a3bcd3499aef398cc1b13369fb65244820c64fba7f5f2890c41e841d9d18a9c6

Sharing

Copy URL Twitter E-mail

General

Target

a3bcd3499aef398cc1b13369fb65244820c64fba7f5f2890c41e841d9d18a9c6
Size

186KB
MD5

0ce6192b597f5a9325c546c5109e4cd0
SHA1

d764076898d3fab97227f14fd5217a083cfcf923
SHA256

a3bcd3499aef398cc1b13369fb65244820c64fba7f5f2890c41e841d9d18a9c6
SHA512

5fde477fd7bef9d1cb02706beecb9be1ceac74c2c8b1d607337b097a278935ece5391dbf1a7818b0bcc5308309e4a5eb04a2df9fbe9672b204ee77536460d2bb
SSDEEP

3072:o+lA4v/+bAiVSuoOcd/FlqKNXQ6vLYA60U++PzSHhqF3xJM5uVHqNcAhO4BVEY6A:UO+bZV6hFJNXQ6DYARU+ox25uRwcp4b5

Score

N/A

Malware Config

Signatures

Files

a3bcd3499aef398cc1b13369fb65244820c64fba7f5f2890c41e841d9d18a9c6
.exe windows x86

86868c84774481cadaeb3f32630cf084

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedIncrement
InitializeCriticalSection
QueryPerformanceCounter
GlobalMemoryStatus
GetSystemInfo
IsBadReadPtr
GetFileAttributesW
GlobalUnlock
MulDiv
GlobalFree
lstrlenW
GetPrivateProfileStringW
LoadLibraryW
DeleteCriticalSection
CreateSemaphoreW
GetStartupInfoA
HeapFree
GetLastError
lstrcpynW
lstrcpyW
GlobalLock
GetQueuedCompletionStatus
GetProfileIntA
GlobalAlloc
lstrcmpiW
SetEvent
WaitForSingleObject
GetCurrentThread
HeapAlloc
GetEnvironmentStringsA
GetProcessHeap
CreateFileW
GetFullPathNameW
lstrlenA
GetVersionExW
CloseHandle
GetACP
CreateThread
CreateEventW
GetDiskFreeSpaceW
GetSystemTimeAsFileTime
IsBadWritePtr
IsBadCodePtr
GetModuleFileNameA
DeleteFileW
GetTickCount
GetProcAddress
MultiByteToWideChar
GetFileSize
lstrcpyA
EnterCriticalSection
CreateIoCompletionPort
GetThreadPriority
PostQueuedCompletionStatus
SetFilePointer
lstrcmpW
InterlockedExchange
WriteFile
InterlockedDecrement
ReadFile
GetSystemDefaultLangID
GlobalHandle
WideCharToMultiByte
WaitForMultipleObjects
LeaveCriticalSection
GetCurrentProcessId
SetThreadPriority
ResetEvent
SetEndOfFile
ReleaseSemaphore
GetCurrentProcess
VirtualFree
FreeLibrary
SetUnhandledExceptionFilter

user32

ClientToScreen
DestroyWindow
wsprintfW
TranslateMessage
CheckRadioButton
IsRectEmpty
GetWindowLongW
SetWindowLongW
SendMessageW
CheckDlgButton
GetDlgItem
ReleaseDC
EnableWindow
IsWindow
MoveWindow
DispatchMessageW
GetDC
ShowWindow
SetDlgItemInt
GetClientRect
GetDlgItemInt
LoadCursorW
GetAsyncKeyState
InvalidateRect
IsWindowVisible
GetDesktopWindow
GetWindowRect
SetCursor
DefWindowProcW
CreateDialogParamW
LoadStringW
SetDlgItemTextW
PeekMessageW

msvfw32

ICOpen
ICSendMessage
ICDecompress
ICGetInfo
ICClose
ICLocate
ICCompress

ole32

CoFreeUnusedLibraries
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoUninitialize
CoInitialize

winmm

waveInGetDevCapsW
waveInClose
CloseDriver
waveInStart
waveInReset
mixerGetID
mixerSetControlDetails
waveInAddBuffer
waveInUnprepareHeader
waveInOpen
mixerGetControlDetailsW
SendDriverMessage
mixerClose
mixerGetLineControlsW
mixerOpen
waveInPrepareHeader
waveInStop
mixerGetLineInfoW
OpenDriver

advapi32

RegSetValueW
RegQueryValueExW
RegEnumKeyW
RegCloseKey
RegOpenKeyW
RegEnumKeyExW
RegCreateKeyW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW

gdi32

GetObjectW
GetStockObject
PatBlt
GetPaletteEntries
GetTextExtentPoint32W
SelectObject

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

Sections

.text
Size: 158KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

86868c84774481cadaeb3f32630cf084

Headers

File Characteristics

Imports

kernel32

user32

msvfw32

ole32

winmm

advapi32

gdi32

version

Sections

.text Size: 158KB - Virtual size: 158KB

.rdata Size: 24KB - Virtual size: 24KB

.rsrc Size: 1024B - Virtual size: 644B

.text
Size: 158KB - Virtual size: 158KB

.rdata
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 1024B - Virtual size: 644B