8158bcc8ca0644ee3cafd79d27d7ba996f2a3ee6e47100437d0a983fb0bfa4cf

Sharing

Copy URL

Twitter E-mail

General

Target

8158bcc8ca0644ee3cafd79d27d7ba996f2a3ee6e47100437d0a983fb0bfa4cf
Size

124KB
MD5

81fecc4ece816dce0962e2d2f5f526dd
SHA1

4fa9ae96d9b5e3909797a630110f5b711543c6d8
SHA256

8158bcc8ca0644ee3cafd79d27d7ba996f2a3ee6e47100437d0a983fb0bfa4cf
SHA512

af97c47bc50ef43da72dd00493552ad75de54ee835c249f81433b6b06ab3316361fd18350ec39019038df201ebadf30a42290cb8aee8f2ad3c5a050a829522ad
SSDEEP

1536:9ARFSkuwfTeuV7puOY2T9vo/ZDZC/1MZr7IJ0c6OB3QA/t2Og0Jtf1NX6ikl0csT:aHFrd7p58NYSZrcJ+O+VOg0JtTI7gv

Score

N/A

Malware Config

Signatures

Files

8158bcc8ca0644ee3cafd79d27d7ba996f2a3ee6e47100437d0a983fb0bfa4cf
.exe windows x86

2066902e08801b1db43195130d67b873

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeSetEvent
waveInGetDevCapsA
waveInGetDevCapsW
waveInPrepareHeader
waveInStart
waveInUnprepareHeader
waveOutGetDevCapsA
waveOutGetNumDevs
waveOutGetPosition
waveOutUnprepareHeader
mciSendCommandA

ole32

CoInitialize
CoTaskMemFree
CoCreateInstance

dinput

DirectInputCreateW

ws2_32

accept
socket
send
WSAAsyncGetHostByName
WSACancelAsyncRequest
WSACleanup
WSAStartup
closesocket
recv
select

advapi32

GetAce
SetSecurityDescriptorDacl
SetFileSecurityW
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegEnumKeyA
RegCloseKey
OpenProcessToken
InitializeSecurityDescriptor
InitializeAcl
GetTokenInformation
GetSecurityDescriptorDacl
GetLengthSid
GetAclInformation
EqualSid
AllocateAndInitializeSid
AddAce
AddAccessAllowedAce

user32

MessageBoxW
MsgWaitForMultipleObjects
OpenClipboard
PeekMessageA
PostThreadMessageA
RegisterClassA
RegisterWindowMessageA
ReleaseDC
ScreenToClient
SetClipboardData
SetRect
SetWindowPos
ShowCursor
ShowWindow
TranslateMessage
UpdateWindow
wsprintfA
LoadIconA
LoadCursorA
GetSystemMetrics
GetQueueStatus
GetForegroundWindow
GetDC
GetClipboardData
EmptyClipboard
DispatchMessageA
DestroyWindow
DefWindowProcA
CreateWindowExA
CloseClipboard
ClientToScreen
CharToOemA
AdjustWindowRect
CharLowerBuffA

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

HeapCreate
HeapAlloc
IsValidCodePage
InterlockedExchange
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetSystemDirectoryA
IsValidLocale
GetUserDefaultLangID
IsDebuggerPresent
LeaveCriticalSection
GetEnvironmentStringsW
MulDiv
ResumeThread
SetCurrentDirectoryA
SetEvent
SetHandleCount
SetUnhandledExceptionFilter
TerminateProcess
TlsFree
TlsGetValue
WideCharToMultiByte
GetFileInformationByHandle
GetLocaleInfoW
GetModuleHandleA
GetVersionExA
GetDateFormatA
AreFileApisANSI
GetConsoleOutputCP
GetCommandLineA
GetACP
FreeEnvironmentStringsA
FlushFileBuffers
FindFirstFileA
ExitProcess
DeviceIoControl
CreateEventA
CreateDirectoryA
GetModuleHandleW

shell32

SHGetSpecialFolderPathW
ShellExecuteA
SHFileOperationW

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2066902e08801b1db43195130d67b873

Headers

File Characteristics

Imports

winmm

ole32

dinput

ws2_32

advapi32

user32

version

kernel32

shell32

Sections

.text Size: 88KB - Virtual size: 87KB

.data Size: 24KB - Virtual size: 23KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 88KB - Virtual size: 87KB

.data
Size: 24KB - Virtual size: 23KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB