a18444939f74d79afc94e47e4252311756ec7e80f894d9ad8348c4e6152a12b0

Sharing

Copy URL Twitter E-mail

General

Target

a18444939f74d79afc94e47e4252311756ec7e80f894d9ad8348c4e6152a12b0
Size

147KB
MD5

e054d772606b920dd53143ed061e3476
SHA1

0b563cfdee15267c7fb3bcc79e28dfa3fbcb9af8
SHA256

a18444939f74d79afc94e47e4252311756ec7e80f894d9ad8348c4e6152a12b0
SHA512

a610e12ca02e0bca964795b6586e443b60b59692eb5b3a3ec38c3be06626911f1f51f0e2131da5340c08967ea15fa0f1892dc297e5a80e7f4f5042d1da113c6b
SSDEEP

3072:GLE0Rhh18bolkd8/E06iqaWXf/AWSQMAQWY2yQnT4xMoCL6:6fgd88WzWv/AHFP2yMO

Score

N/A

Malware Config

Signatures

Files

a18444939f74d79afc94e47e4252311756ec7e80f894d9ad8348c4e6152a12b0
.exe windows x86

68b017526ebaa37b935879a65158d57b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
WaitForSingleObject
GetVersion
SetEvent
DeviceIoControl
CreateEventA
CreateThread
LoadLibraryA
CreateFileA
WaitForMultipleObjects
SetThreadPriority
SetPriorityClass
GetThreadPriority
GetPriorityClass
GetCurrentThread
GetCurrentProcess
CloseHandle
GetTickCount
Sleep
FreeLibrary
FlushFileBuffers
GetStringTypeW
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
TerminateProcess
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
ExitProcess
GetCommandLineA
GetStdHandle
GetModuleHandleA
HeapFree
HeapAlloc
GetFileType
RtlUnwind
WriteFile
GetLastError
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
GetProcAddress
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA

user32

EndPaint
TranslateMessage
TranslateAcceleratorA
GetMessageA
SendMessageA
FindWindowA
GetWindowLongA
SetWindowLongA
MessageBeep
GetDlgItem
SetWindowTextA
GetForegroundWindow
MessageBoxA
SetForegroundWindow
EndDialog
SetTimer
BeginPaint
DispatchMessageA
PostQuitMessage
DefWindowProcA
DestroyWindow
DialogBoxParamA
KillTimer
ShowWindow
CreatePopupMenu
AppendMenuA
GetCursorPos
TrackPopupMenuEx
DestroyMenu
UpdateWindow
PostMessageA
CreateWindowExA
LoadIconA
LoadCursorA
RegisterClassExA
LoadAcceleratorsA

advapi32

RegQueryValueExA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA

shell32

Shell_NotifyIconA

winmm

waveInStart
waveInOpen
waveInReset
waveInPrepareHeader
waveInAddBuffer
waveOutRestart
waveInUnprepareHeader
waveOutWrite
waveOutOpen
waveOutReset
waveOutUnprepareHeader
waveOutClose
waveOutPrepareHeader
waveInClose

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.grdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

68b017526ebaa37b935879a65158d57b

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

winmm

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 52KB

.rsrc Size: 8KB - Virtual size: 4KB

.grdata Size: 60KB - Virtual size: 60KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 52KB

.rsrc
Size: 8KB - Virtual size: 4KB

.grdata
Size: 60KB - Virtual size: 60KB