4017c8c97a48dce3a2618115841f48a01e50e09f54f97e363bc7d6a9f7b7ae5a

Sharing

Copy URL

Twitter E-mail

General

Target

4017c8c97a48dce3a2618115841f48a01e50e09f54f97e363bc7d6a9f7b7ae5a
Size

796KB
MD5

46b5e1379904504d9b5802b47dc658eb
SHA1

4084590141f185e4394200ab4036f036e80fd20e
SHA256

4017c8c97a48dce3a2618115841f48a01e50e09f54f97e363bc7d6a9f7b7ae5a
SHA512

45f1930885666056d5262d03c2b6cc251fd4489979e785fc0c1ef9e50ec1c7764220a4a81acc008fb005e78b667e2897ec5480ccd9e78c3358da26a664196682
SSDEEP

12288:O7tdNvcfzY8B4L6CeHhpQzS2KRWC6/7+hhVp0RsamYkzuKD/9WVuVO+3pJsbIPvm:O7tdZGwRsamY0Rp4+3gkF7IiCe43e32

Score

N/A

Malware Config

Signatures

Files

4017c8c97a48dce3a2618115841f48a01e50e09f54f97e363bc7d6a9f7b7ae5a
.dll windows x86

5966c77d9d0764e036fff45f32a30536

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitializeEx
CoUninitialize

winmm

waveOutGetDevCapsA
waveOutOpen
timeSetEvent
waveOutPrepareHeader
waveOutWrite
timeKillEvent
waveOutReset
waveOutUnprepareHeader
waveOutClose
timeGetDevCaps
timeBeginPeriod
timeGetTime
timeEndPeriod

user32

PeekMessageA
DispatchMessageA
GetMessageA
PostMessageA
PostThreadMessageA
LoadCursorA
SetCursor
MapWindowPoints
GetKeyState
GetClipboardData
OpenClipboard
SetClipboardData
CloseClipboard
GetDC
ReleaseDC

kernel32

GlobalFree
GlobalUnlock
QueryPerformanceCounter
GlobalLock
GlobalAlloc
GetACP
GetCurrentThreadId
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
Sleep
GetCPInfo
IsDBCSLeadByte
GetCurrentProcessId
GetTickCount
QueryPerformanceFrequency
SuspendThread
ResumeThread
SetThreadPriority
GetThreadPriority
CloseHandle
WaitForSingleObject
GetLastError
DeleteCriticalSection
SetEvent
ResetEvent
CreateEventA
ExitProcess
GetSystemTimeAsFileTime

gdi32

SetBkMode
GetSystemPaletteEntries
StretchBlt
SelectPalette
RealizePalette
SaveDC
IntersectClipRect
SetTextAlign
RestoreDC
CreateFontIndirectA
GetTextMetricsA
SetTextColor
CreateSolidBrush
GetStockObject
Rectangle
CreatePen
GetTextExtentPoint32A
ExtTextOutA
GetBkMode
GetBkColor
SetBkColor
MoveToEx
LineTo
EnumFontFamiliesA
CreatePalette
CreateCompatibleDC
GetDeviceCaps
CreateDIBSection
DeleteDC
CreateCompatibleBitmap
GdiFlush
SetDIBitsToDevice
StretchDIBits
SelectObject
DeleteObject

msvcr71

isspace
__CxxFrameHandler
sscanf
calloc
strtol
iscntrl
__dllonexit
isupper
_initterm
_adjust_fdiv
__CppXcptFilter
_except_handler3
__security_error_handler
??1type_info@@UAE@XZ
?terminate@@YAXXZ
tolower
_beginthreadex
getenv
_onexit
_putenv
_strcmpi
??3@YAXPAX@Z
??2@YAPAXI@Z
free
malloc
memmove
frexp
strchr
_purecall
_vsnprintf
atoi
atol
rand
srand
time
??_V@YAXPAX@Z
sprintf
??_U@YAPAXI@Z
_strnicmp
strncpy
strrchr
strstr
_CIpow
??0exception@@QAE@XZ
??1exception@@UAE@XZ
??0exception@@QAE@ABV0@@Z
_CxxThrowException
_stricmp

msvcp71

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

Exports

Exports

CanUnload2
RMACreateInstance

Sections

.text
Size: 296KB - Virtual size: 293KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 244KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5966c77d9d0764e036fff45f32a30536

Headers

File Characteristics

Imports

ole32

winmm

user32

kernel32

gdi32

msvcr71

msvcp71

Exports

Exports

Sections

.text Size: 296KB - Virtual size: 293KB

.rdata Size: 56KB - Virtual size: 52KB

.data Size: 244KB - Virtual size: 244KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 12KB - Virtual size: 10KB

.text Size: 180KB - Virtual size: 180KB

.text
Size: 296KB - Virtual size: 293KB

.rdata
Size: 56KB - Virtual size: 52KB

.data
Size: 244KB - Virtual size: 244KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 12KB - Virtual size: 10KB

.text
Size: 180KB - Virtual size: 180KB