645a668a994da4e52a72748abddf4b003c9d3233b016770f860c288cdeb61842

Sharing

Copy URL Twitter E-mail

General

Target

645a668a994da4e52a72748abddf4b003c9d3233b016770f860c288cdeb61842
Size

628KB
MD5

829e1f74ff3efa29261e1899369c47c0
SHA1

062e89a905479afade7972186ff5ff3510cd77d0
SHA256

645a668a994da4e52a72748abddf4b003c9d3233b016770f860c288cdeb61842
SHA512

0ea4ed31ee6f491a2e6b10c732a3f8a65a4d425358a9daca487b9f99146c09e4005742e6c7a9e401a4d12e822cd7247eaf1104dc4dc0be2dbeb0335b2cb9bf4f
SSDEEP

12288:/vyA3v8LTYvadUhq9wwGjwW3RuzWfkiM3E5E/v91fxSzB:/vyiTvamh27Gjwt0JM3HdIB

Score

N/A

Malware Config

Signatures

Files

645a668a994da4e52a72748abddf4b003c9d3233b016770f860c288cdeb61842
.exe windows x86

4f5d83db76818e24b81edb7b68002880

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
ReadFile
VirtualAlloc
IsBadWritePtr
HeapReAlloc
CloseHandle
SetFilePointer
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetStdHandle
FlushFileBuffers
GetStringTypeA
GetStringTypeW
CreateFileA
RaiseException
SetEndOfFile
GetTimeZoneInformation
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProcAddress
GetCurrentProcess
TerminateProcess
InterlockedIncrement
InterlockedDecrement
LeaveCriticalSection
EnterCriticalSection
HeapFree
HeapAlloc
GetModuleFileNameA
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
OutputDebugStringA
Sleep
DebugBreak
InitializeCriticalSection
IsBadCodePtr
IsBadReadPtr
CreateEventA
ResetEvent
SetEvent
WaitForSingleObject
SetThreadPriority
CreateThread
CreateMutexA
ReleaseMutex
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
ExitThread
GetFullPathNameA
GetCurrentDirectoryA
SetUnhandledExceptionFilter

user32

SetFocus
SetForegroundWindow
SetActiveWindow
AttachThreadInput
GetWindowThreadProcessId
GetForegroundWindow
UpdateWindow
ShowWindow
CreateWindowExA
ReleaseDC
GetDC
AdjustWindowRect
RegisterClassA
LoadCursorA
LoadIconA
DispatchMessageA
GetClientRect
DestroyWindow
ShowCursor
GetMessageA
ClipCursor
DefWindowProcA
PtInRect
GetWindowRect
GetCursorPos
TranslateMessage
ScreenToClient
SetTimer
PostQuitMessage
ReleaseCapture
SetCapture
ClientToScreen
MapVirtualKeyA
MessageBoxA
PeekMessageA
OpenClipboard
GetClipboardData
CloseClipboard
GetDesktopWindow

advapi32

RegCloseKey
GetUserNameA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA

shell32

ShellExecuteA

winmm

timeGetTime
waveOutPrepareHeader
waveOutGetDevCapsA
waveOutGetNumDevs
waveOutWrite
waveOutOpen
waveOutClose
waveOutUnprepareHeader
waveOutReset

gdi32

CreateCompatibleDC
GetStockObject
GetObjectA
CreateDIBSection
BitBlt
SelectObject
DeleteObject
DeleteDC
GetDeviceCaps

dsound

ord1

ddraw

DirectDrawCreate

Sections

.text
Size: 396KB - Virtual size: 393KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f5d83db76818e24b81edb7b68002880

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

winmm

gdi32

dsound

ddraw

Sections

.text Size: 396KB - Virtual size: 393KB

.rdata Size: 24KB - Virtual size: 21KB

.data Size: 76KB - Virtual size: 428KB

.rsrc Size: 12KB - Virtual size: 8KB

.text
Size: 396KB - Virtual size: 393KB

.rdata
Size: 24KB - Virtual size: 21KB

.data
Size: 76KB - Virtual size: 428KB

.rsrc
Size: 12KB - Virtual size: 8KB