515df4b72b832480c0c245ee640b348d1244e5e2f7a6ce53188bb06fd0b2aff4

Sharing

Copy URL

Twitter E-mail

General

Target

515df4b72b832480c0c245ee640b348d1244e5e2f7a6ce53188bb06fd0b2aff4
Size

41KB
MD5

0a029acd74e194006b6f2e8723a94837
SHA1

58976b0f810799787ef509a8c204858114bade55
SHA256

515df4b72b832480c0c245ee640b348d1244e5e2f7a6ce53188bb06fd0b2aff4
SHA512

57bb0f1d1769ccc2f54594626c4d134260b57b0c4663fe78f8ad9569ccb2764fbf73f4a1279c34334e95abab8e5b629c55554fc4184fdce64f1cfc93189ff923
SSDEEP

768:tbwEtJtRV52q8FVKEBlPeKkkwtiKA6XmQDkeM1LqKsmzH:P/RD2H/eK5W7XXmhevKsmzH

Score

N/A

Malware Config

Signatures

Files

515df4b72b832480c0c245ee640b348d1244e5e2f7a6ce53188bb06fd0b2aff4
.dll windows x86

53669a8aa927b05a2d267a01495a795a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
GetProcAddress
VirtualAlloc
VirtualFree
VirtualProtect

winmm

waveInStop

advapi32

RegCloseKey

ole32

CreateStreamOnHGlobal

imm32

ImmGetContext

user32

IsWindow

shell32

ShellExecuteA

avicap32

capCreateCaptureWindowA

gdi32

BitBlt

ws2_32

listen

shlwapi

StrChrA

psapi

GetModuleFileNameExA

msvcrt

free

Exports

Exports

erdftgyhy
222222222222
ServiceMain

Sections

.guoc
Size: 26KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.guocy
Size: 1024B - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.guof
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

guocy
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gyuio
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.errere
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.LordFox
Size: 6KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

53669a8aa927b05a2d267a01495a795a

Headers

File Characteristics

Imports

kernel32

winmm

advapi32

ole32

imm32

user32

shell32

avicap32

gdi32

ws2_32

shlwapi

psapi

msvcrt

Exports

Exports

Sections

.guoc Size: 26KB - Virtual size: 66KB

.guocy Size: 1024B - Virtual size: 6KB

.guof Size: 1024B - Virtual size: 2KB

guocy Size: - Virtual size: 4KB

.gyuio Size: 3KB - Virtual size: 3KB

.rsrc Size: - Virtual size: 4KB

.errere Size: 2KB - Virtual size: 3KB

.LordFox Size: 6KB - Virtual size: 4KB

.guoc
Size: 26KB - Virtual size: 66KB

.guocy
Size: 1024B - Virtual size: 6KB

.guof
Size: 1024B - Virtual size: 2KB

guocy
Size: - Virtual size: 4KB

.gyuio
Size: 3KB - Virtual size: 3KB

.rsrc
Size: - Virtual size: 4KB

.errere
Size: 2KB - Virtual size: 3KB

.LordFox
Size: 6KB - Virtual size: 4KB