2684e207eeb154f2f264eb653bdb5bafc113c8d61252bd396b858a782206dc75

Sharing

Copy URL Twitter E-mail

General

Target

2684e207eeb154f2f264eb653bdb5bafc113c8d61252bd396b858a782206dc75
Size

644KB
MD5

066659d17d2373efcc1fd0a31643d8b0
SHA1

34c10c8c9b5678985f01334a543d4731d70f790d
SHA256

2684e207eeb154f2f264eb653bdb5bafc113c8d61252bd396b858a782206dc75
SHA512

8347f4abf4f7feb85d60512e5432436b98e87263327efd031ddd64b029765b28d9d8ec2e5d875a60267854fff53dce62428bf95b34dc4c765e140a50f6f21a59
SSDEEP

6144:unVho4HRBS95F/9K9VfccfLxanw2ZFOY9L9fccfLxanw25csZvYCOOe52tq5grjb:uowa5FKHYC035grjOogc2EghpLPVBlk

Score

N/A

Malware Config

Signatures

Files

2684e207eeb154f2f264eb653bdb5bafc113c8d61252bd396b858a782206dc75
.exe windows x86

23c2de0ce96c701627fbea1643a03822

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
lstrcatA
lstrcpyA
RtlUnwind
VirtualProtect
lstrlenA
FindClose
FindNextFileA
FreeLibrary
lstrcpynA
WritePrivateProfileStringA
GetProcAddress
FindFirstFileA
InitializeCriticalSection
lstrcmpA
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
_lwrite
_lclose
_lread
_lopen
_llseek
LocalAlloc
LocalFree
LoadLibraryA
GetCommandLineA
FreeEnvironmentStringsW
GetSystemDirectoryA
GlobalFree
GlobalUnlock
_hread
GlobalAlloc
FreeResource
LockResource
LoadResource
FindResourceA
GetLocalTime
GetCurrentThreadId
CreateEventA
CloseHandle
ResumeThread
CreateThread
TerminateThread
WaitForSingleObject
Sleep
_lcreat
SetCurrentDirectoryA
GetModuleFileNameA
SetThreadPriority
GetVersionExA
IsValidCodePage
GetModuleHandleA
GetStartupInfoA
VirtualFree
ExitProcess
GetEnvironmentVariableA
VirtualAlloc
HeapReAlloc
HeapSize
TerminateProcess
GetCurrentProcess
FreeEnvironmentStringsA
GetLastError
UnhandledExceptionFilter
GetPrivateProfileStringA
WideCharToMultiByte
GetPrivateProfileStructA
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
WriteFile
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetOEMCP
SetFilePointer
SetEndOfFile
ReadFile
RaiseException
GetPrivateProfileIntA
WritePrivateProfileStructA
CopyFileA
SetEvent
GlobalLock
GetTempPathA
GetWindowsDirectoryA
GetACP
GetVersion
GetVolumeInformationA
GetDriveTypeA
WinExec
HeapAlloc
WaitForMultipleObjects
HeapFree
HeapCreate
HeapDestroy

user32

GetMenuState
TrackPopupMenuEx
IsDlgButtonChecked
GetWindow
CheckDlgButton
CreateDialogIndirectParamA
SetDlgItemInt
DialogBoxIndirectParamA
GetDesktopWindow
ReleaseCapture
ShowScrollBar
BeginPaint
ReleaseDC
EndPaint
GetClientRect
GetDC
MapWindowPoints
LoadBitmapA
wsprintfA
InvalidateRect
PtInRect
SendDlgItemMessageA
DrawEdge
FillRect
ShowWindow
ValidateRect
GetDlgItemTextA
GetDlgCtrlID
CheckRadioButton
GetWindowTextA
SetWindowTextA
SetFocus
MessageBoxA
GetMenuItemInfoA
PostMessageA
EndDialog
GetDlgItem
SendMessageA
EnableWindow
EnableMenuItem
InsertMenuItemA
RemoveMenu
GetMenuItemCount
GetSubMenu
DialogBoxParamA
ScreenToClient
GetCursorPos
LoadCursorA
LoadIconA
SetCapture
ChildWindowFromPoint
PostThreadMessageA
CreateDialogParamA
DrawMenuBar
GetMenu
SetMenu
WinHelpA
LoadImageA
GetClassNameA
GetSystemMenu
CheckMenuItem
IsWindow
LoadAcceleratorsA
TranslateAcceleratorA
DestroyIcon
UnregisterClassA
PostQuitMessage
UpdateWindow
GetMessageA
DispatchMessageA
TranslateMessage
GetWindowRect
GetWindowTextLengthA
CallNextHookEx
SetCursor
LoadStringA
WindowFromPoint
SystemParametersInfoA
UnhookWindowsHookEx
SetWindowsHookExA
CopyAcceleratorTableA
CreateAcceleratorTableA
DestroyAcceleratorTable
GetMenuItemID
InsertMenuA
GetSysColor
SetTimer
CreatePopupMenu
GetMenuStringA
AppendMenuA
DefWindowProcA
RegisterClassA
TrackPopupMenu
IsWindowVisible
IsIconic
DestroyMenu
KillTimer
LoadMenuA
ClientToScreen
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
SetClassLongA
GetSystemMetrics
CreateWindowExA
SetWindowPos
GetWindowLongA
CallWindowProcA
SetDlgItemTextA
SetWindowLongA
GetParent

gdi32

SetBkColor
CreatePolygonRgn
SelectClipRgn
CreatePenIndirect
GetRgnBox
ExtTextOutA
GetTextMetricsA
StretchBlt
SetTextColor
CreateSolidBrush
SetDIBitsToDevice
GetStockObject
GetTextExtentPoint32A
SetPixel
GetTextExtentPointA
SetBkMode
TextOutA
CreatePalette
CreateDIBitmap
GetDeviceCaps
SelectPalette
RealizePalette
Polyline
CreateBrushIndirect
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
BitBlt
RestoreDC
SaveDC
CreateRectRgn
CombineRgn
DeleteDC
SelectObject
MoveToEx
CreatePen
PtInRegion
GetObjectA
LineTo
DeleteObject
CreateFontIndirectA
OffsetRgn

comdlg32

ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
ChooseFontA
GetFileTitleA

advapi32

RegOpenKeyExA
RegQueryValueExA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
DragFinish
DragQueryFileA

ole32

CoUninitialize
OleUninitialize
CoInitialize
OleInitialize
ReleaseStgMedium
RegisterDragDrop
RevokeDragDrop

winmm

waveOutGetPosition
waveOutUnprepareHeader
waveOutClose
waveOutWrite
waveOutGetDevCapsA
waveOutPrepareHeader
waveOutReset
mixerOpen
waveOutGetID
mixerClose
mixerGetLineInfoA
mixerGetID
mixerGetDevCapsA
mixerSetControlDetails
mixerGetLineControlsA
mixerGetControlDetailsA
waveOutOpen
mciSendStringA
waveOutGetNumDevs
timeGetTime

comctl32

ord5
CreateToolbarEx
PropertySheetA
ImageList_LoadImageA
ord17
ImageList_Destroy

dsound

ord1

fft

ord3
ord5

avcdrom

ord54
ord51

facehelp

ord30
ord12
ord11
ord13
ord39
ord6
ord29
ord7
ord33
ord32
ord9
ord34
ord4
ord35
ord25
ord38
ord8

fdct

ord1

coolmenu

ord16
ord20
ord31
ord27
ord26
ord17
ord7
ord5
ord10
ord9
ord14
ord33
ord18
ord23
ord3
ord24
ord32
ord22
ord21

ampequ

ord1
ord5
ord2
ord3
ord4
ord6

realhook

ord1

Sections

.text
Size: 252KB - Virtual size: 250KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 7.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 352KB - Virtual size: 368KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

23c2de0ce96c701627fbea1643a03822

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

winmm

comctl32

dsound

fft

avcdrom

facehelp

fdct

coolmenu

ampequ

realhook

Sections

.text Size: 252KB - Virtual size: 250KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 24KB - Virtual size: 7.6MB

.rsrc Size: 352KB - Virtual size: 368KB

.text
Size: 252KB - Virtual size: 250KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 24KB - Virtual size: 7.6MB

.rsrc
Size: 352KB - Virtual size: 368KB