a17a4711bb8e4c82790b0b4a66cbc1a6fbe70a170ea43dc3f8204d230eb2f66b

General

Target

a17a4711bb8e4c82790b0b4a66cbc1a6fbe70a170ea43dc3f8204d230eb2f66b
Size

392KB
MD5

84d689074fd76b2f6323beebd71fa3e6
SHA1

eb6eeb69b7160dfc270dbe97dea097a7a8cfa22b
SHA256

a17a4711bb8e4c82790b0b4a66cbc1a6fbe70a170ea43dc3f8204d230eb2f66b
SHA512

f5fef16b2a123ec73720fc8e5b4655b7f1bd1e2e5b8766479bf457c4d8e043436d3a49fdc8d99b7cbaba75775d73556861c7472760deb52ac2443eb027cb5a8c
SSDEEP

6144:crvvEBApuMkrc7mRnQzpCMstSRe4WnmI0zqFbYHSieZzHlwtdF+Nw5ViXQelKevU:crvXuMk47mVSQPCesdqcLgHlQFoRQS

Score

N/A

Malware Config

Signatures

Files

a17a4711bb8e4c82790b0b4a66cbc1a6fbe70a170ea43dc3f8204d230eb2f66b
.exe windows x86

6067ac49a73012afa6c199c2f8950190

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

lstrlenA
GetModuleFileNameA
GetFileAttributesW
IsValidLocale
HeapDestroy
GetModuleHandleA
SuspendThread
GetVersionExA
LocalFlags
LeaveCriticalSection
SetEvent
InterlockedExchange
GetCurrentThreadId
OpenEventW
ResumeThread
CreateMutexA
CreateFileW
GetStdHandle
AddAtomW
CreateDirectoryA
VirtualProtect
GetLocaleInfoA
GetTickCount
SetFilePointer
CreateFileW

user32

GetWindowLongA
DestroyMenu
IsMenu
LoadCursorA
GetWindowLongA
IsMenu
DestroyIcon
PeekMessageA
MessageBoxA
SetRect
wsprintfA
GetWindowTextA
DispatchMessageA

dplayx

DllUnregisterServer
DllGetClassObject
DllCanUnloadNow
DllRegisterServer

advapi32

IsValidAcl

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 387KB - Virtual size: 924KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6067ac49a73012afa6c199c2f8950190

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

dplayx

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 10B

.rsrc Size: 387KB - Virtual size: 924KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 10B

.rsrc
Size: 387KB - Virtual size: 924KB