97e31dd24abfafa371f4b8225e65eb1c406f3e7d166a6361560c0b36304977f2

General

Target

97e31dd24abfafa371f4b8225e65eb1c406f3e7d166a6361560c0b36304977f2
Size

256KB
MD5

d7f3b7fd2250f958261656b65026489f
SHA1

4e2649aa734d012eeb757655e46b26da814ec4c7
SHA256

97e31dd24abfafa371f4b8225e65eb1c406f3e7d166a6361560c0b36304977f2
SHA512

2f50c2b8bf488103a2bdea001c76153464b0be722e5054e3489269df153dfba909930fb72d40ce919ac66a55e0c5a84025fb13bec1bf296cf01d5d758ede4a66
SSDEEP

6144:00CLEIt5h0yaxEV2DC5X5Cy+CBkzVgJgrTpYM:000EIt5h/axA2IX5CVZu0KM

Score

N/A

Malware Config

Signatures

Files

97e31dd24abfafa371f4b8225e65eb1c406f3e7d166a6361560c0b36304977f2
.exe windows x86

c4768606c99bdff4ca52ad1e4eadc6bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadTimes
CreatePipe
ReleaseMutex
GetExitCodeThread
GetThreadLocale
CreateMutexA
GetUserDefaultLangID
GetOEMCP
GetShortPathNameA
GetModuleHandleA
TlsGetValue
SetEvent
AddAtomA
GetThreadPriority
CancelWaitableTimer
VirtualAlloc
CompareStringA
IsDBCSLeadByte
TlsFree
GetLargestConsoleWindowSize
GetConsoleCP

user32

IsWindowVisible
RegisterClassA
GetActiveWindow
GetWindow
GetFocus
GetSystemMetrics
IsIconic
GetWindowTextA
GetForegroundWindow
ShowWindow
GetClassInfoExA
InvalidateRect
GetClassNameA
GetDC
GetWindowTextLengthA
CloseWindow
ReleaseDC
ValidateRect
ReleaseDC

dsound

GetDeviceID
DirectSoundEnumerateA
DllGetClassObject
DllCanUnloadNow
DirectSoundCreate

mscms

CheckColors

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 33B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4768606c99bdff4ca52ad1e4eadc6bf

Headers

File Characteristics

Imports

kernel32

user32

dsound

mscms

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 1.4MB

.tls Size: 512B - Virtual size: 33B

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 1.4MB

.tls
Size: 512B - Virtual size: 33B

.rsrc
Size: 4KB - Virtual size: 4KB