b546447730217b7a2ba4522edee3d8b5d77dadf589fda666b21f7b539a7f515f

Sharing

Copy URL Twitter E-mail

General

Target

b546447730217b7a2ba4522edee3d8b5d77dadf589fda666b21f7b539a7f515f
Size

185KB
MD5

8515069b4e19887bf6dae6d29bc20ece
SHA1

4f0c61e66851d0f7cd1b80424b12e06805c32cc5
SHA256

b546447730217b7a2ba4522edee3d8b5d77dadf589fda666b21f7b539a7f515f
SHA512

d5d9ea37258324e8ee4b498f368517a2e5569b57f38d9184a9ffccc68ab36985bb76c7f0b7d361504f8951d4f0d933af4e2f4bff415e5545b85989549adef24c
SSDEEP

3072:aPoW4uiHWsF9pFp3ut221iZ9+Bw3D9yYu5hJJLp7bYaRvWvvV26iNnqjCJzvaorz:aPcumF9X2k9DJZ0hbV7bYaqabahA+a

Score

N/A

Malware Config

Signatures

Files

b546447730217b7a2ba4522edee3d8b5d77dadf589fda666b21f7b539a7f515f
.exe windows x86

c8e593ecb3bc0409c482e1d6026d7afc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICGetInfo
ICSendMessage
ICOpen
ICLocate
ICDecompress
ICClose
ICCompress

kernel32

HeapFree
lstrcmpiW
GetDiskFreeSpaceW
GetStartupInfoA
ResetEvent
GetProcessHeap
GetSystemInfo
MultiByteToWideChar
MulDiv
SetUnhandledExceptionFilter
WaitForSingleObject
InitializeCriticalSection
GetVersionExW
GetFullPathNameW
InterlockedDecrement
GetQueuedCompletionStatus
GlobalHandle
IsBadWritePtr
CreateFileW
IsBadCodePtr
GetProfileIntA
GlobalLock
SetFilePointer
GetThreadPriority
WaitForMultipleObjects
DeleteFileW
CreateThread
GetCurrentProcess
InterlockedIncrement
lstrcmpW
HeapAlloc
GetCurrentThread
GetSystemDefaultLangID
SetEvent
PostQueuedCompletionStatus
LeaveCriticalSection
GetFileSize
WriteFile
WideCharToMultiByte
ReleaseSemaphore
GlobalUnlock
GetLastError
IsBadReadPtr
lstrcpyW
GetEnvironmentStringsW
GetCurrentProcessId
lstrcpyA
SetEndOfFile
GlobalMemoryStatus
GetFileAttributesW
EnterCriticalSection
FreeLibrary
CreateEventW
GetTickCount
lstrlenW
GetSystemTimeAsFileTime
GetModuleFileNameA
GetPrivateProfileStringW
VirtualFree
ReadFile
GlobalAlloc
lstrlenA
InterlockedExchange
CloseHandle
LoadLibraryW
IsBadHugeReadPtr
CreateSemaphoreW
lstrcpynW
CreateIoCompletionPort
GlobalFree
QueryPerformanceCounter
DeleteCriticalSection
SetThreadPriority

user32

GetAsyncKeyState
IsWindow
GetClientRect
SetDlgItemInt
GetDlgItem
GetWindowLongW
wsprintfW
SetWindowLongW
ReleaseDC
CreateDialogParamW
SetDlgItemTextW
IsWindowVisible
InvalidateRect
CheckRadioButton
DefWindowProcW
ShowWindow
GetDC
DestroyWindow
MoveWindow
GetDlgItemInt
TranslateMessage
DispatchMessageW
LoadCursorW
SendMessageW
IsRectEmpty
SetCursor
EnableWindow
PeekMessageW
CheckDlgButton
GetDesktopWindow
LoadStringW
GetWindowRect
ClientToScreen

winmm

mixerGetLineControlsW
mixerGetID
waveInStop
waveInClose
CloseDriver
mixerGetControlDetailsW
mixerGetLineInfoW
waveInStart
mixerClose
waveInOpen
SendDriverMessage
waveInReset
waveInGetDevCapsW
mixerOpen
waveInUnprepareHeader
waveInAddBuffer
OpenDriver
waveInPrepareHeader
mixerSetControlDetails

advapi32

RegEnumKeyW
RegSetValueExW
RegSetValueW
RegEnumKeyExW
RegOpenKeyW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyW

ole32

CoTaskMemFree
CoTaskMemAlloc
CoFreeUnusedLibraries
CoInitialize
CoCreateInstance
CoUninitialize
StringFromGUID2

gdi32

SelectObject
GetPaletteEntries
GetStockObject
GetObjectW
GetTextExtentPoint32W
PatBlt

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

msvcrt

_purecall
_ftol
??2@YAPAXI@Z
wcslen
??3@YAXPAX@Z
_except_handler3

Sections

.text
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8e593ecb3bc0409c482e1d6026d7afc

Headers

File Characteristics

Imports

msvfw32

kernel32

user32

winmm

advapi32

ole32

gdi32

version

msvcrt

Sections

.text Size: 157KB - Virtual size: 156KB

.rdata Size: 25KB - Virtual size: 24KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 157KB - Virtual size: 156KB

.rdata
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 1024B - Virtual size: 644B