a53d353b62123be70697dd71468d64a180c72d40b46bf120cfa7a7e2c5738046

Sharing

Copy URL Twitter E-mail

General

Target

a53d353b62123be70697dd71468d64a180c72d40b46bf120cfa7a7e2c5738046
Size

336KB
MD5

1f79e9a595628b19b469565e9c3b2b43
SHA1

95f9e8d0d2466fc9a687540b8dc6fbe5a9cb5f1e
SHA256

a53d353b62123be70697dd71468d64a180c72d40b46bf120cfa7a7e2c5738046
SHA512

cbf141dbec534f483f8dd86d38325cdda8202835cadcf5942be12304d65edc489ac091d44e7b7b9c86a345e2a119078f6d0a1ed75de34c454e2000ef5f093482
SSDEEP

6144:hsd7z/w39/xfGOJPwK8qQuPs6w/NVmTefCZX:w3/wNx1SCQuS/NVOefqX

Score

N/A

Malware Config

Signatures

Files

a53d353b62123be70697dd71468d64a180c72d40b46bf120cfa7a7e2c5738046
.exe windows x86

9a63165856aac06e5dbbd03422a436fd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICGetInfo
ICOpen
ICClose

msacm32

acmDriverDetailsA
acmDriverOpen
acmFormatTagDetailsA
acmDriverClose
acmDriverEnum

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

winmm

OpenDriver
GetDriverModuleHandle
CloseDriver

msdmo

DMOGetTypes
DMOEnum

mfc42

ord2976
ord3830
ord3831
ord3825
ord3079
ord4080
ord4627
ord4425
ord3597
ord795
ord641
ord567
ord324
ord825
ord2302
ord4234
ord537
ord1168
ord6199
ord4710
ord800
ord2086
ord4160
ord540
ord823
ord2379
ord3610
ord3573
ord3663
ord3626
ord656
ord2414
ord4299
ord1641
ord4476
ord4224
ord941
ord858
ord924
ord860
ord2575
ord4396
ord3574
ord609
ord3286
ord786
ord2461
ord3318
ord519
ord940
ord939
ord3301
ord4220
ord2584
ord3654
ord2438
ord6270
ord2863
ord1644
ord1146
ord3910
ord2370
ord6334
ord2645
ord922
ord926
ord2614
ord3619
ord2243
ord4275
ord2859
ord3874
ord3092
ord2642
ord5710
ord2818
ord3873
ord5572
ord2915
ord535
ord4673
ord4274
ord6375
ord4486
ord2554
ord2512
ord5731
ord3922
ord1089
ord5199
ord3081
ord3346
ord5300
ord5302
ord2725
ord4079
ord4698
ord5307
ord5289
ord5714
ord4622
ord3738
ord815
ord561
ord617
ord4129
ord5683
ord5214
ord296
ord6117
ord2621
ord3698
ord765
ord2639
ord755
ord470
ord2822
ord3302
ord2546
ord291
ord6215
ord4202
ord2358
ord1929
ord2860
ord5875
ord2864
ord5981
ord3797
ord6880
ord1200
ord4123
ord6877
ord2116
ord6389
ord6195
ord3870
ord3522
ord3521
ord6403
ord6402
ord2919
ord2411
ord2023
ord4218
ord2578
ord4398
ord3582
ord616
ord3317
ord923
ord1175
ord3742
ord818
ord1270
ord1232
ord2152
ord613
ord5678
ord2753
ord5787
ord5873
ord6172
ord6197
ord6379
ord5789
ord5736
ord289
ord6605
ord3370
ord2582
ord4402
ord3640
ord693
ord556
ord809
ord4243
ord2122
ord1088
ord1576
ord3812
ord3293
ord1816
ord3753
ord3706
ord5782
ord3138
ord4284
ord6453
ord5440
ord6383
ord5450
ord6394
ord3711
ord783
ord6377
ord2452
ord2112
ord2985
ord3262
ord3136
ord4465
ord3259
ord3147
ord2982
ord5277
ord2124
ord2446
ord5261
ord1727
ord5065
ord3749
ord6376
ord2055
ord2648
ord4441
ord4837
ord3798
ord5280
ord4353
ord6374
ord5163
ord2385
ord4407
ord1775
ord4078
ord6052
ord2514
ord4998
ord4853
ord4376
ord5265
ord3721
ord4424
ord3402
ord5290
ord5241
ord1776
ord6055
ord2396
ord3754

msvcrt

_controlfp
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
?terminate@@YAXXZ
_onexit
__dllonexit
??1type_info@@UAE@XZ
memchr
sscanf
_purecall
vsprintf
strncmp
realloc
_mbsstr
exit
strrchr
_ftol
memmove
__p___argc
strchr
time
_CxxThrowException
_mbscmp
_splitpath
_makepath
toupper
tolower
atoi
malloc
mbstowcs
_beginthread
free
calloc
_except_handler3
wcstombs
_setmbcp
_strupr
_strnicmp
_stricmp
strncat
strncpy
strstr
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__p___argv
__setusermatherr
__CxxFrameHandler
sprintf

kernel32

CloseHandle
GetFileSize
CreateFileA
ReadFile
GetFileAttributesA
Sleep
GetTickCount
WriteFile
SetFileAttributesA
CreateProcessA
LoadLibraryA
FreeLibrary
GetWindowsDirectoryA
lstrcpyA
WinExec
lstrcatA
SetLastError
IsBadCodePtr
OpenProcess
GetProcAddress
IsBadWritePtr
SetFilePointer
DeleteFileA
LocalFree
FormatMessageA
GetLastError
SearchPathA
FindClose
FindFirstFileA
GetModuleHandleA
GetStartupInfoA
GetVersionExA
GetCurrentProcessId
lstrlenA
GetUserDefaultLangID
GetModuleFileNameA
MultiByteToWideChar

user32

GetSystemMetrics
IsIconic
KillTimer
TranslateAcceleratorA
GetMenuItemID
GetMenuItemCount
GetKeyState
LoadStringA
GetDlgCtrlID
PostMessageA
SetCapture
ReleaseCapture
PtInRect
wsprintfA
IsWindow
InflateRect
GetParent
GetWindowRect
CopyIcon
LoadCursorA
MessageBeep
SetWindowLongA
SetLastErrorEx
IsWindowVisible
DefWindowProcA
GetClassInfoA
GetFocus
IsRectEmpty
WindowFromPoint
DrawIcon
GetCapture
UnregisterClassA
CopyRect
GetClassNameA
DeferWindowPos
EqualRect
EndDeferWindowPos
BeginDeferWindowPos
GetWindowRgn
AdjustWindowRectEx
IsMenu
GetMenu
IsZoomed
SetPropA
SetWindowRgn
CallWindowProcA
RemovePropA
GetPropA
ScreenToClient
LoadMenuA
GetSubMenu
SetMenuDefaultItem
EnableMenuItem
SendMessageA
LoadBitmapA
GetCursorPos
EnableWindow
GetSystemMenu
AppendMenuA
MapDialogRect
GetSysColor
LoadIconA
InvalidateRect
GetWindowLongA
MessageBoxA
GetDC
ClientToScreen
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
LoadAcceleratorsA
GetDlgItem
SetTimer
HideCaret
GetClientRect
ReleaseDC
SetCursor

gdi32

GetStockObject
CreateRectRgnIndirect
CombineRgn
DPtoLP
CreateRectRgn
OffsetRgn
SetRectRgn
DeleteObject
GetTextMetricsA
CreateFontIndirectA
GetTextExtentPoint32A
CreateSolidBrush
GetObjectA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

RegQueryValueA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegCloseKey
RegEnumValueA
RegQueryValueExA
RegOpenKeyA
RegEnumKeyExA

shell32

SHFileOperationA
SHChangeNotify
SHBrowseForFolderA
DragFinish
DragQueryFileA
ShellExecuteA
SHGetPathFromIDListA

ole32

CoCreateInstance
CoUninitialize
StringFromCLSID
CoTaskMemFree
CoInitialize

oleaut32

SysFreeString

Sections

.text
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9a63165856aac06e5dbbd03422a436fd

Headers

File Characteristics

Imports

msvfw32

msacm32

version

winmm

msdmo

mfc42

msvcrt

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 144KB - Virtual size: 142KB

.rdata Size: 36KB - Virtual size: 34KB

.data Size: 28KB - Virtual size: 61KB

.rsrc Size: 124KB - Virtual size: 124KB

.text
Size: 144KB - Virtual size: 142KB

.rdata
Size: 36KB - Virtual size: 34KB

.data
Size: 28KB - Virtual size: 61KB

.rsrc
Size: 124KB - Virtual size: 124KB