ddd67c9bb3d68a1504b5945d57f80ec4cda0ae7c6df1e43cde2073b3986c784b

Sharing

Copy URL Twitter E-mail

General

Target

ddd67c9bb3d68a1504b5945d57f80ec4cda0ae7c6df1e43cde2073b3986c784b
Size

68KB
MD5

84644aa152d9886969a0144121ef7fe1
SHA1

e7e26faadf08e94a4bc2c350d006dc5727a77324
SHA256

ddd67c9bb3d68a1504b5945d57f80ec4cda0ae7c6df1e43cde2073b3986c784b
SHA512

16fa9e89d68c81b67fa865feb8529ae0c7a9bfdf2c1bc99e58a17f3e0c005c60818b625a04b3bffc9cb5950bdf1f0c43ef99ec32b3b89065856440903fbca145
SSDEEP

1536:E2xmlurqbXfQh+/9vjiMDkns4xTSpSJmDZ128AsiWXLdADw:E2xq0h09v9kszX289XLdew

Score

N/A

Malware Config

Signatures

Files

ddd67c9bb3d68a1504b5945d57f80ec4cda0ae7c6df1e43cde2073b3986c784b
.exe windows x86

f7ab2d40e604fad342b9a6a3458ba5ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemAlloc
CoTaskMemFree

kernel32

EnterCriticalSection
GetVersionExA
GetProcessHeap
GetCurrentProcess
GetTickCount
InterlockedCompareExchange
InterlockedDecrement
GetEnvironmentStrings
HeapFree
GetCurrentProcessId
DeviceIoControl
GetProcAddress
IsProcessorFeaturePresent
FreeEnvironmentStringsA
GetModuleFileNameA
FreeEnvironmentStringsW
InterlockedExchange
SetUnhandledExceptionFilter
InitializeCriticalSection
GetLocalTime
GetModuleHandleW
TerminateProcess
QueryPerformanceCounter
LeaveCriticalSection
GetSystemInfo
GetSystemTimeAsFileTime
GetCurrentThreadId
DeleteCriticalSection
GlobalMemoryStatus
UnhandledExceptionFilter
GetDiskFreeSpaceA
GetEnvironmentStringsW
HeapAlloc
VirtualAlloc
lstrlenW
CloseHandle
LoadLibraryA
lstrlenA
InterlockedIncrement

avifil32

AVIFileInfo

gdi32

GetSystemPaletteEntries

msvcrt

_except_handler3
_adjust_fdiv
_onexit
_initterm
_chdir
_purecall
exit
_beginthread
_beep

msdmo

MoCopyMediaType
DMORegister
MoFreeMediaType
MoInitMediaType
DMOUnregister

user32

GetDC
ReleaseDC
IsRectEmpty
GetDesktopWindow

shlwapi

SHDeleteKeyA

advapi32

RegCloseKey
RegOpenKeyExA
RegCreateKeyA
RegCreateKeyExA
RegSetValueExA
RegSetValueA
RegQueryValueExA
RegOpenKeyA

Sections

.textbss
Size: - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7ab2d40e604fad342b9a6a3458ba5ad

Headers

DLL Characteristics

File Characteristics

Imports

ole32

kernel32

avifil32

gdi32

msvcrt

msdmo

user32

shlwapi

advapi32

Sections

.textbss Size: - Virtual size: 1.2MB

.idata Size: 2KB - Virtual size: 2KB

.text Size: 512B - Virtual size: 472B

.reloc Size: 512B - Virtual size: 44B

.rsrc Size: 77KB - Virtual size: 77KB

.textbss
Size: - Virtual size: 1.2MB

.idata
Size: 2KB - Virtual size: 2KB

.text
Size: 512B - Virtual size: 472B

.reloc
Size: 512B - Virtual size: 44B

.rsrc
Size: 77KB - Virtual size: 77KB