9b061e6822e6502f900809ae596629522d912fd220b1ed84fc8405b7bccb884c

Sharing

Copy URL

Twitter E-mail

General

Target

9b061e6822e6502f900809ae596629522d912fd220b1ed84fc8405b7bccb884c
Size

91KB
MD5

932f1b162f42740a8a866f55b06c7533
SHA1

a458bce656a3126ee5e843315bd149190302e493
SHA256

9b061e6822e6502f900809ae596629522d912fd220b1ed84fc8405b7bccb884c
SHA512

3b88e9629da610df44b27e4d811adc49791e5ec19f1f7045e12089e76bd5e63e654dea504ef5e43fdd623494b0cb93952dbc87ca81f481f3ae619e7102f468b7
SSDEEP

1536:8+s6NJdQp6Wn+pfiS0b9Xrs62IER4k8o8gB1AuvR7QCfxi8SfhKltf2WuIF:8+s6fRWn+MnJ2qhoBB1T7DA8SfhKltfh

Score

N/A

Malware Config

Signatures

Files

9b061e6822e6502f900809ae596629522d912fd220b1ed84fc8405b7bccb884c
.dll windows x86

2c238bbecc68647d6e17fdda708464ce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveInGetNumDevs
waveInGetDevCapsA
mixerOpen
mixerGetNumDevs
mixerGetID
mixerGetDevCapsA
mixerClose

user32

TranslateMessage
SystemParametersInfoA
ShowWindow
SetForegroundWindow
SendMessageA
ReleaseDC
RegisterClassA
PostQuitMessage
PostMessageA
LoadStringA
LoadImageA
LoadIconA
LoadCursorA
InsertMenuItemA
GetWindow
GetSysColor
GetMessageA
GetMenuCheckMarkDimensions
GetDesktopWindow
GetDC
GetCursorPos
GetClassNameA
DispatchMessageA
DestroyMenu
DefWindowProcA
CreateWindowExA
CreatePopupMenu

advapi32

AllocateAndInitializeSid
SetSecurityDescriptorDacl
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegDeleteValueA
RegCreateKeyExA
RegCreateKeyA
RegCloseKey
InitializeSecurityDescriptor
InitializeAcl
GetLengthSid
FreeSid

setupapi

SetupDiSetClassInstallParamsA
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceInstanceIdA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiCallClassInstaller

kernel32

SetEvent
SearchPathA
RtlUnwind
MultiByteToWideChar
LocalFree
LocalAlloc
LoadLibraryA
LCMapStringA
HeapFree
HeapDestroy
SetHandleCount
HeapAlloc
GetVersionExA
GetVersion
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetProcAddress
GetOEMCP
GetModuleHandleA
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WinExec
WriteFile
lstrcmpiA
lstrcpyA
lstrlenA
HeapCreate
GetLastError
GetFileType
GetEnvironmentStringsA
GetCommandLineA
GetACP
FreeEnvironmentStringsW
FreeEnvironmentStringsA
ExitProcess
CloseHandle
CreateEventA
CreateMutexA
CreateProcessA
GetModuleFileNameA

Sections

.text
Size: 78KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c238bbecc68647d6e17fdda708464ce

Headers

File Characteristics

Imports

winmm

user32

advapi32

setupapi

kernel32

Sections

.text Size: 78KB - Virtual size: 80KB

.data Size: 9KB - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 4KB

.text
Size: 78KB - Virtual size: 80KB

.data
Size: 9KB - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 4KB