595423da13b8a4096340030c279ba8852bb8a2045f23e48bf1d2b63c16d6a1bc

Sharing

Copy URL Twitter E-mail

General

Target

595423da13b8a4096340030c279ba8852bb8a2045f23e48bf1d2b63c16d6a1bc
Size

2.3MB
MD5

1fa87eb0663f0c97551a65cadcbed2dc
SHA1

a493878cb98c06e338e18f66ff2c6622979ba0d5
SHA256

595423da13b8a4096340030c279ba8852bb8a2045f23e48bf1d2b63c16d6a1bc
SHA512

c04684d41f76cef31953412f4c4816f6a96af5d21afa382ac15f992432355a5c717de26c9ce2a3720f2e7ae4368c0dc0d9ba5e266a59ccfc2f6f6e9685b5c5fe
SSDEEP

49152:ErkWJjGYltNmEI3HO/Nq0Mu6D9wxq0FpJ1o6IR:ErJjHNmTO/o0z+9oFw

Score

N/A

Malware Config

Signatures

Files

595423da13b8a4096340030c279ba8852bb8a2045f23e48bf1d2b63c16d6a1bc
.exe windows x86

b555a55fd1b917be3b329b215646a734

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeKillEvent
timeSetEvent
waveOutSetVolume
mciSendCommandA
mciGetErrorStringA
joyGetNumDevs
joyGetPosEx
joyGetDevCapsA
waveOutGetErrorTextA
timeEndPeriod
timeBeginPeriod
timeGetTime
waveOutGetNumDevs
waveOutGetDevCapsA
waveOutGetPosition
waveOutMessage
waveOutOpen
waveOutClose
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutWrite
waveOutPause
waveOutRestart
waveOutReset

avcodec-52

ord906
ord903
ord960
ord919
ord921
ord841
ord840
ord839
ord908
ord858
ord923
ord905
ord932
ord959
ord946
ord937
ord911
ord860
ord862
ord931
ord867
ord940
ord925
ord958
ord914
ord935
ord956
ord950
ord844
ord842
ord882
ord843
ord854
ord912
ord927
ord910
ord857
ord865
ord896
ord852
ord875
ord847
ord845
ord889
ord881
ord957
ord863
ord920
ord859
ord883
ord874
ord933
ord873
ord848
ord926
ord936
ord924
ord902
ord945
ord944
ord868

avdevice-52

ord1

avformat-52

ord49
ord77
ord62
ord264
ord21
ord70
ord344
ord476
ord26
ord43
ord80
ord478
ord25
ord36
ord47
ord44
ord28
ord30
ord68
ord45
ord71
ord63
ord35
ord60
ord491
ord467
ord61
ord466
ord82
ord46
ord81
ord23
ord31
ord51
ord58
ord464
ord79
ord78
ord473
ord110

avutil-50

ord45
ord23
ord22
ord20
ord24
ord67
ord72
ord43
ord57
ord29
ord12
ord42
ord71
ord58
ord38
ord46
ord59
ord40
ord32
ord31
ord60
ord27
ord25

swscale-0

ord77
ord66
ord63
ord69

zlib1

ord67
ord55
ord50
ord16
ord19
ord58
ord14
ord24
ord20

kernel32

GetStringTypeA
GetStringTypeW
SetHandleCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
InterlockedCompareExchange
IsProcessorFeaturePresent
GetThreadContext
SetThreadContext
LCMapStringW
GetCommandLineA
SetUnhandledExceptionFilter
ReleaseSemaphore
TerminateProcess
TerminateThread
GetCurrentThread
SuspendThread
GetProcAddress
LoadLibraryA
VirtualProtect
WriteProcessMemory
GetCurrentProcess
lstrlenW
lstrcmpiA
lstrlenA
GetEnvironmentVariableA
CompareStringW
GetVersion
CompareStringA
GetLastError
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
SizeofResource
LockResource
LoadResource
FindResourceA
FreeLibrary
GetModuleHandleA
SetLastError
RaiseException
lstrcpynA
GetModuleFileNameA
GetTickCount
GetVersionExA
FreeResource
GetWindowsDirectoryA
WinExec
GlobalDeleteAtom
GlobalFindAtomA
MulDiv
GlobalAddAtomA
GetCurrentThreadId
CreateThread
GetTempFileNameA
DeleteFileA
Sleep
GlobalAlloc
CreateDirectoryA
GlobalFree
CloseHandle
WriteFile
ReadFile
DuplicateHandle
GetCurrentProcessId
WaitForSingleObject
GetTempPathA
CreateToolhelp32Snapshot
Process32First
Process32Next
GetSystemDirectoryA
CopyFileA
CreateSemaphoreA
GetFileAttributesA
FindFirstFileA
FindClose
CreateFileA
GetFileTime
FileTimeToSystemTime
SetFilePointer
CreateFileW
ReadFileEx
GetFileSize
GetFileSizeEx
SetFilePointerEx
GetFileInformationByHandle
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
GlobalLock
GlobalUnlock
InterlockedIncrement
InterlockedDecrement
LoadLibraryExA
IsDBCSLeadByte
lstrcmpA
FlushInstructionCache
OutputDebugStringA
IsBadReadPtr
ResetEvent
SetEvent
FileTimeToLocalFileTime
CreateMutexA
ReleaseMutex
QueryPerformanceCounter
GetFullPathNameA
CreateEventA
DeviceIoControl
SetEnvironmentVariableA
SetThreadPriority
GetTimeZoneInformation
LocalFree
HeapAlloc
GetProcessHeap
HeapFree
FormatMessageA
ResumeThread
GetLocaleInfoA
GetACP
SetErrorMode
GetDriveTypeA
FindFirstFileW
GetSystemDefaultLCID
GetLocaleInfoW
FindResourceExA
FindNextFileW
lstrcmpW
GlobalGetAtomNameA
EnumResourceLanguagesA
ConvertDefaultLocale
WritePrivateProfileStringA
GetModuleFileNameW
GetThreadLocale
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetVolumeInformationA
GlobalFlags
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetCPInfo
GetOEMCP
HeapReAlloc
VirtualAlloc
GetSystemInfo
VirtualQuery
UnhandledExceptionFilter
IsDebuggerPresent
ExitThread
ExitProcess
GetSystemTimeAsFileTime
GetStartupInfoA
GetFileType
GetConsoleCP
GetConsoleMode
SetConsoleCtrlHandler
RtlUnwind
HeapSize
HeapDestroy
HeapCreate
VirtualFree
GetStdHandle
IsValidCodePage
LCMapStringA

user32

GrayStringA
UpdateWindow
IsRectEmpty
GetKeyState
GetClassInfoA
DefWindowProcA
DestroyCursor
SetRectEmpty
GetMessageA
GetCursor
TranslateMessage
DispatchMessageA
GetWindowLongA
SystemParametersInfoA
GetDesktopWindow
SetForegroundWindow
MapVirtualKeyA
GetMessagePos
LoadMenuA
GetSubMenu
SetMenuDefaultItem
TrackPopupMenu
GetMenuItemID
LoadIconA
GetCaretPos
SetWindowLongA
MessageBeep
DestroyIcon
IsMenu
GetPropA
RemovePropA
ValidateRect
CreatePopupMenu
BeginPaint
CallWindowProcA
EndPaint
CreateWindowExA
WindowFromDC
GetMenuDefaultItem
AppendMenuA
CopyAcceleratorTableA
IntersectRect
GetKeyNameTextA
GetClassNameA
SetPropA
ModifyMenuA
SetLayeredWindowAttributes
SetMenu
GetWindowDC
CallNextHookEx
GetMenuState
GetMenuItemInfoA
SetWindowsHookExA
DrawStateA
GetMenuInfo
SetWindowPos
UnhookWindowsHookEx
GetMenuItemCount
GetScrollPos
SetWindowRgn
MessageBoxA
EqualRect
IsIconic
DrawIcon
EnableMenuItem
wsprintfA
LoadImageA
ShowWindow
IsWindowVisible
SetActiveWindow
ShowScrollBar
ExitWindowsEx
EnumWindows
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
CreateAcceleratorTableA
MoveWindow
DestroyAcceleratorTable
CharNextA
InvalidateRgn
GetClassInfoExA
GetWindow
DestroyWindow
RegisterClassExA
SetFocus
GetDlgItem
PeekMessageA
EnumDisplaySettingsA
ChangeDisplaySettingsA
GetForegroundWindow
AdjustWindowRectEx
IsZoomed
DrawTextW
WindowFromPoint
MapWindowPoints
GetKeyboardState
UnregisterClassA
GetKeyboardLayout
TabbedTextOutA
SetCursorPos
PostQuitMessage
ClipCursor
AdjustWindowRect
ToUnicode
RegisterClassA
MsgWaitForMultipleObjects
SetClassLongA
CreateIconFromResourceEx
CreateCursor
LoadKeyboardLayoutA
GetKeyboardLayoutNameA
MapVirtualKeyExA
CheckMenuItem
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetActiveWindow
TranslateAcceleratorA
GetWindowPlacement
GetDlgCtrlID
SetScrollInfo
GetScrollInfo
DeferWindowPos
GetMessageTime
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
GetClassLongA
GetCapture
WinHelpA
SendDlgItemMessageA
MapDialogRect
SetWindowContextHelpId
InsertMenuItemA
LoadAcceleratorsA
IsWindowEnabled
GetWindowThreadProcessId
ReuseDDElParam
UnpackDDElParam
GetMenuStringA
ShowOwnedPopups
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
IsDialogMessageA
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
SetTimer
SetScrollPos
BringWindowToTop
ScreenToClient
RegisterWindowMessageA
ReleaseDC
ReleaseCapture
SetCapture
PostMessageA
DrawTextA
LoadBitmapA
GetParent
GetSystemMetrics
GetWindowRect
DrawTextExA
DrawFrameControl
OffsetRect
SetCursor
FrameRect
LoadCursorA
IsWindow
PtInRect
SetRect
ClientToScreen
DrawFocusRect
GetSysColorBrush
FillRect
GetSysColor
DrawEdge
InvalidateRect
GetClientRect
EnableWindow
CopyRect
CharUpperA
SendMessageA
GetCursorPos
GetMenu
KillTimer
GetSystemMenu
DestroyMenu
GetFocus
IsChild
GetDC
InflateRect
RedrawWindow
ToAsciiEx
LockWindowUpdate
GetLastActivePopup

gdi32

GetPixel
FillRgn
CreatePolygonRgn
CreateRectRgn
Escape
GetCurrentObject
GetBkColor
ExtTextOutA
TextOutA
RectVisible
PtVisible
Rectangle
GetTextExtentPoint32A
DeleteObject
CreateBitmap
SelectObject
RealizePalette
Ellipse
GetDeviceCaps
CreateCompatibleBitmap
SetTextColor
CreateFontIndirectA
LineTo
SetBkColor
DeleteDC
CreateSolidBrush
CreateDIBSection
CreatePen
StretchBlt
GetObjectA
PtInRegion
BitBlt
SetMapMode
CreateDCA
GetDIBits
GetSystemPaletteEntries
CreatePalette
GetTextMetricsA
GetStockObject
RoundRect
SetDIBColorTable
SetPaletteEntries
GetSystemPaletteUse
GetDeviceGammaRamp
SetDeviceGammaRamp
SetSystemPaletteUse
GetBitmapBits
CreateFontW
SetBkMode
SetPixelFormat
ChoosePixelFormat
SwapBuffers
UnrealizeObject
SelectClipRgn
GetTextAlign
SetBrushOrgEx
CombineRgn
SetTextAlign
GetTextExtentPointA
SetWindowOrgEx
CreateCompatibleDC
PlgBlt
GetCurrentPositionEx
CreateRectRgnIndirect
MoveToEx
SetDIBitsToDevice
CreateRoundRectRgn
CreatePatternBrush
SetPixel
GetTextColor
GetLayout
SelectPalette
GetRgnBox
DPtoLP
GetMapMode
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
IntersectClipRect
SetROP2
RestoreDC
SaveDC
GetClipBox
DescribePixelFormat
GetNearestColor

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegEnumKeyA
RegQueryValueA
RegCloseKey
RegOpenKeyA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegDeleteValueA
RegDeleteKeyA
RegQueryInfoKeyA
RegEnumKeyExA
IsTextUnicode
RegOpenKeyExA

shell32

DragFinish
DragQueryFileA
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
Shell_NotifyIconA

comctl32

InitCommonControlsEx
_TrackMouseEvent
ImageList_GetIconSize

shlwapi

PathFindFileNameA
PathFileExistsA
PathCombineA
PathRenameExtensionA
PathIsUNCA
PathStripToRootA
PathFindExtensionA
PathRemoveExtensionA
PathRemoveFileSpecA

oledlg

ord8

ole32

CoGetClassObject
CLSIDFromProgID
CoTaskMemAlloc
CLSIDFromString
OleUninitialize
OleInitialize
CoCreateInstance
CreateStreamOnHGlobal
OleLockRunning
CoTaskMemFree
CoTaskMemRealloc
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
CoRevokeClassObject
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
StringFromGUID2

oleaut32

OleLoadPicture
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringByteLen
VariantInit
VariantClear
LoadRegTypeLi
LoadTypeLi
VarUI4FromStr
SysStringLen
SysAllocStringLen
GetErrorInfo
VariantCopy
SafeArrayDestroy
SysAllocStringByteLen
VariantChangeType
OleCreateFontIndirect
SysAllocString
SysFreeString

ddraw

DirectDrawCreate
DirectDrawCreateEx

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 340KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 416KB - Virtual size: 5.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b555a55fd1b917be3b329b215646a734

Headers

File Characteristics

Imports

winmm

avcodec-52

avdevice-52

avformat-52

avutil-50

swscale-0

zlib1

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ddraw

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 340KB - Virtual size: 339KB

.data Size: 416KB - Virtual size: 5.5MB

.rsrc Size: 116KB - Virtual size: 113KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 340KB - Virtual size: 339KB

.data
Size: 416KB - Virtual size: 5.5MB

.rsrc
Size: 116KB - Virtual size: 113KB