61882076411c02b45980f8dccc03ea6ed9c847427bfd7112a0f02b1339c7db53

Sharing

Copy URL Twitter E-mail

General

Target

61882076411c02b45980f8dccc03ea6ed9c847427bfd7112a0f02b1339c7db53
Size

320KB
MD5

0fd5f561123b5b97190e489de1aa6990
SHA1

35c548dca2a0b317aa76b78a7d5430f104b58600
SHA256

61882076411c02b45980f8dccc03ea6ed9c847427bfd7112a0f02b1339c7db53
SHA512

eab70537db5ecfc8731f1922fbc8c9058235d59518d5eaa4fa6ff9dfc72813737814252ac29429ee426c0fd38581c0ad2c42a420a65af0c0599d4289fc643588
SSDEEP

6144:QasXTfE3pasvwBePn5fBP+3s36nKsz+L+kAOuzo0naGg:iTfE3pYkBKKsz+dsPaGg

Score

N/A

Malware Config

Signatures

Files

61882076411c02b45980f8dccc03ea6ed9c847427bfd7112a0f02b1339c7db53
.exe windows x86

7bc0cdec1f6eeffe74e2dbd5cf503399

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeBeginPeriod
timeGetTime
timeEndPeriod
PlaySoundA
mmioOpenA
mmioDescend
mmioClose
mmioRead

dsound

ord1

ddraw

DirectDrawCreate

kernel32

ReadFile
WriteFile
SetFilePointer
GetFileSize
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
Beep
SetUnhandledExceptionFilter
GetCPInfo
GetOEMCP
GetACP
FlushFileBuffers
VirtualQuery
InterlockedExchange
LoadLibraryA
RaiseException
LCMapStringW
MultiByteToWideChar
LCMapStringA
CloseHandle
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetFileType
GetStdHandle
SetHandleCount
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
HeapSize
GetCurrentProcess
TerminateProcess
GetProcAddress
UnhandledExceptionFilter
GetModuleFileNameA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
CreateFileA
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
VirtualProtect
GetSystemInfo
SetStdHandle
GetEnvironmentStringsW
HeapFree
RtlUnwind
ExitProcess
HeapReAlloc
HeapAlloc
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersionExA

user32

GetCursorPos
ScreenToClient
DrawTextA
GetKeyState
VkKeyScanA
GetAsyncKeyState
LoadStringA
FindWindowA
IsIconic
ShowWindow
SetForegroundWindow
MessageBoxA
LoadIconA
LoadCursorA
RegisterClassExA
AdjustWindowRect
CreateWindowExA
UpdateWindow
LoadAcceleratorsA
GetDC
ReleaseDC
PeekMessageA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
GetClientRect
SendMessageA
PostQuitMessage
OpenIcon
CloseWindow
DefWindowProcA
BeginPaint
EndPaint
ChangeDisplaySettingsA
ShowCursor

gdi32

CreateCompatibleDC
SetBkMode
SelectObject
BitBlt
DeleteObject
SetTextColor
SetBkColor
CreateDIBSection
DeleteDC
SetDIBitsToDevice

shell32

ShellExecuteA

Sections

.text
Size: 200KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7bc0cdec1f6eeffe74e2dbd5cf503399

Headers

File Characteristics

Imports

winmm

dsound

ddraw

kernel32

user32

gdi32

shell32

Sections

.text Size: 200KB - Virtual size: 198KB

.rdata Size: 32KB - Virtual size: 28KB

.data Size: 44KB - Virtual size: 202KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 200KB - Virtual size: 198KB

.rdata
Size: 32KB - Virtual size: 28KB

.data
Size: 44KB - Virtual size: 202KB

.rsrc
Size: 40KB - Virtual size: 39KB