b53c5dc9d3dad8c5b8359c561dae8a3698bbc64816280b36e762f7fc036d54ab

Sharing

Copy URL Twitter E-mail

General

Target

b53c5dc9d3dad8c5b8359c561dae8a3698bbc64816280b36e762f7fc036d54ab
Size

80KB
MD5

6c648178c30bb071a392efa1ac1acc60
SHA1

3967b71f47c819e2e4f3f64f88fe4be27d06dafb
SHA256

b53c5dc9d3dad8c5b8359c561dae8a3698bbc64816280b36e762f7fc036d54ab
SHA512

9723d394112cad60491438bf43d8175b82c2ec9803f03110af2a576132ee89d6e4a2d866109a3863bf4e478c1735534175778b9d9a5289ed5fc769f62affaae6
SSDEEP

768:H4U7AWrz1prKrnrwIG6DaPQ/J5ayVn/G0tJxtr10/euKRHIW:H4CAwSrnKPQ/uyp/Gu/uM

Score

N/A

Malware Config

Signatures

Files

b53c5dc9d3dad8c5b8359c561dae8a3698bbc64816280b36e762f7fc036d54ab
.exe windows x86

0be8ac1b57999cbeca24d7ae904788ac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetSystemTimeAsFileTime
GlobalHandle
GlobalLock
CloseHandle
WaitForSingleObject
ResetEvent
lstrlenA
GetProcAddress
GetModuleHandleW
lstrlenW
MapViewOfFile
CreateFileMappingW
UnmapViewOfFile
GlobalReAlloc
FreeResource
GetCurrentProcess
LoadResource
SizeofResource
FindResourceW
IsBadWritePtr
lstrcatW
CreateEventW
SetEvent
MultiByteToWideChar
GetACP
GetTickCount
GetLastError
QueryPerformanceCounter
GetStartupInfoA
InterlockedCompareExchange
InterlockedExchange
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
WideCharToMultiByte
LocalFree
InitializeCriticalSection
LocalAlloc
DeleteCriticalSection
GetCurrentProcessId
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
IsBadCodePtr
lstrcpyW
GetCurrentThreadId
GlobalUnlock
WritePrivateProfileStringW
GetPrivateProfileStringW
IsBadStringPtrW
GetModuleFileNameW
GetModuleHandleA
GlobalFree
GlobalAlloc
LeaveCriticalSection
EnterCriticalSection
GetProfileStringW
lstrcmpW
LockResource
ExitProcess

user32

SetDlgItemTextW
SetPropW
GetWindowTextW
EndDialog
GetWindowTextLengthW
GetPropW
DialogBoxIndirectParamW
GetDC
SetWindowLongW
DialogBoxParamW
RemovePropW
LoadCursorW
SetCursor
MessageBeep
wvsprintfW
MessageBoxW
IsWindowEnabled
GetWindowLongW
GetFocus
EnableWindow
RegisterWindowMessageW
ShowWindow
GetWindowRect
ScreenToClient
MoveWindow
GetSysColor
DrawFocusRect
FillRect
TabbedTextOutW
GetDlgItem
GetWindowDC
ReleaseDC
CharNextW
CharPrevW
SendMessageW
LoadStringW
CharLowerBuffW
wsprintfW
IsWindow
IsCharLowerA
UpdateWindow
PostMessageW
GetDlgCtrlID

gdi32

GetObjectW
GetDeviceCaps
SetBkColor
SetTextColor
CreateSolidBrush
GetTextMetricsW
DeleteObject

advapi32

RegDeleteValueA
RegEnumKeyExA
RegEnumValueA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCloseKey
RegSetValueExW
RegCreateKeyW
RegQueryValueExW
RegOpenKeyW
RegDeleteKeyW
RegOpenKeyExW
RegDeleteKeyA
RegCreateKeyA
RegDeleteValueW
RegEnumValueW
RegEnumKeyExW
RegCreateKeyExW

msvcrt

?terminate@@YAXXZ
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_amsg_exit
_initterm
_acmdln
exit
_ismbblead
_exit
_cexit
__getmainargs
_XcptFilter

winmm

SendDriverMessage
OpenDriver
CloseDriver
waveOutGetDevCapsW
waveOutGetNumDevs
waveInGetDevCapsW
waveInGetNumDevs
waveInOpen
waveOutOpen

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0be8ac1b57999cbeca24d7ae904788ac

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

winmm

Sections

.text Size: 12KB - Virtual size: 10KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 16KB - Virtual size: 14KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 12KB - Virtual size: 10KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 16KB - Virtual size: 14KB

.rsrc
Size: 40KB - Virtual size: 36KB