214418b3200b6bf5dbd9fb86191bd0284d6e6a4126b6da070cd271479b9985e3

Sharing

Copy URL

Twitter E-mail

General

Target

214418b3200b6bf5dbd9fb86191bd0284d6e6a4126b6da070cd271479b9985e3
Size

344KB
MD5

300a4d053e9def698620266de4bf78f0
SHA1

a550339ca3b9bbb83c07b86db24259134c6f6acb
SHA256

214418b3200b6bf5dbd9fb86191bd0284d6e6a4126b6da070cd271479b9985e3
SHA512

54f4fdecaeac537ac1782c1529187bb95ab1da94b1b5b8ac81393e000a5abe92bc8c6b619d2bbaa507ea554a410b54d6e22e595b673ead7d5645afeee112a524
SSDEEP

6144:1hSYMlyCxa0x3XyY8FQaVUxIX+qvvXykBJTuzZeHGsuoKxBvS:mY8gAXyY8F9VUx7evXlL6eHGhxBv

Score

N/A

Malware Config

Signatures

Files

214418b3200b6bf5dbd9fb86191bd0284d6e6a4126b6da070cd271479b9985e3
.exe windows x86

429d12c985a4547ac44beaf65ea5e213

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
Sleep
GetProcAddress
LoadLibraryA
GetModuleHandleA
ExitProcess
GetCurrentThreadId
ExitThread
GetTickCount
FreeLibrary
CreateEventA
SetThreadPriority
GetOEMCP
CloseHandle
TerminateThread
CreateThread
GetComputerNameA
VirtualProtect
GetProcessHeap
GetModuleFileNameA
VirtualAlloc
GetCurrentProcessId
GetVersionExA
ReleaseSemaphore
GetCommandLineA
WaitForSingleObject
EnumTimeFormatsA
GetLocaleInfoA
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetCPInfo
GetACP
VirtualQuery
GetTapeParameters
GetStringTypeW
GetSystemInfo
InterlockedExchange
RtlUnwind
FlushFileBuffers
GetSystemTimeAsFileTime
QueryPerformanceCounter
HeapReAlloc
GetProcessHeaps
GetStringTypeExA
VirtualFree
SetFilePointer
GetStdHandle
WriteFile
HeapFree
HeapAlloc
WideCharToMultiByte
TerminateProcess
GetCurrentProcess
SetStdHandle

gdi32

GetTextMetricsA

user32

GetWindowLongA
SetWindowLongA
TranslateAcceleratorA
FindWindowA
RegisterWindowMessageA
DefWindowProcA
PostQuitMessage
wsprintfA
MessageBeep
MessageBoxA
GetClientRect
UnregisterHotKey
ShowCaret

comctl32

ord17

ws2_32

WSAAsyncGetProtoByNumber

winmm

timeBeginPeriod

ole32

GetClassFile
OleCreateEmbeddingHelper
OleCreateMenuDescriptor

dsound

ord9

oleacc

GetRoleTextA
GetRoleTextW

Sections

.text
Size: 300KB - Virtual size: 298KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 323KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ardba
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

429d12c985a4547ac44beaf65ea5e213

Headers

File Characteristics

Imports

kernel32

gdi32

user32

comctl32

ws2_32

winmm

ole32

dsound

oleacc

Sections

.text Size: 300KB - Virtual size: 298KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 323KB

.ardba Size: 8KB - Virtual size: 7KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 300KB - Virtual size: 298KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 323KB

.ardba
Size: 8KB - Virtual size: 7KB

.reloc
Size: 8KB - Virtual size: 4KB