74bf0025c94978d4ce893d9291840a3cec37486eff2fdd2d5decff7c6c82398e

Sharing

Copy URL Twitter E-mail

General

Target

74bf0025c94978d4ce893d9291840a3cec37486eff2fdd2d5decff7c6c82398e
Size

144KB
MD5

40f92fde66763a386b52114024247f70
SHA1

3d7c152f475e1f0fa52268f63c22921f7c7baedd
SHA256

74bf0025c94978d4ce893d9291840a3cec37486eff2fdd2d5decff7c6c82398e
SHA512

7c3ad15ff4a19ae895353c847efe523b65ceafaf2cf6400583cd3f47edec68e6eeb7ea66b832452ae92cb3f80e2d479f037cc37cb486cc7ea51040d429a216ef
SSDEEP

3072:EUOkLzvYXVOu642UQx3eZIE3vfcoAoMJDGDCbx+:E2LzvYXVCE3sb3

Score

N/A

Malware Config

Signatures

Files

74bf0025c94978d4ce893d9291840a3cec37486eff2fdd2d5decff7c6c82398e
.exe windows x86

1a4cc26a53360d50b0c8e69122ff4bbf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord151
ord831
ord840
ord651
ord889
ord577
ord396
ord908
ord722
ord887
ord676
ord48
ord933
ord241
ord264
ord578
ord247
ord408
ord319
ord930
ord929
ord466
ord593
ord99
ord183
ord236
ord636
ord351
ord928
ord361
ord128
ord534
ord318
ord814
ord926
ord927
ord931
ord521
ord515
ord519
ord517
ord50
ord76
ord770
ord588
ord584
ord891
ord612
ord372
ord491
ord502
ord942
ord948
ord509
ord263
ord261
ord265
ord724
ord723
ord109
ord704
ord833
ord559
ord875
ord709
ord254
ord542
ord538
ord878
ord476
ord337
ord846
ord788
ord844
ord847
ord431
ord784
ord336
ord334
ord895
ord240
ord239
ord395
ord856
ord316
ord839
ord475
ord266
ord429
ord374
ord498
ord525
ord613
ord432
ord435
ord564
ord565

user32

ord140
ord138
ord136
ord143
ord97
ord452
ord490
ord599
ord275
ord647
ord274
ord197
ord60
ord644
ord457
ord512
ord58
ord199
ord256
ord269
ord555
ord567
ord276
ord596
ord159
ord28
ord700
ord154
ord315
ord680
ord195
ord729
ord572
ord428
ord659
ord373
ord477
ord363
ord641
ord279
ord436
ord514
ord723
ord429
ord510
ord683
ord162
ord312
ord308
ord472
ord346
ord678
ord326
ord562
ord726
ord666
ord687
ord307
ord313
ord350
ord367
ord651
ord444
ord440
ord347
ord535
ord27
ord731

gdi32

ord58
ord144
ord545
ord445
ord81
ord437
ord527
ord59
ord364

comdlg32

ord110

comctl32

ord17
ord6
ord22

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

winmm

ord166

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

encmpc

ord3
ord4
ord2
ord5
ord1

pichelp

ord2
ord1
ord3

mpcplay

ord2
ord1

mpgaudio

ord19
ord15
ord17
ord14
ord22
ord11
ord12

waveout

ord1
ord4
ord5

encmpa

ord5
ord8
ord9
ord12
ord3
ord1
ord6
ord4
ord2

waverec

ord5
ord3
ord6
ord2
ord1
ord4

recvapi

ord4
ord5
ord2
ord3
ord6

sendapi

ord3
ord4
ord2

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 32KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1a4cc26a53360d50b0c8e69122ff4bbf

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

comctl32

version

winmm

avicap32

encmpc

pichelp

mpcplay

mpgaudio

waveout

encmpa

waverec

recvapi

sendapi

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 32KB - Virtual size: 296KB

.rsrc Size: 20KB - Virtual size: 20KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 32KB - Virtual size: 296KB

.rsrc
Size: 20KB - Virtual size: 20KB