e2a3c979b16d968a173e798d636508dca71a35701e02ff2b6649a736dc43c6e7

Sharing

Copy URL Twitter E-mail

General

Target

e2a3c979b16d968a173e798d636508dca71a35701e02ff2b6649a736dc43c6e7
Size

400KB
MD5

411bc30e9ee87a24aa5a6fc320265c02
SHA1

e25d63ed1b6a699a9bd8d346c674a5b2cfa4bb93
SHA256

e2a3c979b16d968a173e798d636508dca71a35701e02ff2b6649a736dc43c6e7
SHA512

eb5bb907849ae9386df19a9d9eb8d117a9b36a77a087e876e0d94257d0d7d1700aa3904f456c20b186762643fea1f07769bf5cf95d085cd5d9ee0840d96bb874
SSDEEP

12288:HH8ELUD8317UB4FmD7IU6zyWzwS+U6CSQ:n83G1NQIUnTrUtSQ

Score

N/A

Malware Config

Signatures

Files

e2a3c979b16d968a173e798d636508dca71a35701e02ff2b6649a736dc43c6e7
.exe windows x86

8539dd94284c9c52b7651b366d676db2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

sndPlaySoundA
waveOutReset
waveOutPause
waveOutRestart
waveOutWrite
waveOutOpen
mciSendCommandA
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutClose
timeGetTime
mmioGetInfo
mmioAdvance
mmioSetInfo
mmioSeek
mmioOpenA
mmioDescend
mmioRead
mmioAscend
mmioClose

ddraw

DirectDrawCreate

dsound

ord1

avifil32

AVIStreamLength
AVIStreamReadFormat
AVIStreamStart
AVIStreamSampleToTime
AVIStreamRead
AVIFileInit
AVIFileOpenA
AVIFileGetStream
CreateEditableStream
AVIStreamRelease
AVIFileRelease
AVIStreamGetFrameClose
AVIStreamInfoA
AVIStreamGetFrame
AVIStreamGetFrameOpen
AVIStreamTimeToSample
AVIFileExit
AVISaveOptionsFree

msvfw32

DrawDibClose
DrawDibDraw
DrawDibOpen

kernel32

FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentStrings
GetProcAddress
RtlUnwind
SetEndOfFile
SetStdHandle
SetEnvironmentVariableA
FlushFileBuffers
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
CompareStringW
LCMapStringA
GetTickCount
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
CloseHandle
UnmapViewOfFile
WriteFile
CreateFileMappingA
GetFileSize
CreateFileA
GetFileAttributesA
GetDriveTypeA
Beep
GetCurrentDirectoryA
ReadFile
GetLocalTime
LCMapStringW
CompareStringA
SetFilePointer
MapViewOfFile
HeapReAlloc
VirtualAlloc
HeapCreate
HeapDestroy
VirtualFree
GetVersion
GetCommandLineA
GetLastError
GetModuleHandleA
GetSystemTime
GetStartupInfoA
WideCharToMultiByte
HeapFree
GetTimeZoneInformation
TerminateProcess
ExitProcess
GetCurrentProcess
HeapAlloc

user32

PostQuitMessage
MessageBeep
PeekMessageA
GetCursorPos
wvsprintfA
SetTimer
KillTimer
RegisterClassExA
CreateWindowExA
LoadIconA
SetActiveWindow
FindWindowA
BringWindowToTop
GetActiveWindow
IsIconic
SetCursor
UpdateWindow
DefWindowProcA
ShowWindow
DispatchMessageA
MessageBoxA
TranslateMessage
GetMessageA

gdi32

GetStockObject

advapi32

RegQueryValueExA
RegOpenKeyExA

Sections

.text
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 6.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8539dd94284c9c52b7651b366d676db2

Headers

File Characteristics

Imports

winmm

ddraw

dsound

avifil32

msvfw32

kernel32

user32

gdi32

advapi32

Sections

.text Size: 248KB - Virtual size: 245KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 76KB - Virtual size: 6.3MB

.rsrc Size: 4KB - Virtual size: 2KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 248KB - Virtual size: 245KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 76KB - Virtual size: 6.3MB

.rsrc
Size: 4KB - Virtual size: 2KB

.rmnet
Size: 60KB - Virtual size: 60KB