a1eda59b855edce50ab0bf68a9fdc8a431bb18e8fc3837b239db93a91d65e379

Sharing

Copy URL

Twitter E-mail

General

Target

a1eda59b855edce50ab0bf68a9fdc8a431bb18e8fc3837b239db93a91d65e379
Size

1.2MB
MD5

0493b056e4d8195ca276d6d6ecd91a10
SHA1

8d392623d06a293956b4d76772f0ba54b4d5ffba
SHA256

a1eda59b855edce50ab0bf68a9fdc8a431bb18e8fc3837b239db93a91d65e379
SHA512

9ff0ac507c2d04890a0fb447dd72ac30f02ddc0c25efba7d601b9ba1a7e315c41859b39bd8b6f7072c6045689894bc59b3f83f57cdefa08a9bc4a85789052245
SSDEEP

12288:2fOTua5M3EYBVmTrw7jPh0MS+DNtkedqCM4MgBh1+:2AuTBVmTrw7+MJDNtkehMA7

Score

N/A

Malware Config

Signatures

Files

a1eda59b855edce50ab0bf68a9fdc8a431bb18e8fc3837b239db93a91d65e379
.dll windows x86

27ef279c5cdbdff181888bab13b8a237

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetPropA
GetWindowTextA
GetMenuCheckMarkDimensions
DrawEdge
GetWindowLongA
BeginPaint
IsIconic
EndPaint
wsprintfA
PostMessageA
SendMessageA
ReleaseDC
GetDC
UnregisterClassA
DestroyWindow
EndDialog
DefWindowProcA
KillTimer
ReleaseCapture
GetCapture
SetCapture
DialogBoxParamA
SetWindowPos
ShowCursor
SetCursor
SetCursorPos
GetCursorPos
GetAsyncKeyState
DestroyMenu
TrackPopupMenu
InsertMenuA
CreatePopupMenu
SetActiveWindow
SetForegroundWindow
SendDlgItemMessageA
EnableWindow
GetDlgItem
SetDlgItemTextA
LoadBitmapA
LoadIconA
LoadCursorA
LoadImageA
GetSysColor
GetSysColorBrush
GetDlgCtrlID
GetDlgItemTextA
GetParent
GetClassNameA
GetActiveWindow
SetWindowsHookExA
GetWindowThreadProcessId
UnhookWindowsHookEx
CallNextHookEx
GetClientRect
UpdateWindow
SetWindowLongA
IsWindowEnabled
GetLastActivePopup
CharToOemA
OemToCharA
PeekMessageA
IsWindowVisible
ValidateRect
GetKeyState
DispatchMessageA
TranslateMessage
GetMessageA
GetNextDlgTabItem
GetFocus
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
CreateWindowExA
GetSystemMetrics
GetWindowPlacement
BeginDeferWindowPos
SystemParametersInfoA
IntersectRect
OffsetRect
RegisterWindowMessageA
GetWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetTimer
GetClassLongA
InvalidateRect
GetWindowTextLengthA
SetWindowPlacement
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
GetClassInfoA
WinHelpA
IsChild
GetTopWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
ScrollWindow
EndDeferWindowPos
CopyRect
PostQuitMessage
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
SetFocus
MapWindowPoints
CheckDlgButton
CheckRadioButton
GetDlgItemInt
SetDlgItemInt
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
MoveWindow
PtInRect
ClientToScreen
GetDesktopWindow
RegisterClassA
GetWindowDC
TabbedTextOutA
DrawTextA
GrayStringA
ShowOwnedPopups
DeleteMenu
GetMenuStringA
CharUpperA
IsWindow
LoadStringA
MessageBoxA
GetWindowRect
SetWindowTextA
ShowWindow

advapi32

RegOpenKeyExA
RegOpenKeyA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
GetUserNameA
RegQueryValueExA

shell32

ShellExecuteA
SHGetPathFromIDListA
SHGetFileInfoA
DragAcceptFiles
SHBrowseForFolderA

gdi32

PtVisible
CreateDIBPatternBrushPt
CreatePatternBrush
RectVisible
CreateHatchBrush
CreateSolidBrush
ExtCreatePen
CreatePen
GetWindowExtEx
GetViewportExtEx
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn
GetClipRgn
PolyBezierTo
SetColorAdjustment
PolylineTo
ExtTextOutA
SetTextCharacterExtra
ArcTo
GetCurrentPositionEx
SetMapperFlags
TextOutA
SetTextJustification
SetTextAlign
GetClipBox
MoveToEx
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
RestoreDC
SaveDC
Escape
SetArcDirection
PolyDraw
LineTo
StartDocA
DeleteDC
GetDeviceCaps
GetObjectA
BitBlt
SelectObject
CreateDIBSection
CreateCompatibleDC
DeleteObject
GetStockObject
SetBkColor
SetTextColor
CreateBitmap
GetDCOrgEx

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

comdlg32

GetFileTitleA

winmm

PlaySoundA
timeKillEvent
timeSetEvent

kernel32

InterlockedIncrement
SetFileTime
lstrcpyA
MoveFileA
lstrcmpiA
SetCurrentDirectoryA
PeekNamedPipe
GetFileInformationByHandle
InterlockedExchange
WaitForMultipleObjects
TerminateThread
SleepEx
GetLocaleInfoW
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
SetEnvironmentVariableA
CompareStringW
CompareStringA
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
SetUnhandledExceptionFilter
SetStdHandle
IsBadWritePtr
VirtualAlloc
SetConsoleCtrlHandler
FatalAppExitA
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
GetACP
TerminateProcess
ExitProcess
HeapReAlloc
HeapSize
ExitThread
RaiseException
HeapAlloc
HeapFree
GetSystemTime
GetTimeZoneInformation
GetCommandLineA
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSize
GetFileAttributesA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
GetPrivateProfileIntA
GetTickCount
WritePrivateProfileStringA
Sleep
OutputDebugStringA
GetPrivateProfileStringA
FindClose
FindFirstFileA
GetModuleFileNameA
FreeLibrary
GetProcAddress
LoadLibraryA
GetVersion
GetVersionExA
GlobalUnlock
GlobalFree
SetErrorMode
SetHandleCount
GetComputerNameA
lstrlenA
GetShortPathNameA
GetModuleHandleA
GetDiskFreeSpaceA
GetDriveTypeA
SetFileAttributesA
lstrcatA
GetSystemDirectoryA
GetLocalTime
_llseek
_lopen
_lclose
_lcreat
_lread
_lwrite
ResumeThread
InitializeCriticalSection
CreateEventA
CreateThread
DeleteCriticalSection
CloseHandle
WaitForSingleObject
LeaveCriticalSection
EnterCriticalSection
SetEvent
QueryPerformanceCounter
FindNextFileA
QueryPerformanceFrequency
WritePrivateProfileSectionA
GetLastError
SetLastError
lstrcpynA
LocalAlloc
LocalFree
TlsAlloc
UnlockFile
SetEndOfFile
GlobalHandle
TlsFree
GlobalLock
GlobalReAlloc
GlobalAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
InterlockedDecrement
DeleteFileA
WideCharToMultiByte
MultiByteToWideChar
SetThreadPriority
GetCurrentThreadId
SuspendThread
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
LockResource
LoadResource
FindResourceA
GetProcessVersion
MulDiv
lstrcmpA
GlobalFlags
GetCurrentThread
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
DuplicateHandle
GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile

ws2_32

WSAGetLastError
setsockopt
__WSAFDIsSet
select
shutdown
ioctlsocket
ntohs
recvfrom
getsockname
getpeername
gethostbyaddr
closesocket
inet_ntoa
accept
connect
recv
send
getsockopt
WSAStartup
htonl
gethostbyname
inet_addr
socket
bind
htons
listen

comctl32

ord17

Exports

Exports

winampDSPGetHeader2

Sections

.text
Size: 420KB - Virtual size: 417KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 271KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 624KB - Virtual size: 621KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

27ef279c5cdbdff181888bab13b8a237

Headers

File Characteristics

Imports

user32

advapi32

shell32

gdi32

winspool.drv

comdlg32

winmm

kernel32

ws2_32

comctl32

Exports

Exports

Sections

.text Size: 420KB - Virtual size: 417KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 56KB - Virtual size: 271KB

.idata Size: 16KB - Virtual size: 12KB

.rsrc Size: 624KB - Virtual size: 621KB

.reloc Size: 28KB - Virtual size: 24KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 420KB - Virtual size: 417KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 56KB - Virtual size: 271KB

.idata
Size: 16KB - Virtual size: 12KB

.rsrc
Size: 624KB - Virtual size: 621KB

.reloc
Size: 28KB - Virtual size: 24KB

.rmnet
Size: 60KB - Virtual size: 60KB