15969ed028ff352d6b1577612630e70c82836182e09d94bbbaa9f7f3ee3d3cc0

Sharing

Copy URL Twitter E-mail

General

Target

15969ed028ff352d6b1577612630e70c82836182e09d94bbbaa9f7f3ee3d3cc0
Size

1.1MB
MD5

0a5af1733e9b7c239808e70e466cf2e0
SHA1

e2f59932ecd001704e272c85870aada44525d96a
SHA256

15969ed028ff352d6b1577612630e70c82836182e09d94bbbaa9f7f3ee3d3cc0
SHA512

0ef88d8be985532574e733296bdd71ba6ffdc45ebc4cdff6eb6430797422bb3130e888c037c0a9e67ae57cc0feba3a687796ea6c60d05c95d04bbdc8157e435f
SSDEEP

24576:mWq8VOdqRCzoDmCNyB43ef6lWawACDqv:RF8ZEly1f6AKCD

Score

N/A

Malware Config

Signatures

Files

15969ed028ff352d6b1577612630e70c82836182e09d94bbbaa9f7f3ee3d3cc0
.exe windows x86

5eac845cc0043ccfdcf7f04112c5e3c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
MapViewOfFile
SetFilePointer
CreateEventA
SetFileAttributesA
CreateFileMappingA
GetFileSize
DeleteFileA
ReadFile
GetFileTime
HeapCreate
GetSystemInfo
HeapDestroy
lstrcmpA
CreateDirectoryA
CopyFileA
SetCurrentDirectoryA
GlobalMemoryStatus
GetCurrentDirectoryA
WinExec
GetLastError
GetDriveTypeA
CreateFileA
SetEndOfFile
WriteFile
GetProcAddress
IsBadReadPtr
HeapValidate
UnhandledExceptionFilter
FreeEnvironmentStringsA
RtlUnwind
WideCharToMultiByte
GetEnvironmentStrings
FreeEnvironmentStringsW
SetHandleCount
GetFileType
GetEnvironmentStringsW
MultiByteToWideChar
GetStringTypeA
SetUnhandledExceptionFilter
IsBadCodePtr
GetStringTypeW
GetACP
GetOEMCP
GetCPInfo
LCMapStringW
SetStdHandle
LCMapStringA
RaiseException
VirtualAlloc
FlushFileBuffers
HeapFree
HeapReAlloc
VirtualFree
InterlockedIncrement
OutputDebugStringA
GetModuleFileNameA
IsBadWritePtr
GetTimeZoneInformation
CloseHandle
LoadLibraryA
FormatMessageA
SetEnvironmentVariableA
CompareStringW
CompareStringA
FreeLibrary
lstrcatA
lstrlenA
GetLocalTime
lstrcpyA
GetStartupInfoA
GetCommandLineA
Sleep
GetStdHandle
GetSystemTime
ExitProcess
TerminateProcess
GetCurrentProcess
GetModuleHandleA
InterlockedDecrement
GetVersion
HeapAlloc
DebugBreak

user32

LoadIconA
LoadCursorA
DialogBoxParamA
wsprintfA
ShowCursor
DispatchMessageA
PeekMessageA
TranslateMessage
GetMessageA
ShowWindow
SendMessageA
UpdateWindow
LoadStringA
CreateWindowExA
CharPrevA
SetCursorPos
GetWindowRect
SetFocus
SetRect
SetDlgItemTextA
EndDialog
IntersectRect
CharNextA
EnableWindow
GetDlgItem
GetDlgItemTextA
PostQuitMessage
SetWindowPos
GetSystemMetrics
FindWindowExA
MessageBeep
DefWindowProcA
MessageBoxA
RegisterClassExA

gdi32

GetPixel
CreateFontIndirectA
DeleteObject
GetStockObject
SetTextColor
SetBkMode
TextOutA
SelectObject
SetPixel
SetBkColor

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

ole32

CoUninitialize
CoInitialize

ddraw

DirectDrawCreate

dinput

DirectInputCreateA

imm32

ImmIsIME

winmm

PlaySoundA
timeGetTime

binkw32

_BinkGetError@0
_BinkClose@4
_BinkNextFrame@4
_BinkSetSoundSystem@8
_BinkDDSurfaceType@4
_BinkService@4
_BinkCopyToBuffer@28
_BinkDoFrame@4
_BinkWait@4
_BinkGetSummary@8
_BinkSetVolume@8
_BinkOpenDirectSound@4
_BinkOpenMiles@4
_BinkOpen@8

mss32

_AIL_waveOutClose@4
_AIL_stream_volume@4
_AIL_set_stream_volume@8
_AIL_start_stream@4
_AIL_set_stream_loop_count@8
_AIL_set_stream_user_data@12
_AIL_open_stream@12
_AIL_stream_ms_position@12
_AIL_stream_status@4
_AIL_stream_user_data@8
_AIL_sample_status@4
_AIL_sample_user_data@8
_AIL_set_named_sample_file@20
_AIL_set_sample_file@12
_AIL_set_sample_user_data@12
_AIL_set_sample_volume@8
_AIL_set_sample_pan@8
_AIL_set_sample_loop_count@8
_AIL_start_sample@4
_AIL_end_sample@4
_AIL_release_sample_handle@4
_AIL_set_preference@8
_AIL_waveOutOpen@16
_AIL_digital_configuration@16
_AIL_get_preference@4
_AIL_close_stream@4
_AIL_allocate_sample_handle@4
_AIL_init_sample@4
_AIL_shutdown@0
_AIL_set_redist_directory@4
_AIL_startup@0
_AIL_serve@0
_AIL_sequence_user_data@8
_AIL_sequence_status@4
_AIL_init_sequence@12
_AIL_set_sequence_user_data@12
_AIL_set_sequence_volume@12
_AIL_set_sequence_loop_count@8
_AIL_start_sequence@4
_AIL_mem_free_lock@4
_AIL_end_sequence@4
_AIL_release_sequence_handle@4
_AIL_midiOutClose@4
_AIL_midiOutOpen@12
_AIL_last_error@0
_AIL_mem_alloc_lock@4
_AIL_allocate_sequence_handle@4

Sections

.text
Size: 608KB - Virtual size: 605KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 641KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 416KB - Virtual size: 414KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5eac845cc0043ccfdcf7f04112c5e3c8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

ddraw

dinput

imm32

winmm

binkw32

mss32

Sections

.text Size: 608KB - Virtual size: 605KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 48KB - Virtual size: 641KB

.rsrc Size: 416KB - Virtual size: 414KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 608KB - Virtual size: 605KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 48KB - Virtual size: 641KB

.rsrc
Size: 416KB - Virtual size: 414KB

.rmnet
Size: 60KB - Virtual size: 60KB