1e56ec7b355059f07864b831c01b4e870f25c8f3c6dbb9fcf3f1990298bd1ac9

Sharing

Copy URL Twitter E-mail

General

Target

1e56ec7b355059f07864b831c01b4e870f25c8f3c6dbb9fcf3f1990298bd1ac9
Size

264KB
MD5

fdba881ff381179884bdeb30386d135d
SHA1

df11cd65ede073fcc3466eaa0c5f779dba1ea545
SHA256

1e56ec7b355059f07864b831c01b4e870f25c8f3c6dbb9fcf3f1990298bd1ac9
SHA512

9c28807159a3590a9e0e1e1fbf4d15f4b424ec5eda05488869ec3894f1fe2fa613c60e7a1258395c89c387452fe9bf633863bfe7965e594921526870b97d01ff
SSDEEP

6144:CsWhDg80Ouo+EEDx7uXJ7FCV43K1Dug0:C9DHr6XcFV3mu

Score

N/A

Malware Config

Signatures

Files

1e56ec7b355059f07864b831c01b4e870f25c8f3c6dbb9fcf3f1990298bd1ac9
.dll windows x86

81dd4db2e5035e56760e427892909d35

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

DrawDibDraw
DrawDibClose
DrawDibOpen

avifil32

AVIStreamGetFrame
AVIStreamGetFrameClose
AVIStreamOpenFromFileA
AVIStreamGetFrameOpen
AVIStreamLength
AVIStreamStart
AVIStreamSampleToTime
AVIStreamInfoA
AVIFileExit
AVIFileInit
AVIStreamRelease

kernel32

GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
SetHandleCount
GetStdHandle
LCMapStringW
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
LCMapStringA
GetTimeZoneInformation
GetACP
HeapSize
ExitThread
CreateThread
TerminateProcess
ExitProcess
RaiseException
GetCommandLineA
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetFileTime
GetFileSize
GetFileAttributesA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
OpenFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
SuspendThread
SetThreadPriority
ResumeThread
WaitForSingleObject
lstrcmpA
GetCurrentThread
lstrcpynA
GetLastError
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
MulDiv
SetLastError
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalReAlloc
CreateEventA
GetProcAddress
ResetEvent
SetEvent
CloseHandle
FreeLibrary
LoadLibraryA
lstrlenA
GlobalAlloc
lstrcpyA
GlobalUnlock
HeapFree
HeapReAlloc
GetProcessHeap
HeapAlloc
GlobalSize
GlobalLock
GlobalFree
GetModuleFileNameA
GetFileType

user32

TabbedTextOutA
DrawTextA
GrayStringA
CreateDialogIndirectParamA
EndDialog
PostQuitMessage
ValidateRect
TranslateMessage
CharUpperA
UnregisterClassA
GetClassNameA
PtInRect
GetSysColorBrush
DestroyMenu
LoadStringA
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
LoadIconA
PostMessageA
SendDlgItemMessageA
MapWindowPoints
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
IsWindowVisible
EndPaint
GetTopWindow
MessageBoxA
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
SetWindowLongA
SetCursor
GetCapture
SetCapture
UpdateWindow
GetCursorPos
GetMessageA
DispatchMessageA
ReleaseCapture
IsRectEmpty
LoadCursorA
OemToCharA
CharToOemA
MsgWaitForMultipleObjects
PeekMessageA
DrawStateA
CopyRect
FrameRect
InflateRect
GetSysColor
DrawFocusRect
ClientToScreen
WindowFromPoint
GetActiveWindow
GetNextDlgTabItem
GetWindowLongA
DestroyIcon
SendMessageA
EnableWindow
FillRect
KillTimer
BeginPaint
ReleaseDC
GetDC
GetMenuCheckMarkDimensions
InvalidateRect
SetTimer
IsWindow
GetClientRect
GetWindowRect
GetParent
OffsetRect
DestroyWindow

gdi32

SetWindowExtEx
ScaleWindowExtEx
MoveToEx
LineTo
GetDeviceCaps
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetClipBox
CreateFontIndirectA
PatBlt
CreatePen
RoundRect
GetObjectA
SetBkColor
SetTextColor
GetStockObject
SelectObject
GetPixel
DeleteDC
DeleteObject
CreateBitmap
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap

comdlg32

GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegQueryValueExA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegOpenKeyA
RegEnumKeyA

shell32

ExtractIconA

comctl32

ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_GetImageCount
ImageList_Remove
ImageList_Draw
ImageList_GetImageInfo
ImageList_AddMasked
_TrackMouseEvent
ord17
ImageList_Destroy
ImageList_Create
ImageList_Read
ImageList_Write
ImageList_Duplicate
ImageList_SetBkColor

ole32

OleUninitialize
OleInitialize

winmm

PlaySoundA

Exports

Exports

GetNewInf

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81dd4db2e5035e56760e427892909d35

Headers

File Characteristics

Imports

msvfw32

avifil32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

winmm

Exports

Exports

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 36KB - Virtual size: 32KB

.data Size: 36KB - Virtual size: 97KB

.rsrc Size: 20KB - Virtual size: 19KB

.reloc Size: 24KB - Virtual size: 23KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 36KB - Virtual size: 32KB

.data
Size: 36KB - Virtual size: 97KB

.rsrc
Size: 20KB - Virtual size: 19KB

.reloc
Size: 24KB - Virtual size: 23KB