fdc0cd63305bc96198a6cc941f623008fa778b62cf48963cfc1cd94eacd03764

Sharing

Copy URL Twitter E-mail

General

Target

fdc0cd63305bc96198a6cc941f623008fa778b62cf48963cfc1cd94eacd03764
Size

360KB
MD5

d3c2de65986211bd2790119140a5b1e7
SHA1

81a013721e8a48c60ed0143cac5e7f357630a4e0
SHA256

fdc0cd63305bc96198a6cc941f623008fa778b62cf48963cfc1cd94eacd03764
SHA512

4191b93057c2adc1f2648830fe7953f1544cfe791a599b94f27598054b3dddc5e8f2a8417f25d5308848c66927154304098d21dc90171391a32b1a591587c30a
SSDEEP

6144:yI0qN9silBEmXmP5RJS7PC1cdEnci/U4cSSYfNAy9f+0V1PWzEA7qJaF:y2MEim2qPC8wNQSSYfOsW0LUmJaF

Score

N/A

Malware Config

Signatures

Files

fdc0cd63305bc96198a6cc941f623008fa778b62cf48963cfc1cd94eacd03764
.exe windows x86

3021a3c4782a3a1afbb71d2e6f30cc14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA
timeGetTime
waveOutGetNumDevs
joyGetNumDevs
waveOutGetDevCapsA

kernel32

SetEvent
WritePrivateProfileStringA
lstrcmpA
lstrcpyA
Sleep
RemoveDirectoryA
DeleteFileA
lstrlenA
GetPrivateProfileStringA
CreateFileA
GetFileSize
ReadFile
SetThreadPriority
CreateMutexA
CreateEventA
CloseHandle
FindNextFileA
SetFileAttributesA
CreateProcessA
GetExitCodeProcess
ResetEvent
FreeLibrary
GetLastError
FormatMessageA
GetVersionExA
GetCurrentThread
LocalAlloc
LocalLock
LocalUnlock
LocalFree
GetCurrentDirectoryA
SetCurrentDirectoryA
SetErrorMode
GetFileAttributesA
lstrcatA
FindFirstFileA
FindClose
lstrcpynA
WaitForSingleObject
ReleaseMutex
GetSystemDirectoryA
_lwrite
HeapFree
MulDiv
CompareStringA
CreateDirectoryA
FlushFileBuffers
LCMapStringW
GetStringTypeW
GetStringTypeA
LCMapStringA
InterlockedIncrement
InterlockedDecrement
GetFullPathNameA
SetStdHandle
GetStdHandle
SetEndOfFile
GetOEMCP
GetACP
SetHandleCount
WideCharToMultiByte
GetEnvironmentStringsW
GetCPInfo
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetEnvironmentStrings
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
SetLastError
TlsGetValue
VirtualAlloc
TlsAlloc
EnterCriticalSection
DeleteCriticalSection
LeaveCriticalSection
VirtualFree
HeapCreate
InitializeCriticalSection
OutputDebugStringA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileType
GetTempPathA
ExitProcess
TlsSetValue
GetVersion
GetCommandLineA
GetLocaleInfoW
SetEnvironmentVariableA
GlobalFree
GlobalUnlock
GlobalHandle
GetWindowsDirectoryA
GlobalLock
GlobalAlloc
CompareStringW
GetDiskFreeSpaceA
LockResource
LoadResource
FindResourceA
lstrcmpiA
GetModuleFileNameA
GlobalMemoryStatus
GetSystemInfo
OpenFile
_hread
_lclose
_llseek
GetDriveTypeA
LoadLibraryA
GetLocaleInfoA
GetUserDefaultLCID
GetProcAddress
GetSystemDefaultLangID
GetLocalTime
GetCurrentThreadId
GetCurrentProcess
GetStartupInfoA
GetShortPathNameA
GetExitCodeThread
ResumeThread
CreateThread
GetThreadPriority
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
SetFilePointer
ExitThread
WinExec
GetModuleHandleA
MoveFileExA
GetTempFileNameA
SetPriorityClass
WriteFile
SetFileTime
DosDateTimeToFileTime
CopyFileA
LocalFileTimeToFileTime
MultiByteToWideChar
_lcreat
HeapDestroy
HeapReAlloc
HeapAlloc
GetTimeZoneInformation
GetSystemTime

user32

GetForegroundWindow
GetSystemMetrics
ShowWindow
SetForegroundWindow
IsWindowVisible
LoadIconA
CreateWindowExA
RegisterClassA
IsWindow
IsIconic
FlashWindow
DispatchMessageA
SetCursor
LoadCursorA
UnregisterClassA
TranslateMessage
PeekMessageA
GetWindowRect
DestroyWindow
MoveWindow
GetUpdateRect
GetDesktopWindow
RedrawWindow
GetWindowLongA
EnableMenuItem
GetAsyncKeyState
PostQuitMessage
EndPaint
BeginPaint
KillTimer
SetWindowLongA
SetTimer
GetCursorPos
GetParent
LoadImageA
DefWindowProcA
GetMessageA
DrawTextA
MsgWaitForMultipleObjects
GrayStringA
GetClientRect
MessageBoxA
InvalidateRect
UpdateWindow
SetWindowPos
CharUpperA
CharPrevA
EnumDisplaySettingsA
wvsprintfA
CreateDialogParamA
TabbedTextOutA
CharToOemBuffA
GetDlgItem
GetSystemMenu
IsDialogMessageA
CharLowerA
ExitWindowsEx
EnumWindows
FindWindowExA
GetWindowTextA
MessageBeep
EnableWindow
ReleaseDC
CharNextA
SetWindowTextA
LoadStringA
FindWindowA
wsprintfA
SendMessageA
GetDC
CallWindowProcA
PostMessageA
SetFocus
GetSysColor

gdi32

RealizePalette
CreateFontIndirectA
CreateDCA
BitBlt
SelectObject
SetMapMode
GetMapMode
CreateCompatibleDC
DeleteDC
DeleteObject
ExtTextOutA
SetTextColor
SetBkColor
GetTextExtentPoint32A
GetPixel
GetDeviceCaps
GetObjectA
SetBkMode
GetStockObject
CreateDIBSection
GetDIBColorTable
GetSystemPaletteEntries
CreatePalette
CreateFontA
GetTextMetricsA
RemoveFontResourceA
StartDocA
SetAbortProc
StartPage
GdiFlush
SelectPalette
AddFontResourceA
EndPage
EndDoc

advapi32

RegDeleteValueA
OpenProcessToken
LookupPrivilegeValueA
RegQueryValueExA
RegOpenKeyA
RegEnumKeyExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
AdjustTokenPrivileges
RegOpenKeyExA
CloseServiceHandle
OpenSCManagerA
RegQueryInfoKeyA

shell32

SHGetSpecialFolderLocation
SHChangeNotify
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHGetMalloc

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerLanguageNameA
VerQueryValueA

comdlg32

PrintDlgA

ole32

CoUninitialize
OleInitialize
OleUninitialize
CoCreateInstance
CoInitialize

lz32

LZOpenFileA
LZClose
LZCopy

Exports

Exports

_AbortDlgProc@16
_AbortProc@8
_CopyFileFn@4
_DeleteFileFn@4
_DetectDirectX@8
_GetGroupFn@4
_InstIconFn@4
_MkRootFn@4
_QueryDirectPlay@8
_QueryDirectX@8
_RunRegWizFn@0

Sections

.text
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3021a3c4782a3a1afbb71d2e6f30cc14

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

advapi32

shell32

version

comdlg32

ole32

lz32

Exports

Exports

Sections

.text Size: 173KB - Virtual size: 172KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 17KB - Virtual size: 43KB

.idata Size: 8KB - Virtual size: 7KB

.rsrc Size: 156KB - Virtual size: 156KB

.text
Size: 173KB - Virtual size: 172KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 17KB - Virtual size: 43KB

.idata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 156KB - Virtual size: 156KB