73c317f2f3ea4da6e22ac242b98f100a049d29dc6399af532f6f1767d3721cd1

Sharing

Copy URL Twitter E-mail

General

Target

73c317f2f3ea4da6e22ac242b98f100a049d29dc6399af532f6f1767d3721cd1
Size

142KB
MD5

d9b5603ecd8259010a2e605b797dacec
SHA1

42587b5f355029a76f57439b6034ece0cfc0da20
SHA256

73c317f2f3ea4da6e22ac242b98f100a049d29dc6399af532f6f1767d3721cd1
SHA512

f173c6b69c918381910790ef4e795ed1ff6ea373de41d1db26cc368f827fe3afa10a216c93f3ae6ce3e7a1eea8ec4ea1b5782d7cba470af89b0d263b62c6389e
SSDEEP

3072:qCIpFGWoWiLokRGaE+W5s0aODwAzZuMcgy5WcU6IU/BYqLFyoqd:qCvWNdZaEFuOHKgMJU6IU/BYe/q

Score

N/A

Malware Config

Signatures

Files

73c317f2f3ea4da6e22ac242b98f100a049d29dc6399af532f6f1767d3721cd1
.exe windows x86

e7a82a53703b03138da140da92ce1e80

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessTimes
GetQueuedCompletionStatus
GetSystemTime
GetSystemTimeAsFileTime
GetTempPathA
GetTickCount
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
IsDebuggerPresent
GetCurrentProcess
LoadLibraryA
PostQueuedCompletionStatus
QueryPerformanceCounter
QueryPerformanceFrequency
ReleaseMutex
ReleaseSemaphore
SetUnhandledExceptionFilter
SignalObjectAndWait
Sleep
TerminateProcess
TerminateThread
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObject
FormatMessageA
ExitProcess
EnterCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
CreateSemaphoreA
CreateThread
CreateMutexA
CreateIoCompletionPort
CreateEventA
CloseHandle
LeaveCriticalSection
CancelIo

dsound

ord2
ord1
ord7
ord9

dinput

DirectInputCreateA

user32

GetForegroundWindow
MessageBoxA
GetDesktopWindow

ole32

CoInitialize
CoUninitialize

shell32

CommandLineToArgvW
DragQueryFileA
DragQueryFileAorW
SHChangeNotify
SHGetInstanceExplorer
SHLoadNonloadedIconOverlayIdentifiers

advapi32

RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
InstallApplication

Exports

Exports

CreateDataObject
OpenFileStream
SetIndexRange
SwapMultiple
TextureStatus

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7a82a53703b03138da140da92ce1e80

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

dsound

dinput

user32

ole32

shell32

advapi32

Exports

Exports

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 88KB - Virtual size: 87KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 88KB - Virtual size: 87KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 2KB - Virtual size: 2KB