67e6731958c7e3c52f4526068a2046d9339fca781dae7164cb8be3337090e6aa

General

Target

67e6731958c7e3c52f4526068a2046d9339fca781dae7164cb8be3337090e6aa
Size

432KB
MD5

719fe45713f71276e0dc210b8e51cabc
SHA1

e262098d324dab588750fd3b579893baf06ee75e
SHA256

67e6731958c7e3c52f4526068a2046d9339fca781dae7164cb8be3337090e6aa
SHA512

ad928a8a0cbcd070b100ff02b178986c731b373cfc35b7077bf34b309ce75b6fd46ad8674f07df0b93b57e4ac96ee2f9fde2ec1244246e9d33e5047fd43c191f
SSDEEP

6144:XzKaMtDCGosjuXX8lGkld10LH9tYkIHA7fp2l4wX+ZGg3BPstUNLmOlw+ewCXL0K:jK3tDCGTjuXQbYtp0Y2W1Qq4AaFL

Score

N/A

Malware Config

Signatures

Files

67e6731958c7e3c52f4526068a2046d9339fca781dae7164cb8be3337090e6aa
.exe windows x86

51ece49a3b321a0631d0c4f3a2c0f775

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
SizeofResource
VirtualFree
WriteFile
SetEvent
ResumeThread
SetWaitableTimer
SignalObjectAndWait
GetTickCount
GetProcAddress
GetLastError
GetModuleHandleA
InterlockedExchange
GetSystemTime
FlushFileBuffers
SetStdHandle
LCMapStringW
LCMapStringA
RaiseException
SetFilePointer
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
RtlUnwind
GetFileType
SetHandleCount
IsBadWritePtr
IsBadReadPtr
HeapValidate
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapAlloc
DebugBreak
GetStdHandle
InterlockedDecrement
OutputDebugStringA
LoadLibraryA
InterlockedIncrement
GetModuleFileNameA
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
TerminateProcess
GetCurrentProcess
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
CloseHandle

user32

GetClientRect
SendMessageA
ShowWindow
GetActiveWindow
FindWindowA
GetFocus
EnableWindow
LoadBitmapA

msvfw32

DrawDibClose
DrawDibOpen

winmm

mixerClose
mmioRenameW
waveInClose

Exports

Exports

?JUMP@@YAKKK@Z

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 364KB - Virtual size: 367KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 371KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51ece49a3b321a0631d0c4f3a2c0f775

Headers

File Characteristics

Imports

kernel32

user32

msvfw32

winmm

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 364KB - Virtual size: 367KB

.rsrc Size: 4KB - Virtual size: 371KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 364KB - Virtual size: 367KB

.rsrc
Size: 4KB - Virtual size: 371KB