b5d88845a7287db8e427a1426cc629324353216b562a7a9862a7f95933ae6170

Sharing

Copy URL Twitter E-mail

General

Target

b5d88845a7287db8e427a1426cc629324353216b562a7a9862a7f95933ae6170
Size

207KB
MD5

2ffda0e7e3613be64d5bcb7552fc7b30
SHA1

5e42146625a103a95766dc110be4d7d62ae1da25
SHA256

b5d88845a7287db8e427a1426cc629324353216b562a7a9862a7f95933ae6170
SHA512

5a7cc5afeb67171a06102c90f967f77e2c76c596153c5b6cdb24adab78d3da5e26198f3714f6318fe7ae1a5ca492c32d73ab29c341dbaea8c0cfd338585173df
SSDEEP

6144:rSkPv3rY4uWqYynHIktweZhoGks1CZj6xtZ:2aM5TfIktweDoGlBZ

Score

N/A

Malware Config

Signatures

Files

b5d88845a7287db8e427a1426cc629324353216b562a7a9862a7f95933ae6170
.exe windows x86

df0b28de01fba5015a8e844b07cf6af6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpW
GlobalAlloc
CreateFileW
LeaveCriticalSection
GetLocaleInfoA
LocalFree
GetCurrentProcessId
SetErrorMode
IsBadReadPtr
GetOverlappedResult
InitializeCriticalSection
lstrlenA
GetFullPathNameW
MulDiv
QueryPerformanceCounter
WideCharToMultiByte
CloseHandle
GlobalUnlock
GetDiskFreeSpaceW
lstrcatA
MultiByteToWideChar
GetTickCount
lstrcpyA
ResetEvent
GlobalSize
DeleteCriticalSection
lstrcpynW
GlobalFree
EnterCriticalSection
GetSystemTimeAsFileTime
GetFileSize
WriteFile
lstrlenW
LoadLibraryW
SetUnhandledExceptionFilter
GlobalReAlloc
ReadFile
GetLastError
LocalAlloc
GetModuleHandleA
lstrcpyW

msvcrt

_purecall
_initterm
_adjust_fdiv
??3@YAXPAX@Z
malloc
__p__commode
exit
_vsnwprintf
free
memmove
atoi
??2@YAPAXI@Z
mbstowcs
__getmainargs
__set_app_type
_ftol

user32

CheckDlgButton
DialogBoxParamW
SendDlgItemMessageW
SetDlgItemInt
IsRectEmpty
LoadStringW
PeekMessageW
EndDialog
GetDC
SetRectEmpty
MessageBoxW
CharPrevW
TranslateMessage
GetDlgItem
EnableWindow
SetRect
MessageBeep
wsprintfW
IsDlgButtonChecked
SendMessageW
ReleaseDC
SetDlgItemTextW
DestroyWindow

ole32

CoGetMarshalSizeMax
CoMarshalInterface
OleSetClipboard
OleUninitialize
OleInitialize
CoGetMalloc
CoCreateInstance
OleGetClipboard
OleFlushClipboard
ReleaseStgMedium
CoUnmarshalInterface
CreateStreamOnHGlobal

msacm32

acmStreamConvert
acmFormatDetailsW
acmStreamPrepareHeader
acmStreamUnprepareHeader
acmFormatTagDetailsW
acmStreamSize
acmFormatSuggest
acmMetrics
acmFormatChooseW
acmStreamOpen
acmGetVersion
acmStreamClose

msvfw32

ICCompressorFree
ICGetInfo
ICGetDisplayFormat
ICClose
ICDecompress
ICOpen
ICSendMessage
ICCompress
ICCompressorChoose

winmm

mmioSeek
mmioWrite
mmioClose
mmioRead
mmioOpenW

advapi32

RegOpenKeyW
RegQueryValueExA
RegEnumKeyW
RegCloseKey
RegQueryValueW
RegOpenKeyA

Sections

.text
Size: 161KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df0b28de01fba5015a8e844b07cf6af6

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

msacm32

msvfw32

winmm

advapi32

Sections

.text Size: 161KB - Virtual size: 160KB

.idata Size: 35KB - Virtual size: 35KB

.idata Size: 7KB - Virtual size: 6KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 161KB - Virtual size: 160KB

.idata
Size: 35KB - Virtual size: 35KB

.idata
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 1KB - Virtual size: 1KB