2734d4fd827ee7e95460fce2212293c4001f5a7376015c380198932c1bf8e3e9

General

Target

2734d4fd827ee7e95460fce2212293c4001f5a7376015c380198932c1bf8e3e9
Size

49KB
MD5

d1cf45bb4e8009c7d1ee98b02a8b07c7
SHA1

ae469bb48984785ecafbc004c4b857c1589dd5b9
SHA256

2734d4fd827ee7e95460fce2212293c4001f5a7376015c380198932c1bf8e3e9
SHA512

74c929ba7b3899fdd84f4706fbbd5841ccb1e17f1a971ea67fab197b308eff48ea893713b458fdb214dfd13c49e71a2334b05adb1a52db959ff3bd5e894428b1
SSDEEP

1536:2bhTyzzzzzzzzzzzzzzzzzzzzzzzzzzzz2C7dF/:cyzzzzzzzzzzzzzzzzzzzzzzzzzzzz7

Score

N/A

Malware Config

Signatures

Files

2734d4fd827ee7e95460fce2212293c4001f5a7376015c380198932c1bf8e3e9
.exe windows x86

b79e28a9e76fdfd19e52f248dba39721

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

mssign32

PvkPrivateKeyLoad
PvkPrivateKeyLoad

mtxoci

MTxOciInit
MTxOciInit

msoert2

CreateLogFile
CreateLogFile

nddeapi

NDdeGetTrustedShareA
NDdeGetTrustedShareA

dciman32

DCICreateOverlay

kernel32

ReplaceFileA
GetACP
RtlMoveMemory
SetComputerNameA
QueryDosDeviceA
CreateJobObjectW
ReadConsoleOutputW
RegisterWowExec
Beep
_lopen
GetProfileIntW
TerminateProcess
TerminateProcess
GetSystemDirectoryA
ReadFile

winmm

mciSendCommandA
mciSendCommandW
mciSendStringA
mciSendStringW
mciSetDriverData
mciSetYieldProc
mid32Message
midiConnect
midiDisconnect
midiInAddBuffer
midiInClose
midiInGetDevCapsA
midiInGetDevCapsW
midiInGetErrorTextA
midiInGetErrorTextW
midiInGetID
midiInGetNumDevs
midiInMessage
midiInOpen
midiInPrepareHeader
midiInReset
midiInStart
midiInStop
midiInUnprepareHeader
midiOutCacheDrumPatches

Sections

.text
Size: 2KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.neolit
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b79e28a9e76fdfd19e52f248dba39721

Headers

File Characteristics

Imports

mssign32

mtxoci

msoert2

nddeapi

dciman32

kernel32

winmm

Sections

.text Size: 2KB - Virtual size: 34KB

.data Size: 7KB - Virtual size: 70KB

.neolit Size: 34KB - Virtual size: 36KB

.rdata Size: 2KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 34KB

.data
Size: 7KB - Virtual size: 70KB

.neolit
Size: 34KB - Virtual size: 36KB

.rdata
Size: 2KB - Virtual size: 2KB