da94e7131c22ae548c72631d032be6cdf2e19cd99a41d8d85d5aaa28782eac2b

General

Target

da94e7131c22ae548c72631d032be6cdf2e19cd99a41d8d85d5aaa28782eac2b
Size

798KB
MD5

9368c4b041b1ca7232954b596d6381cf
SHA1

4cc4c9ee6622aee20e9115de3b518979a3fe190c
SHA256

da94e7131c22ae548c72631d032be6cdf2e19cd99a41d8d85d5aaa28782eac2b
SHA512

3d86467c006ec94cd3f09fea9e6102bc5fdfe31a9d627aa3c3230689372b5aacbb8908635c4b6bcf5491d09d9f03a1208edcbab317106e6d1802e738baeeac92
SSDEEP

24576:EdGS2Zc0yMVu0FA6gZE9QI57wZXQDS6+y9BIl:mMc0yMzr59QCqQDS6bW

Score

N/A

Malware Config

Signatures

Files

da94e7131c22ae548c72631d032be6cdf2e19cd99a41d8d85d5aaa28782eac2b
.exe windows x86

870ef50654f6717ccdb5e49d64ddb0e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetTickCount
CreateFileW
GetModuleFileNameA
lstrlenA
LocalFlags
SetFilePointer
GetModuleHandleA
SetEvent
HeapDestroy
GetVersionExA
ResumeThread
CreateMutexA
VirtualProtect
GetFileAttributesW
IsValidLocale
GetCurrentThreadId
GetStdHandle
CreateDirectoryA
CreateFileW
OpenEventW
AddAtomW
SuspendThread
InterlockedExchange
GetLocaleInfoA
LeaveCriticalSection

user32

GetWindowLongA
PeekMessageA
DestroyMenu
MessageBoxA
SetRect
DestroyIcon
GetWindowTextA
DispatchMessageA
GetWindowLongA
LoadCursorA
wsprintfA
IsMenu
IsMenu

dplayx

DllUnregisterServer
DllRegisterServer
DllGetClassObject
DllCanUnloadNow

advapi32

IsValidAcl

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 793KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

870ef50654f6717ccdb5e49d64ddb0e0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

dplayx

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 10B

.rsrc Size: 793KB - Virtual size: 2.2MB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 10B

.rsrc
Size: 793KB - Virtual size: 2.2MB