98017471e872e3641ddf177bcdb8d788a80da906a24b5a6168f0f01cc1467297

Sharing

Copy URL

Twitter E-mail

General

Target

98017471e872e3641ddf177bcdb8d788a80da906a24b5a6168f0f01cc1467297
Size

232KB
MD5

90b5f6a935779142be530755b4cd03b0
SHA1

917b00242c48718b0fb5cb3c9a5d9b5fa57a7680
SHA256

98017471e872e3641ddf177bcdb8d788a80da906a24b5a6168f0f01cc1467297
SHA512

44b667beaff03ede4d976b80740f628a3b1643efbb8e07fe5dc9a690db6d8ae582fa03d4a1517b1524324d97ed060347486f9b7c7aa7967544795e98d264bd0b
SSDEEP

3072:JEiowI5NnkKMagWOtjlN3pxvn+BrF0otM0mo8cgm/SDADeak7dJHB/Aa:7knzgzJN3yrF0dK/SsQLH5Aa

Score

N/A

Malware Config

Signatures

Files

98017471e872e3641ddf177bcdb8d788a80da906a24b5a6168f0f01cc1467297
.exe windows x86

cf40c7949bb3e7d92ba8da201cb64d50

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetLastError
GetCurrentDirectoryA
GetDriveTypeA
SetCurrentDirectoryA
FindFirstFileA
GetLocalTime
ReleaseMutex
ReadFile
GetVersionExA
LoadLibraryA
OutputDebugStringA
GetProcAddress
FreeLibrary
ExitProcess
CloseHandle
SetFilePointer
WriteFile
CreateFileA
FindNextFileA
FindClose
GetCommandLineA
CreateMutexA
SetThreadPriority
GetEnvironmentStringsW
HeapDestroy
GetEnvironmentStrings
GetFileAttributesA
GetFullPathNameA
LCMapStringW
LCMapStringA
SetEndOfFile
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
SetStdHandle
FlushFileBuffers
CreateProcessA
GetExitCodeProcess
SetEnvironmentVariableA
GetFileSize
IsDBCSLeadByte
CreateThread
CreateEventA
WaitForSingleObject
SetEvent
Sleep
ExitThread
WaitForMultipleObjects
VirtualFree
DeleteFileA
RtlUnwind
TerminateProcess
GetCurrentProcess
GetModuleHandleA
GetStartupInfoA
GetVersion
HeapFree
HeapAlloc
HeapSize
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
VirtualAlloc
HeapCreate

user32

MessageBoxA
wvsprintfA
GetClientRect
DefWindowProcA
PostQuitMessage
ShowCursor
SetCapture
wsprintfA
WaitMessage
DispatchMessageA
TranslateMessage
PeekMessageA
SetFocus
UpdateWindow
GetKeyState
PostMessageA
GetKeyboardLayoutNameA
SetCursorPos
CreateWindowExA
ReleaseCapture
ShowWindow
SetCursor
ActivateKeyboardLayout
ClientToScreen
SetRect
AdjustWindowRectEx
LoadIconA
LoadCursorA
RegisterClassExA
GetSystemMetrics

gdi32

GetStockObject
SetBkColor
SetTextColor
TextOutA
EnumFontFamiliesExA
GetTextExtentPoint32A
GetTextMetricsA
SelectObject
CreateFontIndirectA
DeleteObject
SetBkMode
GetGlyphOutlineA

ole32

CoCreateInstance
CoInitialize
CoUninitialize

ws2_32

WSAStartup
closesocket
getsockname
gethostname
recv
send
inet_addr
connect
WSAGetLastError
gethostbyname
htons
WSACleanup
WSAAsyncSelect
socket

winmm

timeGetTime

imm32

ImmAssociateContext
ImmGetConversionStatus
ImmSetConversionStatus
ImmGetCandidateListA
ImmGetCompositionStringA
ImmIsIME
ImmDestroyContext
ImmCreateContext

ddraw

DirectDrawCreateEx

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

dsound

ord1

Sections

.text
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cf40c7949bb3e7d92ba8da201cb64d50

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

ws2_32

winmm

imm32

ddraw

advapi32

dsound

Sections

.text Size: 116KB - Virtual size: 112KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 104KB - Virtual size: 101KB

.text
Size: 116KB - Virtual size: 112KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 104KB - Virtual size: 101KB