ba6d907da76621fa1c076651c7e5fddd487e8587a14319f69a85043ae53516e6

Sharing

Copy URL

Twitter E-mail

General

Target

ba6d907da76621fa1c076651c7e5fddd487e8587a14319f69a85043ae53516e6
Size

1.1MB
MD5

6616019ee6d3db3e1777ecda717a5b53
SHA1

2d03284384d7c30660b787a2f744f6fbd8e8936c
SHA256

ba6d907da76621fa1c076651c7e5fddd487e8587a14319f69a85043ae53516e6
SHA512

f70eaf81a88eba5d60aa4a84020226aa4a1ea38332b821faceee2e5aca7a2a4616742cab370a600829ffc677d24dc8682f7f9f3276354d8f18a129e105136da7
SSDEEP

24576:bagexW+7fk6fDGApN/IFWhFWyFhF4OFhF41mSO:biZfiGUWzWgz4sz41mX

Score

N/A

Malware Config

Signatures

Files

ba6d907da76621fa1c076651c7e5fddd487e8587a14319f69a85043ae53516e6
.dll regsvr32 windows x86

450b1eca3573decc5c1bf85f3f2d4a1a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

?terminate@@YAXXZ
??2@YAPAXI@Z
__CxxFrameHandler
sprintf
_vsnprintf
strncpy
wcsstr
wcscmp
_ftol
_CxxThrowException
atol
time
_purecall
memmove
_wcslwr
strncmp
??1type_info@@UAE@XZ
free
_initterm
malloc
_adjust_fdiv
__dllonexit
_onexit
_errno
??3@YAXPAX@Z
printf
_except_handler3
calloc
_CIpow
_setjmp3
atoi
exit
fopen
longjmp
fclose
ceil
fscanf
strstr
rand
srand
swprintf
wcslen
_stat
wcsncmp
_mbsrchr
_mbsnbcat
_mbsnbcpy
atof
_strupr

winmm

waveOutOpen
timeGetTime
mixerGetDevCapsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerSetControlDetails
mixerGetNumDevs
mixerOpen
mixerClose
mixerGetControlDetailsA

kernel32

GetVolumeInformationA
GetFileTime
GetProcAddress
LoadLibraryA
CloseHandle
FreeLibrary
WaitForSingleObject
LeaveCriticalSection
EnterCriticalSection
MulDiv
Sleep
OpenMutexA
GetVersionExA
GetCurrentProcessId
GetEnvironmentVariableA
ExitProcess
CreateFileA
lstrcatA
lstrcpyA
InterlockedIncrement
InterlockedDecrement
DeleteCriticalSection
GetCurrentProcess
GetCurrentThreadId
WaitForMultipleObjects
CreateSemaphoreA
ReleaseSemaphore
lstrlenA
MultiByteToWideChar
GetLastError
GetModuleFileNameA
DisableThreadLibraryCalls
InterlockedExchange
SetErrorMode
ReleaseMutex
SetEnvironmentVariableA
SetProcessAffinityMask
GetProcessAffinityMask
UnmapViewOfFile
MapViewOfFile
GetSystemDirectoryA
GetTimeZoneInformation
OutputDebugStringA
CreateMutexA
CreateFileMappingA
InitializeCriticalSection

advapi32

RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegSetValueA
RegCreateKeyA
RegQueryValueExA
RegCloseKey

user32

InvalidateRect
ShowWindow
DestroyWindow
MoveWindow
LoadStringA
SetDlgItemTextA
GetDlgItem
CreateDialogParamA
SendMessageA
wsprintfA
CheckRadioButton
EnableWindow
LoadBitmapA
GetWindowLongA
GetClientRect
GetDesktopWindow
GetWindowRect
LoadStringW
MessageBoxA
PostMessageA
GetSystemMetrics
SetWindowLongA

gdi32

GetObjectA
SelectObject
StretchBlt
DeleteObject
SetBkMode
CreateCompatibleDC
DeleteDC
GetStockObject

ole32

GetRunningObjectTable
CreateItemMoniker
CoCreateInstance
StringFromGUID2
CoTaskMemAlloc
CoUninitialize
CoFreeUnusedLibraries
CoInitialize
CoTaskMemFree

dsound

ord1

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 516KB - Virtual size: 514KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 180KB - Virtual size: 551KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

450b1eca3573decc5c1bf85f3f2d4a1a

Headers

File Characteristics

Imports

msvcrt

winmm

kernel32

advapi32

user32

gdi32

ole32

dsound

Exports

Exports

Sections

.text Size: 516KB - Virtual size: 514KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 180KB - Virtual size: 551KB

.rsrc Size: 112KB - Virtual size: 108KB

.reloc Size: 44KB - Virtual size: 41KB

.text
Size: 516KB - Virtual size: 514KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 180KB - Virtual size: 551KB

.rsrc
Size: 112KB - Virtual size: 108KB

.reloc
Size: 44KB - Virtual size: 41KB