679531b698edf058fb24b692af06eba42fe509d9b4ae0e2290d2286ccdf11b89

Sharing

Copy URL Twitter E-mail

General

Target

679531b698edf058fb24b692af06eba42fe509d9b4ae0e2290d2286ccdf11b89
Size

6.0MB
MD5

316eed405eb2eddd664d0fed6195b8b8
SHA1

68dd5f078d4b25f463a749d685b5bed61f983901
SHA256

679531b698edf058fb24b692af06eba42fe509d9b4ae0e2290d2286ccdf11b89
SHA512

0f3f4bf12894af30c18876eac06347d486414453013bb987c51c2d4ef20cc135e175288f018b092dba678d8df7de9271cb96375ef675f42063e7a85c6eabdf8a
SSDEEP

98304:KTZwKr2d4ns+9IzOL1UTl5AsqTX5yxeDF24S6CqyaiKaB+RYgoEt7vVIouS7BWsZ:81J5ycCGtVOS7BWK

Score

N/A

Malware Config

Signatures

Files

679531b698edf058fb24b692af06eba42fe509d9b4ae0e2290d2286ccdf11b89
.exe windows x86

69f76b2c40760f8a15f197f323f65e16

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegCreateKeyExA
RegCreateKeyA
RegSetValueExA

yazilar

DirectInput8Create

gdi32

EnumFontFamiliesA
AddFontResourceA
CreateDCA
CreateCompatibleBitmap
GetObjectA
SelectPalette
RealizePalette
GetDIBits
GetSystemPaletteEntries
CreatePalette
GetDeviceCaps
BitBlt
ExtTextOutA
GetTextExtentPoint32A
CreateDIBSection
SetTextColor
SetBkColor
SetTextAlign
SetMapMode
DeleteDC
CreateCompatibleDC
CreateFontA
SelectObject
DeleteObject
GetStockObject
SetBkMode
SetROP2

imm32

ImmIsIME
ImmGetContext
ImmSetStatusWindowPos
ImmReleaseContext
ImmAssociateContext

kernel32

GetTempFileNameA
CreateProcessA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
SetEvent
CreateEventA
GetSystemTime
WaitForSingleObject
SetEndOfFile
SetLastError
GetCurrentProcess
GetCurrentThreadId
OutputDebugStringA
CopyFileA
GetWindowsDirectoryA
CreateMutexA
lstrcmpiA
SetCurrentDirectoryA
lstrlenA
lstrcmpA
MulDiv
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetStdHandle
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
FlushFileBuffers
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
LCMapStringW
GetOEMCP
GetACP
GetCPInfo
TlsAlloc
HeapSize
ExitThread
TlsGetValue
TlsSetValue
GetVersion
GetCommandLineA
GetStartupInfoA
MoveFileA
GetFileAttributesA
RaiseException
HeapAlloc
HeapReAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
GetTimeZoneInformation
ExitProcess
RtlUnwind
InterlockedExchange
GetVolumeInformationA
FindFirstChangeNotificationA
FindCloseChangeNotification
OpenEventA
WaitForMultipleObjects
MultiByteToWideChar
lstrlenW
WideCharToMultiByte
GetModuleHandleA
TerminateProcess
GetProcAddress
OpenProcess
GetVersionExA
LoadLibraryA
FreeLibrary
GetPrivateProfileIntA
GetPrivateProfileStringA
CreateFileMappingA
MapViewOfFile
CreateThread
UnmapViewOfFile
GetCurrentDirectoryA
FindFirstFileA
FindClose
lstrcpynA
Sleep
GetTickCount
lstrcpyA
GetLastError
lstrcatA
DeleteFileA
GetLocalTime
SetFilePointer
GetFileSize
GlobalAlloc
GlobalFree
GetModuleFileNameA
WriteFile
CreateFileA
CloseHandle
FindNextChangeNotification
HeapFree
GlobalReAlloc
GlobalLock
GlobalUnlock
InterlockedDecrement
LCMapStringA
InterlockedIncrement
ReadFile
CreateFileW
QueryPerformanceCounter
QueryPerformanceFrequency

oleaut32

SafeArrayCreate
VariantChangeType
VariantInit
SysAllocString
VariantClear
SafeArrayAccessData
SafeArrayUnaccessData
VariantCopy

shell32

ShellExecuteA

user32

ChangeDisplaySettingsA
EnumDisplaySettingsA
AdjustWindowRect
SetRect
PtInRect
ReleaseDC
GetDC
SendMessageA
ScreenToClient
GetDoubleClickTime
IsRectEmpty
CopyRect
UnregisterClassA
GetPropA
SetPropA
FlashWindow
RegisterClassExA
SetWindowLongA
CreateWindowExA
GetKeyboardLayout
CallWindowProcA
SetFocus
SetWindowTextA
MoveWindow
GetWindowTextA
RemovePropA
wsprintfA
MessageBoxA
GetActiveWindow
DefWindowProcA
GetClientRect
PostQuitMessage
ShowCursor
GetCursorPos
SetRectEmpty
EqualRect
GetAsyncKeyState
GetClassInfoA
ClientToScreen
GetWindowThreadProcessId
GetClassNameA
GetParent
IsWindowVisible
CharUpperA
EnumWindows
SetCursor
GetCursor
DestroyWindow
ClipCursor
GetWindowRect
ShowWindow
UpdateWindow
GetSystemMetrics
EndPaint
BeginPaint
RegisterClassA
LoadIconA
DispatchMessageA
TranslateMessage
LoadCursorA
PeekMessageA
SetActiveWindow
CharLowerA
SetCursorPos

winmm

timeGetTime
PlaySoundA

soacsv2

ord11
ord52
ord57
ord115
ord116
ord14
ord8
ord3
ord15
ord12
ord16
ord10
ord9
ord23
ord111
ord21
ord4
ord101
ord19

d3d8

Direct3DCreate8

mss32

_AIL_shutdown@0
_AIL_set_redist_directory@4
_AIL_startup@0
_AIL_quick_startup@20
_AIL_quick_handles@12
_AIL_set_digital_master_room_type@8
_AIL_set_DirectSound_HWND@8
_AIL_enumerate_3D_providers@12
_AIL_open_3D_provider@4
_AIL_open_3D_listener@4
_AIL_set_3D_orientation@28
_AIL_set_3D_sample_loop_count@8
_AIL_set_3D_position@16
_AIL_quick_set_volume@12
_AIL_quick_halt@4
_AIL_end_3D_sample@4
_AIL_pause_stream@8
_AIL_set_3D_sample_volume@8
_AIL_set_stream_volume_levels@12
_AIL_quick_play@8
_AIL_set_stream_position@8
_AIL_start_stream@4
_AIL_quick_status@4
_AIL_3D_sample_status@4
_AIL_stream_status@4
_AIL_file_read@8
_AIL_file_type@8
_AIL_decompress_ASI@24
_AIL_WAV_info@8
_AIL_decompress_ADPCM@12
_AIL_quick_load_mem@8
_AIL_allocate_3D_sample_handle@4
_AIL_set_3D_sample_file@8
_AIL_open_stream@12
_AIL_set_stream_loop_count@8
_AIL_mem_free_lock@4
_AIL_quick_unload@4
_AIL_release_3D_sample_handle@4
_AIL_close_stream@4
_AIL_start_3D_sample@4

ole32

CoInitialize
CLSIDFromString
CoCreateInstance
CoUninitialize

Sections

.text
Size: 4.3MB - Virtual size: 4.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

69f76b2c40760f8a15f197f323f65e16

Headers

File Characteristics

Imports

advapi32

yazilar

gdi32

imm32

kernel32

oleaut32

shell32

user32

winmm

soacsv2

d3d8

mss32

ole32

Sections

.text Size: 4.3MB - Virtual size: 4.3MB

.rsrc Size: 28KB - Virtual size: 28KB

.text
Size: 4.3MB - Virtual size: 4.3MB

.rsrc
Size: 28KB - Virtual size: 28KB