b7e05648e8324951f2f6dd178786dca76e147d642384c18652de76500be8ea3f

Sharing

Copy URL Twitter E-mail

General

Target

b7e05648e8324951f2f6dd178786dca76e147d642384c18652de76500be8ea3f
Size

860KB
MD5

130e3dfbce3b425f92be3045d47edb80
SHA1

aa8e955e5f87b95ca1d4cb3566c83e2f4e7a32ab
SHA256

b7e05648e8324951f2f6dd178786dca76e147d642384c18652de76500be8ea3f
SHA512

4af335071e9c214950a0978803443dcf2ee798dd3d9c6e8b8274f17eadb79cb794493c9a7d886906ede41f9e9af75d520943624405805f70755aab37aa913d9d
SSDEEP

24576:IzUjQZuKouxtWLxOQibxYEkjq+W4nj9YDPExIqLWdye6zl:V8kKpPWLxt2oYkj9YkLWdyeml

Score

N/A

Malware Config

Signatures

Files

b7e05648e8324951f2f6dd178786dca76e147d642384c18652de76500be8ea3f
.exe windows x86

393b2fcd1fc68d1f49b958360bf49b2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
QueryPerformanceFrequency
CreateFileA
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
GetTimeZoneInformation
GetTickCount
GetLastError
GetCommandLineA
SetCurrentDirectoryA
GetLocaleInfoA
LCMapStringW
LCMapStringA
GetSystemInfo
VirtualProtect
MultiByteToWideChar
VirtualQuery
InterlockedExchange
LoadLibraryA
SetFilePointer
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
VirtualAlloc
GetCPInfo
GetOEMCP
GetACP
VirtualFree
LockResource
SizeofResource
LoadResource
FindResourceA
RtlUnwind
RaiseException
ExitProcess
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
GetStartupInfoA
GetVersionExA
HeapAlloc
HeapFree
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapReAlloc
HeapSize
GetFullPathNameA
GetCurrentDirectoryA
CloseHandle
WriteFile
ReadFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
DebugBreak

user32

ReleaseDC
RegisterClassA
GetDC
CloseWindow
SetMenu
OpenIcon
IsIconic
SetCursorPos
LoadIconA
DialogBoxParamA
GetDlgItem
SendMessageA
EndDialog
LoadCursorA
SetCursor
GetWindowRect
GetSystemMetrics
ClipCursor
ShowCursor
MessageBoxA
GetCursorPos
ScreenToClient
ClientToScreen
PostQuitMessage
MsgWaitForMultipleObjects
DispatchMessageA
TranslateMessage
GetMessageA
PeekMessageA
DestroyWindow
MoveWindow
AdjustWindowRect
GetWindowLongA
SetCapture
ReleaseCapture
UpdateWindow
ShowWindow
SetFocus
CreateWindowExA
DefWindowProcA
SetWindowLongA

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

dsound

ord1

msacm32

acmStreamUnprepareHeader
acmStreamConvert
acmStreamPrepareHeader
acmStreamSize
acmStreamOpen
acmStreamClose

winmm

mmioAscend
mmioRead
mmioDescend
mmioSeek
mmioSetInfo
mmioAdvance
mmioGetInfo
mmioClose
mmioOpenA

gdi32

BitBlt

Sections

.text
Size: 608KB - Virtual size: 605KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 120KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

393b2fcd1fc68d1f49b958360bf49b2c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

dsound

msacm32

winmm

gdi32

Sections

.text Size: 608KB - Virtual size: 605KB

.rdata Size: 120KB - Virtual size: 119KB

.data Size: 12KB - Virtual size: 73KB

.rsrc Size: 24KB - Virtual size: 21KB

.text
Size: 608KB - Virtual size: 605KB

.rdata
Size: 120KB - Virtual size: 119KB

.data
Size: 12KB - Virtual size: 73KB

.rsrc
Size: 24KB - Virtual size: 21KB