompress
ICSendMessage

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4bf1d32c2534442c2f36995fdecdffc1

Headers

File Characteristics

Imports

kernel32

gdi32

winmm

user32

ole32

msvcrt

advapi32

msvfw32

version

Sections

.text Size: 171KB - Virtual size: 170KB

.data Size: 25KB - Virtual size: 25KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 171KB - Virtual size: 170KB

.data
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 1024B - Virtual size: 644B