3a772b0beef661d08e07f8e3951b29ab4bab53baf1a07eafd1c23e79d8fc386e

Sharing

Copy URL Twitter E-mail

General

Target

3a772b0beef661d08e07f8e3951b29ab4bab53baf1a07eafd1c23e79d8fc386e
Size

61KB
MD5

517f9cc294b389ea03bfcc79d816dfa5
SHA1

42cd3a88f2d22e844d38ff07cd61e9d1668d8ee5
SHA256

3a772b0beef661d08e07f8e3951b29ab4bab53baf1a07eafd1c23e79d8fc386e
SHA512

3b555183480d4f017150c9fbfebfad72e55aaf25d361b9da87d84b9285f5f742e95e2dfecd15c8bd0042fbe5a6dccba7c0dbd6b149aaa5116a62276d9c1ec60d
SSDEEP

1536:dm06IA0qwUWaBzrr3rrYozxdNjmjSuVF4Y5HU5:dX6I+8aBbn/zxnj0Nr4Y5HQ

Score

N/A

Malware Config

Signatures

Files

3a772b0beef661d08e07f8e3951b29ab4bab53baf1a07eafd1c23e79d8fc386e
.exe windows x86

b527cd8232804813a6a28b042e232951

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PulseEvent
LoadLibraryA
VirtualAlloc
LockFile
EnterCriticalSection
GetCurrentDirectoryA
GetSystemDefaultLCID
WritePrivateProfileSectionA
GetCommandLineA
SleepEx
CreatePipe
VirtualFree
EndUpdateResourceA
GetLastError
ExitProcess
ReplaceFileA
GetLongPathNameW
GetDiskFreeSpaceA
GetProfileStringA
OutputDebugStringA
GetModuleHandleA
LocalReAlloc
ReplaceFileW
GetFileType
LocalHandle

msvcrt

putc
memcpy
tanh
_wfindfirsti64
mbtowc
is_wctype
_atoi64
ispunct
_mbsnbcmp
_mkdir

gdi32

CreateDIBSection
GetTextExtentPoint32W
SetDIBitsToDevice
GetObjectW
GetTextExtentExPointW
GetDIBits
SetMapMode
GetDeviceCaps
CreateCompatibleDC
GetCurrentObject
CreateFontIndirectW

user32

LoadCursorW
FindWindowW
GetDlgItemTextW
LoadImageW
LoadCursorFromFileA
GetMenu
CreateDialogParamW
GetClassLongW
IntersectRect
IsWindowEnabled
PostQuitMessage
MoveWindow
DefWindowProcW
EndDialog
InsertMenuItemW

winmm

aux32Message
waveInStop
midiInGetErrorTextW
mixerOpen
mmTaskSignal
mmDrvInstall
waveOutGetPitch
DrvGetModuleHandle
waveOutMessage
midiStreamPause
timeGetDevCaps
SendDriverMessage
waveOutWrite
midiStreamPosition

Exports

Exports

XfbLfvk
RdWlpejJsastZg
OrpWfowleaBqtmoLyhmrlHla

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b527cd8232804813a6a28b042e232951

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

winmm

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 28KB - Virtual size: 28KB

.reloc Size: 512B - Virtual size: 52B

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 28KB - Virtual size: 28KB

.reloc
Size: 512B - Virtual size: 52B