83df469fc1ce2998c168ed25b9caf516a2f85264f9e6b15ad64e302de6c0584b

Sharing

Copy URL Twitter E-mail

General

Target

83df469fc1ce2998c168ed25b9caf516a2f85264f9e6b15ad64e302de6c0584b
Size

571KB
MD5

05ae8ebadc131d2787ada7c7ad217b01
SHA1

33a6749a651f274b0d64181627513c3f411a437e
SHA256

83df469fc1ce2998c168ed25b9caf516a2f85264f9e6b15ad64e302de6c0584b
SHA512

f934985d6d6e66d666e4ee35b0ca84fa14a85382dc805160448c12285dfc7ea7a4136924b15ef17297615eb29d899113fb88804128cf70c52dc9b06765b09a1b
SSDEEP

12288:g7DvqyXy0BQnBbbNw093R+UWMKp4iAejqhPppMut:g7bqyXfq5NwORw4iAejYp

Score

N/A

Malware Config

Signatures

Files

83df469fc1ce2998c168ed25b9caf516a2f85264f9e6b15ad64e302de6c0584b
.exe windows x86

79ab2ed8ee82a15c8cfc9d9a5d16788b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerSetControlDetails
mixerGetLineInfoW
mixerGetLineControlsA
mixerGetDevCapsA
midiStreamProperty
midiOutPrepareHeader
midiOutMessage

user32

ShowCursor
PostMessageA
SendMessageA
UpdateWindow
CharLowerA

setupapi

CM_Get_HW_Prof_FlagsA
SetupAdjustDiskSpaceListA
SetupDiClassGuidsFromNameW
CM_Request_Device_EjectW

comdlg32

ChooseColorW
ChooseFontW
CommDlgExtendedError
FindTextW
GetOpenFileNameW
GetSaveFileNameW
ChooseFontA

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoA
VerFindFileW
VerInstallFileA
VerQueryValueA
VerQueryValueW
GetFileVersionInfoSizeA

ntdll

RtlNtStatusToDosError
RtlxUnicodeStringToAnsiSize
RtlMoveMemory
ZwDuplicateToken
ZwGetDevicePowerState
ZwPrivilegedServiceAuditAlarm
KiUserExceptionDispatcher
RtlInitializeCriticalSectionAndSpinCount
RtlInitializeContext
RtlImpersonateSelf
RtlGetUserInfoHeap
RtlFillMemory
RtlEqualLuid
NtQuerySecurityObject
NtPlugPlayControl
NtOpenFile
NtFlushBuffersFile
ZwCreateWaitablePort
LdrLoadAlternateResourceModule
NtDuplicateToken

kernel32

_lopen
VerLanguageNameW
VerLanguageNameA
SetWaitableTimer
SetPriorityClass
SetLastError
SetFileApisToANSI
QueryInformationJobObject
QueryDosDeviceW
MoveFileA
Module32Next
InitializeCriticalSectionAndSpinCount
HeapAlloc
GetFileSize
GetDefaultCommConfigA
GetComputerNameA
GetCommandLineA
ExitProcess
EscapeCommFunction
EnumCalendarInfoExA
DeleteVolumeMountPointA
DeleteFileA
CreateJobObjectW
CompareStringW
CompareStringA
CancelIo
Heap32ListNext
GlobalGetAtomNameA
GetVersionExA
GetTickCount
GetThreadSelectorEntry
GetSystemTimeAdjustment
GetStringTypeExW
GetProcAddress
GetPrivateProfileSectionW
AddAtomW
GetNamedPipeInfo

Sections

.text
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 464KB - Virtual size: 463KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79ab2ed8ee82a15c8cfc9d9a5d16788b

Headers

File Characteristics

Imports

winmm

user32

setupapi

comdlg32

version

ntdll

kernel32

Sections

.text Size: 58KB - Virtual size: 57KB

.data Size: 464KB - Virtual size: 463KB

.rsrc Size: 48KB - Virtual size: 47KB

.text
Size: 58KB - Virtual size: 57KB

.data
Size: 464KB - Virtual size: 463KB

.rsrc
Size: 48KB - Virtual size: 47KB