e8151a2739fb5afb7797bf32559b7e5a1c495aaa98a6668c365e82500cd63fb5

Sharing

Copy URL Twitter E-mail

General

Target

e8151a2739fb5afb7797bf32559b7e5a1c495aaa98a6668c365e82500cd63fb5
Size

765KB
MD5

4f48ecca064f83e606491111e90f5be7
SHA1

da94f766feaa0d47f3d698ed31849ed373a0cee6
SHA256

e8151a2739fb5afb7797bf32559b7e5a1c495aaa98a6668c365e82500cd63fb5
SHA512

946539421dc1ce3826816b7cdca1bb2948a103fd03ab5b0ab2fe0f232bbaaf9554248d9ea3b16d3db9db0f2f28a80a94a48368e515838fe467e7ce3f9988f04e
SSDEEP

12288:m40mFNMENCwClG6ivAsuOwRI9l6yGRNIq+X9SXGllz:pcVE6iosuOwRI94yGRNP+X9Nll

Score

N/A

Malware Config

Signatures

Files

e8151a2739fb5afb7797bf32559b7e5a1c495aaa98a6668c365e82500cd63fb5
.exe windows x86

52bdf854e87e2c18de8c7a1a8adb9327

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

_llseek
_lwrite
ReadFile
_lread
CreateFileA
_lopen
CloseHandle
SetFilePointer
GetModuleHandleA
GetStartupInfoA
HeapAlloc
ExitProcess
TerminateProcess
GetCurrentProcess
RtlUnwind
WideCharToMultiByte
GetStringTypeA
GetStringTypeW
GetVersion
HeapFree
LCMapStringA
LCMapStringW
GetLastError
GetProcAddress
_lcreat
_lclose
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
GlobalHandle
VirtualAlloc
SetStdHandle
FlushFileBuffers
LoadLibraryA
SetEndOfFile
GlobalUnlock
GlobalFree
LocalAlloc
GlobalAlloc
GlobalLock
LocalFree
GetCommandLineA
GetSystemTime
LocalReAlloc
LocalLock
LocalUnlock
GetVolumeInformationA
GlobalReAlloc
MulDiv
lstrcpyA
UnhandledExceptionFilter
Sleep
GetModuleFileNameA
MultiByteToWideChar
WriteFile

user32

TranslateMessage
ReleaseDC
GetDC
MoveWindow
SetKeyboardState
GetKeyboardState
GetMessageA
ReleaseCapture
SetCapture
PeekMessageA
ShowCursor
DispatchMessageA
GetDesktopWindow
GetWindowRect
CreateWindowExA
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassA
PostQuitMessage
BeginPaint
EndPaint
DestroyWindow
SendMessageA
DefWindowProcA
PostMessageA
PtInRect
ShowWindow
MessageBoxA
AdjustWindowRect

gdi32

GetStockObject
RealizePalette
SelectPalette
StretchDIBits
UnrealizeObject
DeleteObject
SetPaletteEntries
CreatePalette
GetSystemPaletteEntries
SetSystemPaletteUse

ole32

CoInitialize
CoCreateInstance

winmm

mmioClose
timeGetTime
midiOutGetDevCapsA
midiOutGetNumDevs
midiStreamClose
midiOutUnprepareHeader
midiStreamRestart
midiStreamStop
midiStreamPause
mixerGetControlDetailsA
mixerSetControlDetails
midiStreamOut
midiOutPrepareHeader
midiStreamProperty
midiStreamOpen
midiOutReset
mixerGetLineControlsA
mixerClose
mixerGetLineInfoA
mixerOpen
mixerGetDevCapsA
timeGetDevCaps
mmioRead
mmioSeek
mmioDescend
mmioOpenA
waveOutWrite
waveOutPrepareHeader
waveOutReset
waveOutClose
waveOutOpen
waveOutUnprepareHeader
joyGetPosEx
joyGetDevCapsA
mciSendCommandA
timeBeginPeriod
timeSetEvent
timeEndPeriod
timeKillEvent

ddraw

DirectDrawCreate

dplayx

ord4
ord1

dsound

DirectSoundCreate

Sections

.text
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_text
Size: 337KB - Virtual size: 337KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_TEXT
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

52bdf854e87e2c18de8c7a1a8adb9327

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

winmm

ddraw

dplayx

dsound

Sections

.text Size: 174KB - Virtual size: 173KB

_text Size: 337KB - Virtual size: 337KB

_TEXT Size: 148KB - Virtual size: 147KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 40KB - Virtual size: 234KB

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 2KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 174KB - Virtual size: 173KB

_text
Size: 337KB - Virtual size: 337KB

_TEXT
Size: 148KB - Virtual size: 147KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 40KB - Virtual size: 234KB

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 2KB

.rmnet
Size: 56KB - Virtual size: 60KB