e5578203d9694b291ef324434ba53ef6539bdc14befe2eacf4e6e8a37aaa2816

Sharing

Copy URL Twitter E-mail

General

Target

e5578203d9694b291ef324434ba53ef6539bdc14befe2eacf4e6e8a37aaa2816
Size

1.3MB
MD5

d67ba1a6b007e4e4c1be9c2347b2f9d8
SHA1

a94b3e7cac1781151f7e5836e682794f8a450b45
SHA256

e5578203d9694b291ef324434ba53ef6539bdc14befe2eacf4e6e8a37aaa2816
SHA512

63b0dbabd4a529f94dd511d49060fafad996f4d7f8a4cad577c146a4e4d39cff5cfa9ccc31ccd7d920a51e5c439ebf8f2828a50612a959753e103b81b36782df
SSDEEP

12288:lazndMVZlbaX92v0Na5nHzEjStR8JJkQlGD2veIngsiuxC:lazndMV7gMIa5nTEPJJkQgceInQ

Score

N/A

Malware Config

Signatures

Files

e5578203d9694b291ef324434ba53ef6539bdc14befe2eacf4e6e8a37aaa2816
.exe windows x86

2f9541ea9da1d0a55d60bb37da06879f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreate

dsound

DirectSoundCreate

kernel32

GetCommandLineA
RtlUnwind
GetModuleHandleA
GetStartupInfoA
IsBadCodePtr
IsBadReadPtr
GetEnvironmentStringsW
GetEnvironmentStringsA
WideCharToMultiByte
DeleteFileW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
SetFilePointer
GetProcAddress
ReadFile
WriteFile
FindCloseChangeNotification
GetLastError
HeapSize
GetCurrentProcess
TerminateProcess
RaiseException
CompareStringW
LCMapStringA
SetEndOfFile
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
CreateIoCompletionPort
GetStringTypeA
CreateFileA
FlushFileBuffers
SetStdHandle
MultiByteToWideChar
IsBadWritePtr
HeapReAlloc
SetUnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
HeapAlloc
GetWindowsDirectoryA
HeapFree
ExitProcess
VirtualFree
GetVersion
HeapCreate
HeapDestroy
VirtualAlloc

user32

WaitMessage
ShowCursor
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
DestroyWindow
PostMessageA
PostQuitMessage
DefWindowProcA
LoadIconA
LoadCursorA
RegisterClassExA
GetSystemMetrics
CreateWindowExA
MessageBoxA
ShowWindow
UpdateWindow
SetFocus

winmm

timeKillEvent
timeGetDevCaps
timeSetEvent
timeBeginPeriod

binkw32

_BinkClose@4
_BinkWait@4
_BinkOpenDirectSound@4
_BinkSetSoundSystem@8
_BinkNextFrame@4
_BinkDoFrame@4
_BinkCopyToBuffer@28
_BinkOpen@8
_BinkBufferOpen@16

fmod

_FSOUND_Init@12
_FSOUND_Stream_Play@8
_FSOUND_Stream_OpenFile@12
_FSOUND_Stream_Close@4
_FSOUND_Close@0

Sections

.text
Size: 309KB - Virtual size: 309KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

codeseg
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

datasg
Size: 34B - Virtual size: 34B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.STEntry
Size: 651KB - Virtual size: 651KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.esper
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

IMP
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2f9541ea9da1d0a55d60bb37da06879f

Headers

File Characteristics

Imports

ddraw

dsound

kernel32

user32

winmm

binkw32

fmod

Sections

.text Size: 309KB - Virtual size: 309KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 273KB - Virtual size: 273KB

codeseg Size: 7KB - Virtual size: 7KB

datasg Size: 34B - Virtual size: 34B

.rsrc Size: 3KB - Virtual size: 3KB

.STEntry Size: 651KB - Virtual size: 651KB

.esper Size: 1KB - Virtual size: 1KB

IMP Size: 4KB - Virtual size: 4KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 309KB - Virtual size: 309KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 273KB - Virtual size: 273KB

codeseg
Size: 7KB - Virtual size: 7KB

datasg
Size: 34B - Virtual size: 34B

.rsrc
Size: 3KB - Virtual size: 3KB

.STEntry
Size: 651KB - Virtual size: 651KB

.esper
Size: 1KB - Virtual size: 1KB

IMP
Size: 4KB - Virtual size: 4KB

.rmnet
Size: 60KB - Virtual size: 60KB