4693577e7a2c918463dd6d9456c6abb262a9f96bd9d2bc5f7f104e11ccca722b

Sharing

Copy URL

Twitter E-mail

General

Target

4693577e7a2c918463dd6d9456c6abb262a9f96bd9d2bc5f7f104e11ccca722b
Size

284KB
MD5

07dc514f45f31ab8bf152a130d296810
SHA1

7b4cc436d4b472ff1ee9980e7b917e8fa08d4d11
SHA256

4693577e7a2c918463dd6d9456c6abb262a9f96bd9d2bc5f7f104e11ccca722b
SHA512

880b3c14ee53a01fdc01fd7669f54322791beb302d9616b417171ac6aa896e3582c107e1dfa6599fc22a430012fde63c6f78b6b86890d5ff759b923053192e65
SSDEEP

6144:4rejdy4Tnk6Eb5pV44Cr7zf4AOUWmWJl0bN9rkkR:EejljkZ5pVhk7z4VfJwAkR

Score

N/A

Malware Config

Signatures

Files

4693577e7a2c918463dd6d9456c6abb262a9f96bd9d2bc5f7f104e11ccca722b
.dll windows x86

1335afc87a0afeb457ad06c9865975fa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveOutGetVolume
waveOutSetVolume
waveOutWrite
waveOutClose
waveOutUnprepareHeader
waveOutReset
waveOutPrepareHeader
waveOutOpen
waveOutGetDevCapsA
waveOutGetNumDevs
waveInClose
waveInReset
waveInUnprepareHeader
waveInStop
waveInStart
waveInAddBuffer
waveInPrepareHeader
waveInOpen
waveInGetDevCapsA
waveOutGetErrorTextA
mixerSetControlDetails
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerGetDevCapsA
mixerOpen
mixerGetNumDevs
mixerClose

kernel32

GetLastError
FlushFileBuffers
SetStdHandle
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
IsBadCodePtr
IsBadReadPtr
LoadLibraryA
SetFilePointer
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
GetCPInfo
GetLocaleInfoA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedExchange
CreateEventA
SetEvent
Sleep
CloseHandle
WaitForSingleObject
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
OutputDebugStringA
SetThreadPriority
GetCurrentThread
GetCurrentThreadId
GetCommandLineA
GetVersionExA
RtlUnwind
RaiseException
HeapAlloc
HeapFree
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
TlsAlloc
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
GetModuleHandleA
ExitProcess
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
SetUnhandledExceptionFilter
HeapReAlloc
IsBadWritePtr
HeapSize

Exports

Exports

CreateTalkEngine

Sections

.text
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1335afc87a0afeb457ad06c9865975fa

Headers

File Characteristics

Imports

winmm

kernel32

Exports

Exports

Sections

.text Size: 144KB - Virtual size: 142KB

.rdata Size: 40KB - Virtual size: 39KB

.data Size: 8KB - Virtual size: 10KB

.rsrc Size: 16KB - Virtual size: 14KB

.reloc Size: 12KB - Virtual size: 8KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 144KB - Virtual size: 142KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 8KB - Virtual size: 10KB

.rsrc
Size: 16KB - Virtual size: 14KB

.reloc
Size: 12KB - Virtual size: 8KB

.rmnet
Size: 60KB - Virtual size: 60KB