79cca76f6cfac83151001c223c7200d0bb3740a607c3cb249d0e09c252524a30

Sharing

Copy URL Twitter E-mail

General

Target

79cca76f6cfac83151001c223c7200d0bb3740a607c3cb249d0e09c252524a30
Size

296KB
MD5

08ba9520c843671e3ab8bd108abe7448
SHA1

8aaea3bdc9157fb05039327610d3924b088bceb7
SHA256

79cca76f6cfac83151001c223c7200d0bb3740a607c3cb249d0e09c252524a30
SHA512

7ff23b5fcddc081aafd92d619ae28bddb4c0116ed3f51aafb63cd066491fd59f4100b6f2ce9dab1731cb5538a4f287975bf5d506cbd59e93985b66020cffad60
SSDEEP

6144:PhKtIlJI05FKY9UEFi5fdYWxVKlVEHckE1XYGQ80:JKKT5FKY9UEFi52jcHcL1pR0

Score

N/A

Malware Config

Signatures

Files

79cca76f6cfac83151001c223c7200d0bb3740a607c3cb249d0e09c252524a30
.exe windows x86

eff7a0c4f1e303303857798a8acb1db0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

midiOutGetNumDevs
midiOutGetDevCapsA
mixerGetNumDevs
mixerGetDevCapsA

msvfw32

MCIWndCreateA

kernel32

FileTimeToSystemTime
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GlobalReAlloc
EnterCriticalSection
FileTimeToLocalFileTime
WritePrivateProfileStringA
GetCurrentDirectoryA
GetFileSize
GetOEMCP
LocalFileTimeToFileTime
SetFileAttributesA
SetErrorMode
RtlUnwind
RemoveDirectoryA
SetEnvironmentVariableA
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
HeapFree
GetACP
TerminateProcess
SystemTimeToFileTime
HeapReAlloc
HeapSize
GlobalHandle
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
TlsFree
LeaveCriticalSection
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
GetSystemDirectoryA
GetVersionExA
DeviceIoControl
CreateProcessA
WaitForSingleObject
LoadLibraryA
GetProcAddress
FreeLibrary
GlobalAlloc
GlobalFree
GetTempPathA
GetTempFileNameA
DeleteFileA
MoveFileA
GetWindowsDirectoryA
GetShortPathNameA
lstrcatA
GetLogicalDrives
GetDriveTypeA
GetProfileStringA
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFileAttributesA
MulDiv
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
DuplicateHandle
lstrcmpA
LocalFree
FindNextFileA
FindFirstFileA
GetLastError
SetLastError
FindClose
lstrcpynA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
GlobalUnlock
LockResource
FindResourceA
LoadResource
Sleep
SetCurrentDirectoryA
CreateFileA
GetModuleFileNameA
lstrcpyA
lstrlenA
WriteFile
CloseHandle
SetThreadPriority
GetCurrentThread
GetCurrentProcess
SetPriorityClass
ResumeThread
GetEnvironmentStringsW
SetHandleCount
GetTimeZoneInformation

user32

SetWindowTextA
MoveWindow
ShowWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
IsDialogMessageA
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
LoadStringA
PostQuitMessage
CharUpperA
ShowOwnedPopups
SetCursor
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
InvalidateRect
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
GetDesktopWindow
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
PtInRect
LoadCursorA
GetSysColorBrush
DestroyIcon
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetWindowRect
DispatchMessageA
PeekMessageA
CopyRect
GetWindowTextA
GetClassNameA
GetParent
EnumWindows
FindWindowA
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA
RegisterWindowMessageA
wsprintfA
EnableWindow
KillTimer
SetTimer
PostMessageA
SetPropA
GetClassLongA
GetSubMenu
DefDlgProcA
CharNextA
ExcludeUpdateRgn
UnregisterClassA
InflateRect
HideCaret
DrawFocusRect
IsWindowUnicode
ShowCaret

gdi32

SetTextColor
GetClipBox
GetTextExtentPointA
BitBlt
CreateCompatibleDC
CreateDIBitmap
CreateBitmap
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
PatBlt
DeleteObject
GetObjectA
SetBkColor
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
DeleteDC

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegEnumKeyExA
RegQueryValueExA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegEnumKeyA
RegQueryValueA
RegCloseKey
RegEnumValueA
RegOpenKeyExA
RegDeleteValueA
RegOpenKeyA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA

shell32

ShellExecuteA
Shell_NotifyIconA
SHGetFileInfoA
DragFinish
DragQueryFileA
ExtractIconA

comctl32

ord17

Sections

.text
Size: 148KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 20KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.prdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

eff7a0c4f1e303303857798a8acb1db0

Headers

File Characteristics

Imports

winmm

msvfw32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 148KB - Virtual size: 145KB

.rdata Size: 36KB - Virtual size: 32KB

.data Size: 20KB - Virtual size: 33KB

.rsrc Size: 16KB - Virtual size: 15KB

.prdata Size: 72KB - Virtual size: 72KB

.text
Size: 148KB - Virtual size: 145KB

.rdata
Size: 36KB - Virtual size: 32KB

.data
Size: 20KB - Virtual size: 33KB

.rsrc
Size: 16KB - Virtual size: 15KB

.prdata
Size: 72KB - Virtual size: 72KB