9422ad5f19f78ccee6225a7cd9ff1732154703c437505bb77b35187df1d1138b

Sharing

Copy URL Twitter E-mail

General

Target

9422ad5f19f78ccee6225a7cd9ff1732154703c437505bb77b35187df1d1138b
Size

167KB
MD5

0cbb06e7f82f9467d38bc3cfab979233
SHA1

fc07d7a5c82d677aea890f02dfc58bb5dcfb728e
SHA256

9422ad5f19f78ccee6225a7cd9ff1732154703c437505bb77b35187df1d1138b
SHA512

832c20a74ee11e7c2fbd9b9d8747b708366a7e3d4313ebef09939170d8333b8b49315d23a529f8d05f7eb1a85d27472a8fd0d1486de92ffd104845d379875eb4
SSDEEP

3072:UYVnm8IMAJHvL0BwsgCxnaVEdjFmcWa3POv4x3NOf64Qm+/brCxtmbdk:UYVat0SVajFX3Pw4x9Of64w/brKmxk

Score

N/A

Malware Config

Signatures

Files

9422ad5f19f78ccee6225a7cd9ff1732154703c437505bb77b35187df1d1138b
.exe windows x86

b8a50c8d632aa1e0dea21ea6db416d07

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ReleaseDC
TranslateMessage
IsRectEmpty
GetClientRect
PeekMessageW
CopyRect
DispatchMessageW
GetDC
FillRect
OffsetRect
SetRectEmpty
wsprintfW
GetWindowRect

winmm

timeGetTime

advapi32

RegSetValueExA
RegCloseKey
RegOpenKeyExW
RegQueryValueExA
RegDeleteKeyW
RegSetValueW
RegQueryValueExW
RegEnumKeyExW
RegOpenKeyExA
RegSetValueExW
RegCreateKeyExA
RegCreateKeyW
RegDeleteKeyA

shlwapi

PathRenameExtensionW
PathAddBackslashW
PathAppendW
PathIsDirectoryW
PathFileExistsA
PathFileExistsW
PathCombineW
PathRemoveBackslashW
PathRemoveFileSpecW

kernel32

GetLocaleInfoA
DeleteCriticalSection
CreateDirectoryA
GetVersionExW
LocalFree
InterlockedIncrement
GetThreadLocale
InterlockedDecrement
GetSystemTime
WaitNamedPipeA
WideCharToMultiByte
LocalAlloc
WaitForSingleObject
FindClose
CreateFileA
LoadLibraryW
TerminateProcess
CreateDirectoryW
WriteFile
InitializeCriticalSection
lstrlenA
MultiByteToWideChar
GetCurrentProcessId
GetProcessAffinityMask
OutputDebugStringW
CloseHandle
GetCurrentThreadId
ReadFile
GetVersionExA
EnumResourceTypesW
GetTempPathW
QueryPerformanceCounter
SetFilePointer
Sleep
lstrlenW
GetTickCount
DeleteFileA
GetLastError
DisableThreadLibraryCalls
SetFileAttributesA
OutputDebugStringA
ReleaseMutex
CopyFileA
GetTempFileNameA
GetTempPathA
FindFirstFileW
FindNextFileW
EnterCriticalSection
GetFileAttributesA
RemoveDirectoryW
InterlockedExchange
CreateMutexA
SetFileAttributesW
GetProcAddress
LeaveCriticalSection
MulDiv
FreeLibrary
GetModuleFileNameW
DeleteFileW
GetACP
GetTempFileNameW
GetModuleFileNameA
GetSystemTimeAsFileTime

avifil32

AVISaveOptions
AVIMakeCompressedStream

gdi32

CreateDCW
CreateCompatibleDC
BitBlt
GetObjectW
GetObjectType
CreateDIBSection
DeleteObject
CreateCompatibleBitmap
SetBrushOrgEx
SelectObject
CreateSolidBrush
CreateBitmap
GetDIBits
DeleteDC
SetBkColor
StretchBlt
SetStretchBltMode

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b8a50c8d632aa1e0dea21ea6db416d07

Headers

File Characteristics

Imports

user32

winmm

advapi32

shlwapi

kernel32

avifil32

gdi32

Sections

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 62KB - Virtual size: 61KB

.tls Size: 1024B - Virtual size: 104KB

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 62KB - Virtual size: 61KB

.tls
Size: 1024B - Virtual size: 104KB