6fab6dbc2075b94e1340606916180b2910dd6eff0e7657e4d34ac861c77b005e

Sharing

Copy URL

Twitter E-mail

General

Target

6fab6dbc2075b94e1340606916180b2910dd6eff0e7657e4d34ac861c77b005e
Size

256KB
MD5

3909bb9bb5eff2994fb3f3fa5380e9f0
SHA1

8ad556940e7eaf3619e4fd3a45564607bb66aa54
SHA256

6fab6dbc2075b94e1340606916180b2910dd6eff0e7657e4d34ac861c77b005e
SHA512

90d2efde5561aa732de0a1a76c2682391982233f41c58cc0163d8e53b0a6b8eb0e6fc3e409dedfc65fe21af49585e2206a9300d481c8783964ffa81f06834648
SSDEEP

3072:ULEdWwM8boJQRYq7MTweLT+w2EC4j0oYb8e+jmbH7EMOjxxHr6xxr6GVyW8Xg:MbqRY5wALXqo1jmUZxL6xQGQW8w

Score

N/A

Malware Config

Signatures

Files

6fab6dbc2075b94e1340606916180b2910dd6eff0e7657e4d34ac861c77b005e
.exe windows x86

68b017526ebaa37b935879a65158d57b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
WaitForSingleObject
GetVersion
SetEvent
DeviceIoControl
CreateEventA
CreateThread
LoadLibraryA
CreateFileA
WaitForMultipleObjects
SetThreadPriority
SetPriorityClass
GetThreadPriority
GetPriorityClass
GetCurrentThread
GetCurrentProcess
CloseHandle
GetTickCount
Sleep
FreeLibrary
FlushFileBuffers
GetStringTypeW
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
TerminateProcess
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
ExitProcess
GetCommandLineA
GetStdHandle
GetModuleHandleA
HeapFree
HeapAlloc
GetFileType
RtlUnwind
WriteFile
GetLastError
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
GetProcAddress
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA

user32

EndPaint
TranslateMessage
TranslateAcceleratorA
GetMessageA
SendMessageA
FindWindowA
GetWindowLongA
SetWindowLongA
MessageBeep
GetDlgItem
SetWindowTextA
GetForegroundWindow
MessageBoxA
SetForegroundWindow
EndDialog
SetTimer
BeginPaint
DispatchMessageA
PostQuitMessage
DefWindowProcA
DestroyWindow
DialogBoxParamA
KillTimer
ShowWindow
CreatePopupMenu
AppendMenuA
GetCursorPos
TrackPopupMenuEx
DestroyMenu
UpdateWindow
PostMessageA
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassExA
LoadAcceleratorsA

advapi32

RegQueryValueExA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA

shell32

Shell_NotifyIconA

winmm

waveInStart
waveInOpen
waveInReset
waveInPrepareHeader
waveInAddBuffer
waveOutRestart
waveInUnprepareHeader
waveOutWrite
waveOutOpen
waveOutReset
waveOutUnprepareHeader
waveOutClose
waveOutPrepareHeader
waveInClose

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tc
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

68b017526ebaa37b935879a65158d57b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

winmm

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 52KB

.rsrc Size: 8KB - Virtual size: 4KB

.tc Size: 200KB - Virtual size: 200KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 52KB

.rsrc
Size: 8KB - Virtual size: 4KB

.tc
Size: 200KB - Virtual size: 200KB