eb58622dddec631f7b83f7f0c4bf7aa067ea2315f68792c0da6d01de9e2ffd3a

Sharing

Copy URL Twitter E-mail

General

Target

eb58622dddec631f7b83f7f0c4bf7aa067ea2315f68792c0da6d01de9e2ffd3a
Size

1.6MB
MD5

16da022b72f1fd1019238ae9e374c741
SHA1

72ffd8a1838054f9e27db75926ac4c6a2ebcaa3d
SHA256

eb58622dddec631f7b83f7f0c4bf7aa067ea2315f68792c0da6d01de9e2ffd3a
SHA512

00a88a422d662b6e597090f6df02d523d1d8698016adc936fd1561cd38ea1194d5af5cb474dba78b606cea9c2e1499f6b6de8ae0bd7cd5cb61e5c36b17d10426
SSDEEP

49152:MOu4ZKv9R5SYIGFhdFIZxI9dXhnb8MVQ:M6Kv9R5rdFIZq97nbZQ

Score

N/A

Malware Config

Signatures

Files

eb58622dddec631f7b83f7f0c4bf7aa067ea2315f68792c0da6d01de9e2ffd3a
.exe windows x86

8fc2639ccdea6c00d637dedd0e666753

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsound

ord11

ddraw

DirectDrawCreateEx

msvfw32

ICSendMessage
ICSeqCompressFrameStart
ICInfo
ICGetInfo
ICOpen
ICSeqCompressFrameEnd
ICClose
ICSeqCompressFrame

avifil32

AVIStreamSetFormat
AVIFileCreateStreamA
AVIFileOpenA
AVIFileInit
AVIStreamWrite
AVIFileExit
AVIFileRelease
AVIStreamRelease
AVIMakeCompressedStream

msacm32

acmDriverDetailsA
acmDriverClose
acmDriverEnum
acmStreamSize
acmStreamPrepareHeader
acmDriverOpen
acmStreamConvert
acmStreamOpen
acmFormatChooseA
acmMetrics
acmStreamUnprepareHeader
acmStreamClose

wmvcore

WMCreateWriter
WMCreateProfileManager

kernel32

RtlUnwind
VirtualAlloc
HeapReAlloc
FindNextFileA
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
GetCommandLineA
ExitProcess
DebugBreak
GetFileType
TerminateProcess
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
SetStdHandle
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
SetErrorMode
GetFullPathNameA
FindFirstFileA
FindClose
DuplicateHandle
UnlockFile
LockFile
DeleteFileA
GetCurrentDirectoryA
WritePrivateProfileStringA
FileTimeToSystemTime
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GlobalFlags
InterlockedDecrement
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
FormatMessageA
LocalFree
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
GlobalFree
FreeResource
GetFileSize
FlushInstructionCache
VirtualProtect
GetSystemInfo
GetCurrentProcessId
WriteProcessMemory
VirtualQuery
GetWindowsDirectoryA
GetSystemTime
MulDiv
HeapAlloc
GetProcessHeap
HeapFree
GetTempPathA
GetTempFileNameA
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSection
GetModuleHandleA
lstrcmpA
lstrcpynA
GetCurrentThreadId
lstrcpyA
LeaveCriticalSection
EnterCriticalSection
SetEvent
CreateEventA
ResetEvent
WaitForSingleObject
DeviceIoControl
SetFilePointer
FlushFileBuffers
SetEndOfFile
WriteFile
SetLastError
GlobalAlloc
GlobalLock
GlobalUnlock
ReadFile
CreateDirectoryA
GetCurrentProcess
SetPriorityClass
Sleep
CreateFileA
CloseHandle
CreateThread
GetTickCount
LoadLibraryA
GetProcAddress
FreeLibrary
RaiseException
GetDriveTypeA
GetVolumeInformationA
GetLastError
lstrlenA
lstrcmpiA
CompareStringA
CompareStringW
MultiByteToWideChar
GetVersion
WideCharToMultiByte
LoadResource
LockResource
SizeofResource
FindResourceA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
GetVersionExA
GetSystemDirectoryA
GetPrivateProfileStringA
SetCurrentDirectoryA
HeapValidate
HeapSize
OutputDebugStringA

user32

DrawMenuBar
EqualRect
GetWindowPlacement
ValidateRect
IntersectRect
GetWindowWord
GetFocus
SetFocus
EnumChildWindows
DrawStateA
DestroyIcon
DrawFrameControl
GetWindowLongW
SetWindowLongW
IsWindowUnicode
CallWindowProcW
CallWindowProcA
LoadStringA
IsWindowEnabled
SetScrollRange
SetScrollInfo
ShowScrollBar
SetScrollPos
GetScrollRange
GetScrollPos
GetScrollInfo
EnableScrollBar
DrawEdge
SetForegroundWindow
IsWindowVisible
SetCapture
ReleaseCapture
UpdateWindow
PtInRect
GetIconInfo
DestroyWindow
BeginPaint
EndPaint
CreateWindowExA
UnregisterClassA
GetDesktopWindow
LockWindowUpdate
SetPropA
RedrawWindow
SetWindowPos
RemovePropA
GetMenu
SetMenu
GetWindow
GetWindowInfo
MoveWindow
ShowWindow
GetWindowDC
GetWindowTextA
CharUpperBuffA
GetSystemMenu
IsZoomed
EnableMenuItem
GetCursorPos
DestroyMenu
InflateRect
DrawTextA
GetClassLongA
DrawIconEx
CharNextA
GetMenuItemCount
CreatePopupMenu
InsertMenuItemA
CopyAcceleratorTableA
UnhookWindowsHookEx
GetSysColor
SetWindowsHookExA
IsWindow
GetActiveWindow
GetPropA
GetMenuState
CallNextHookEx
GetMenuItemID
CopyRect
GetMenuItemInfoA
OpenClipboard
GetKeyState
GetClipboardData
SetClipboardData
ScreenToClient
GetSysColorBrush
RegisterClassExA
GetClassNameA
OffsetRect
GetParent
PostMessageA
SetWindowRgn
ReleaseDC
GetDC
DefWindowProcA
LoadIconA
InvalidateRect
IsIconic
LoadMenuA
InsertMenuA
GetSubMenu
CreateMenu
DrawIcon
FillRect
GetDlgCtrlID
SetCursor
ExitWindowsEx
LoadCursorA
GetWindowLongA
SetWindowLongA
SetMenuItemInfoA
SetRect
GetClientRect
ClientToScreen
WindowFromPoint
GrayStringA
TabbedTextOutA
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetSystemMetrics
KillTimer
SetTimer
LoadBitmapA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
GetTopWindow
MessageBoxA
SendMessageA
GetWindowRect
CharUpperA
CharLowerA
EnableWindow
wsprintfA
PostThreadMessageA
SetMenuItemBitmaps
ModifyMenuA
CheckMenuItem
GetMenuCheckMarkDimensions
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
WinHelpA
GetClassInfoExA
SendDlgItemMessageA
IsChild
GetWindowTextLengthA
GetForegroundWindow
GetLastActivePopup
RegisterClipboardFormatA
MessageBeep
GetNextDlgGroupItem
CloseClipboard
InvalidateRgn
GetMessageTime
TrackPopupMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
SetActiveWindow
CreateDialogIndirectParamA
GetDlgItem
GetNextDlgTabItem
EndDialog
CreateIconIndirect
DrawTextExA
GetCapture
GetMessagePos
MapWindowPoints
DestroyCursor
CopyIcon
SystemParametersInfoA
IsRectEmpty
LoadImageA
IsMenu

gdi32

SetTextColor
SetBkMode
GetTextExtentPointA
ExcludeClipRect
SelectClipRgn
CreateCompatibleBitmap
CreateFontIndirectA
CreateSolidBrush
OffsetRgn
ExtCreateRegion
GetRegionData
CreateRectRgnIndirect
CombineRgn
GetDIBits
CreateICA
SetBkColor
RealizePalette
SelectPalette
Polygon
RestoreDC
SaveDC
GetStockObject
CreateDIBitmap
CreateDIBSection
RectVisible
StretchDIBits
SetStretchBltMode
SetDIBitsToDevice
ExtSelectClipRgn
GetClipBox
DeleteObject
LineTo
MoveToEx
CreatePen
GetClipRgn
GetTextExtentPoint32A
IntersectClipRect
PtInRegion
GetRgnBox
GetTextMetricsA
UnrealizeObject
PatBlt
SetBrushOrgEx
CreatePatternBrush
ExtTextOutA
SetROP2
SetMapMode
GetViewportExtEx
GetWindowExtEx
PtVisible
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetBkColor
GetTextColor
GetMapMode
DeleteDC
RoundRect
CreateRoundRectRgn
StretchBlt
BitBlt
Rectangle
SelectObject
CreateRectRgn
SetBitmapBits
CreateBrushIndirect
CreatePenIndirect
TextOutA
GetObjectA
GetBitmapBits
CreateBitmap
GetDeviceCaps
GetPixel
CreateCompatibleDC

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegSetValueA
RegCreateKeyA
RegQueryValueA
RegQueryValueExA
RegOpenKeyA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegSetValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyExA
RegCloseKey

shell32

SHBrowseForFolderA
SHGetMalloc
ShellExecuteA
ExtractIconExA
SHGetPathFromIDListA

comctl32

ImageList_GetIcon
ImageList_Draw
ImageList_DrawEx
ImageList_GetIconSize
_TrackMouseEvent
ImageList_Destroy
ImageList_GetImageCount
ImageList_Remove
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_Create
ord17

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CLSIDFromProgID
CoTaskMemAlloc
CLSIDFromString
CoTaskMemFree
CoUninitialize
CoInitialize
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize

oleaut32

SafeArrayDestroy
VariantCopy
SysAllocStringByteLen
SysStringLen
SysFreeString
SysAllocStringLen
SystemTimeToVariantTime
SysAllocString
OleCreateFontIndirect
VariantInit
VariantClear
VariantChangeType

imagehlp

ImageDirectoryEntryToData

Sections

.text
Size: 928KB - Virtual size: 926KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 280KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 4.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 4KB - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8fc2639ccdea6c00d637dedd0e666753

Headers

File Characteristics

Imports

dsound

ddraw

msvfw32

avifil32

msacm32

wmvcore

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

imagehlp

Sections

.text Size: 928KB - Virtual size: 926KB

.rdata Size: 280KB - Virtual size: 277KB

.data Size: 108KB - Virtual size: 4.4MB

_RDATA Size: 4KB - Virtual size: 40B

.rsrc Size: 268KB - Virtual size: 265KB

.text
Size: 928KB - Virtual size: 926KB

.rdata
Size: 280KB - Virtual size: 277KB

.data
Size: 108KB - Virtual size: 4.4MB

_RDATA
Size: 4KB - Virtual size: 40B

.rsrc
Size: 268KB - Virtual size: 265KB