07b75129e40fecf36dd470a1b6af9952fe09b70384e337cef27701eacc4a28ee

Sharing

Copy URL

Twitter E-mail

General

Target

07b75129e40fecf36dd470a1b6af9952fe09b70384e337cef27701eacc4a28ee
Size

6.6MB
MD5

33b7c3d7f69a2180b342da8de2ceb82b
SHA1

f4dc7b63c8e806a9ddb32596445b383615b2eb3d
SHA256

07b75129e40fecf36dd470a1b6af9952fe09b70384e337cef27701eacc4a28ee
SHA512

820d88d441461608746ea244a96697af665de2f74061602ebed10de124c0672b69f1b6f0fcb2ad68121b461beebf012c753133829b2e85063457d8b3e918086f
SSDEEP

98304:qR4/EKnThfXw2ovTGLANj7OUTQAb9n8vjtpr9XlVGQeLwAVD0Pr8asN9bFSfhcCn:INjSUTQAbUSQS05A52o

Score

N/A

Malware Config

Signatures

Files

07b75129e40fecf36dd470a1b6af9952fe09b70384e337cef27701eacc4a28ee
.exe windows x86

80de47344f53efaeba0d21e35a033fb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

closesocket
connect
ioctlsocket
htons
socket
gethostbyname
gethostname
getsockname
inet_addr

kernel32

CompareStringA
TlsGetValue
UnhandledExceptionFilter
SetEndOfFile
SetStdHandle
GetStdHandle
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
OutputDebugStringA
GlobalMemoryStatus
MultiByteToWideChar
CloseHandle
CreateFileA
GetFileSize
SetFilePointer
ReadFile
WriteFile
CreateEventA
SetEvent
WaitForSingleObject
Sleep
CreateThread
ReleaseMutex
GetLastError
CreateMutexA
GetModuleFileNameA
CreateProcessA
IsValidCodePage
IsValidLocale
ExitProcess
GetLocaleInfoA
FindFirstFileA
GetDriveTypeA
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
InterlockedIncrement
InterlockedDecrement
DeleteFileA
MoveFileA
IsBadReadPtr
RaiseException
RtlUnwind
GetVersion
GetCurrentThreadId
VirtualQueryEx
GetCurrentProcess
OpenProcess
CreateFileMappingA
OpenFileMappingA
MapViewOfFile
UnmapViewOfFile
MapViewOfFileEx
OpenMutexA
IsBadCodePtr
GetSystemInfo
VirtualFree
VirtualAlloc
VirtualLock
VirtualQuery
HeapFree
GetProcessHeap
HeapAlloc
FindNextFileA
SetHandleCount
LCMapStringW
LCMapStringA
WideCharToMultiByte
FlushFileBuffers
GetProcAddress
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
SetLastError
TlsAlloc
GetModuleHandleA
InterlockedExchange
CompareStringW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
TlsSetValue
GetFileType
GetCommandLineA
TerminateProcess
FileTimeToSystemTime
GetStartupInfoA
GetVersionExA
GetEnvironmentVariableA
GetCPInfo
GetStringTypeW
GetEnvironmentStringsW
GetStringTypeA
IsBadWritePtr
HeapCreate
HeapDestroy
LoadLibraryA
GetOEMCP
GetEnvironmentStrings
GetLocaleInfoW
EnumSystemLocalesA
GetUserDefaultLCID
GetACP
FileTimeToLocalFileTime

user32

MessageBeep
ReleaseDC
GetKeyState
MessageBoxA
SetWindowLongA
AdjustWindowRectEx
GetSystemMetrics
MoveWindow
PostQuitMessage
ClientToScreen
GetClientRect
BeginPaint
EndPaint
GetWindowRect
WindowFromPoint
SetCapture
ReleaseCapture
DefWindowProcA
LoadImageA
LoadCursorA
LoadIconA
RegisterClassExA
CreateWindowExA
LoadAcceleratorsA
GetCursorPos
ShowWindow
UpdateWindow
DestroyWindow
EnableMenuItem
CheckMenuItem
GetMenu
LoadMenuA
SetMenu
DestroyMenu
SetActiveWindow
TranslateMessage
GetActiveWindow
TranslateAcceleratorA
DispatchMessageA
PeekMessageA
MsgWaitForMultipleObjects
GetDC

gdi32

CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
CreateDIBSection
DeleteObject

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

ole32

CoInitializeEx
CoCreateInstance

ddraw

DirectDrawCreateEx

winmm

timeBeginPeriod
timeGetTime
timeEndPeriod

dsound

ord1

binkw32

_BinkDoFrame@4
_BinkOpenDirectSound@4
_BinkSetSoundSystem@8
_BinkSetSoundTrack@4
_BinkOpen@8
_BinkSetVolume@8
_BinkCopyToBuffer@28
_BinkGetRects@8
_BinkWait@4
_BinkPause@8
_BinkGetSummary@8
_BinkClose@4
_BinkNextFrame@4

mss32

_AIL_startup@0
_RIB_find_files_provider@20
RIB_request_interface
_AIL_shutdown@0

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 856KB - Virtual size: 853KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 288KB - Virtual size: 573KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

80de47344f53efaeba0d21e35a033fb1

Headers

File Characteristics

Imports

wsock32

kernel32

user32

gdi32

advapi32

ole32

ddraw

winmm

dsound

binkw32

mss32

version

Sections

.text Size: 5.4MB - Virtual size: 5.4MB

.rdata Size: 856KB - Virtual size: 853KB

.data Size: 288KB - Virtual size: 573KB

.rsrc Size: 12KB - Virtual size: 10KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 5.4MB - Virtual size: 5.4MB

.rdata
Size: 856KB - Virtual size: 853KB

.data
Size: 288KB - Virtual size: 573KB

.rsrc
Size: 12KB - Virtual size: 10KB

.rmnet
Size: 60KB - Virtual size: 60KB