a426605093cc09fc3576fbeb81ec345e6f4285824bc8a04480ff4d10b0e72bab

Sharing

Copy URL

Twitter E-mail

General

Target

a426605093cc09fc3576fbeb81ec345e6f4285824bc8a04480ff4d10b0e72bab
Size

143KB
MD5

84955d89b26d489d5742a1f0afe6dd71
SHA1

43f160bf2bd3e3451de8b76f25374f02a35f1cf1
SHA256

a426605093cc09fc3576fbeb81ec345e6f4285824bc8a04480ff4d10b0e72bab
SHA512

870e1661eb7eae29b4c5ab176c3865dd9d62a561e3bfa579f2f6157264e726a16c0ecb6a45d75c62ed27aed8b46152572359b04de7711f0536afb01fb206f120
SSDEEP

3072:3/wH6/BkVaC11Qf7C7UBsUphvIhVRqX/Bw4SfMxwVaZvjMwh7v4HfB+0PMZ:3s65kVaCAf7C7UBsUpGrRqD7xwVaZvjB

Score

N/A

Malware Config

Signatures

Files

a426605093cc09fc3576fbeb81ec345e6f4285824bc8a04480ff4d10b0e72bab
.dll windows x86

0cb37cbda75353a06e3b201520b30fea

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoInitialize

dsound

ord2
ord1
ord6
ord9

advapi32

ImpersonateLoggedOnUser
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
LsaEnumerateTrustedDomainsEx

kernel32

AllocateUserPhysicalPages
CancelIo
ClearCommBreak
ClearCommError
CloseHandle
CreateEventA
CreateIoCompletionPort
CreateMutexA
CreateSemaphoreA
CreateThread
DeleteCriticalSection
DeleteFiber
EnterCriticalSection
ExitProcess
FileTimeToLocalFileTime
FlushConsoleInputBuffer
FormatMessageA
FreeUserPhysicalPages
GetConsoleCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessTimes
GetQueuedCompletionStatus
GetSystemTime
GetSystemTimeAsFileTime
GetTempPathA
Heap32ListNext
HeapAlloc
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
IsDebuggerPresent
LeaveCriticalSection
LoadLibraryA
OpenFile
PostQueuedCompletionStatus
QueryPerformanceCounter
QueryPerformanceFrequency
RegisterWaitForSingleObjectEx
ReleaseMutex
ReleaseSemaphore
ResetWriteWatch
SetMessageWaitingIndicator
SetSystemTime
SetThreadPriority
SetUnhandledExceptionFilter
SignalObjectAndWait
TerminateThread
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
VirtualProtectEx
WaitForMultipleObjectsEx
WriteFileGather

shell32

DragFinish
RealShellExecuteW
SHAppBarMessage
SHBindToParent

dinput

DirectInputCreateA

Exports

Exports

ADeviceInputPCM
BeginSession
BrowseForFolder
ExecuteSql
IsDigit
strtrimW

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0cb37cbda75353a06e3b201520b30fea

Headers

DLL Characteristics

File Characteristics

Imports

ole32

dsound

advapi32

kernel32

shell32

dinput

Exports

Exports

Sections

.text Size: 50KB - Virtual size: 49KB

.rdata Size: 78KB - Virtual size: 78KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 50KB - Virtual size: 49KB

.rdata
Size: 78KB - Virtual size: 78KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 5KB - Virtual size: 5KB