66170d482947296e940e279faf5efc251f83c5d86568f5220729375a04de5844

Sharing

Copy URL Twitter E-mail

General

Target

66170d482947296e940e279faf5efc251f83c5d86568f5220729375a04de5844
Size

772KB
MD5

c411f194e78578a60f5ef5c98891854b
SHA1

cec2a411769dca491ad8ef68e98684be16caf91c
SHA256

66170d482947296e940e279faf5efc251f83c5d86568f5220729375a04de5844
SHA512

bee4295a93b5a2d11c6943fae60c249975dd983fad87333fc5683a02c7618f380612d330332dc495aaced1106fd969b6e362f6eb0d04809550f5e00fd4502b6c
SSDEEP

12288:+qaGeZuqU0hpBeFrqc+v61TOxu7VTJ25XjHhPu2bILtzKy/M77777701:+quNcFWc+6KSo5zHhPu2bILt

Score

N/A

Malware Config

Signatures

Files

66170d482947296e940e279faf5efc251f83c5d86568f5220729375a04de5844
.exe windows x86

58dc634b28d213adf56821ab05b2f63d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
IsBadReadPtr
InterlockedDecrement
InterlockedIncrement
TerminateProcess
ResumeThread
CreateThread
TlsSetValue
ExitThread
GetLocalTime
GetModuleHandleA
RaiseException
HeapAlloc
TlsAlloc
SetLastError
TlsGetValue
HeapReAlloc
HeapSize
WideCharToMultiByte
ReadFile
WriteFile
UnhandledExceptionFilter
CloseHandle
RtlUnwind
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
GetTimeZoneInformation
GetSystemTime
LCMapStringA
LCMapStringW
SetFilePointer
VirtualAlloc
IsBadCodePtr
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetStringTypeA
GetStringTypeW
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProcAddress
GetCurrentProcess
SetUnhandledExceptionFilter
GlobalAlloc
GlobalLock
GlobalUnlock
MultiByteToWideChar
GetWindowsDirectoryA
GetTickCount
Sleep
GetModuleFileNameA
GetCurrentThreadId
OutputDebugStringA
DeleteFileA
LeaveCriticalSection
DeleteCriticalSection
InterlockedExchange
InitializeCriticalSection
EnterCriticalSection
GetVersionExA
MulDiv
VirtualQuery
GetCurrentThread
GetLastError
IsBadWritePtr
FreeLibrary
HeapCreate
VirtualFree
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetCurrentDirectoryA
SetCurrentDirectoryA

advapi32

RegCloseKey
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA

user32

GetMessageA
GetDC
GetSysColor
DrawTextExA
GetClientRect
GetClipboardData
OpenClipboard
SetClipboardData
CloseClipboard
LoadIconA
SendMessageA
ReleaseDC
TranslateMessage
DispatchMessageA
LoadCursorA
SetCursor
ShowCursor
OffsetRect
AdjustWindowRect
CreateWindowExA
SetTimer
SetCapture
ReleaseCapture
PostQuitMessage
PeekMessageA
RegisterClassA
SetForegroundWindow
ClientToScreen
GetCursorPos
WindowFromPoint
GetWindowLongA
EndPaint
DefWindowProcA
MessageBoxA
GetWindowPlacement
CloseWindow
ShowWindow
SetWindowLongA
DestroyWindow
BeginPaint

gdi32

SelectObject
GetObjectA
CreateFontA
GetDeviceCaps
CreateSolidBrush
GetTextMetricsA
CreateFontIndirectA
TextOutA
SetTextColor
IntersectClipRect
SetBkMode
DeleteObject

shell32

ShellExecuteA

winmm

timeEndPeriod
mixerOpen
mixerClose
mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
timeBeginPeriod
mixerGetDevCapsA
mixerSetControlDetails
timeGetTime

ddraw

DirectDrawCreate

wsock32

shutdown

dsound

ord1

fmod

_FSOUND_Sample_Lock@28
_FSOUND_Sample_Load@16
_FSOUND_Sample_GetMode@4
_FSOUND_Sample_GetDefaults@20
_FSOUND_Sample_Free@4
_FSOUND_Sample_Unlock@20
_FSOUND_Close@0
_FSOUND_SetHWND@4
_FSOUND_Init@12
_FSOUND_Sample_GetLength@4

bass

BASS_ChannelSetAttributes
BASS_SetGlobalVolumes
BASS_Init
BASS_ChannelStop
BASS_MusicPlay
BASS_MusicLoad
BASS_Stop
BASS_Start

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Sections

.text
Size: 564KB - Virtual size: 562KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 40KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dpdzctn
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

58dc634b28d213adf56821ab05b2f63d

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

shell32

winmm

ddraw

wsock32

dsound

fmod

bass

version

Sections

.text Size: 564KB - Virtual size: 562KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 40KB - Virtual size: 45KB

.rsrc Size: 132KB - Virtual size: 132KB

dpdzctn Size: - Virtual size: 4KB

.text
Size: 564KB - Virtual size: 562KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 40KB - Virtual size: 45KB

.rsrc
Size: 132KB - Virtual size: 132KB

dpdzctn
Size: - Virtual size: 4KB