fb47f4ae553ea1559a1dfd23f1345cd0b6008998d7877cc2379dc6bbb9c48d30

Sharing

Copy URL Twitter E-mail

General

Target

fb47f4ae553ea1559a1dfd23f1345cd0b6008998d7877cc2379dc6bbb9c48d30
Size

86KB
MD5

3396920404c65a8e7f559f241f5fb245
SHA1

2f7b9a059e8fc9d513d5db35f7f133e5838aff47
SHA256

fb47f4ae553ea1559a1dfd23f1345cd0b6008998d7877cc2379dc6bbb9c48d30
SHA512

b74612e550b24a90babd5a9ad642e9914d6b44d0c382f1f20c0de52f0cd28903f720326e7caef4e4502d465d9035edfcc62b7897dda52b814f217693512b14c5
SSDEEP

1536:35ISRCI7TwBdHLq9zvZZoij3TWaQA6OLXCcoYUEuAF:3gPbHLwvZZoij6IzuA

Score

N/A

Malware Config

Signatures

Files

fb47f4ae553ea1559a1dfd23f1345cd0b6008998d7877cc2379dc6bbb9c48d30
.exe windows x86

2c0aa1b24ef979c0da7211d1127fded8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VerLanguageNameA
GetDateFormatA
WaitForMultipleObjects
VirtualProtect
CreateMutexA
GetModuleHandleA
GetProcAddress
GetComputerNameA
ReleaseSemaphore
VirtualAlloc
FreeEnvironmentStringsA
GetCommandLineA
CreateSemaphoreA
GetCurrentThreadId
GetTickCount
GetEnvironmentVariableA
CloseHandle
ResetEvent
OpenSemaphoreA
LocalReAlloc
GetModuleFileNameA
GetLastError
GetFullPathNameA
HeapFree
GetStartupInfoA
GetVersion
ExitProcess
GetCurrentDirectoryA
GetDriveTypeA
HeapAlloc
EnterCriticalSection
LeaveCriticalSection
ReadFile
FlushFileBuffers
WriteFile
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
SetFilePointer
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
RtlUnwind
SetStdHandle
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW

version

GetFileVersionInfoA
VerQueryValueA
VerInstallFileA
GetFileVersionInfoSizeA
VerFindFileA

avifil32

AVIStreamGetFrame
AVIMakeFileFromStreams
AVIFileOpenA
AVIStreamTimeToSample
CreateEditableStream
AVISaveOptions
AVIPutFileOnClipboard
EditStreamSetNameW

avicap32

capCreateCaptureWindowA

msvfw32

GetOpenFileNamePreviewA
ICInfo
ICImageCompress
ICSeqCompressFrameEnd

uxtheme

IsThemeActive

ws2_32

shutdown
getpeername
socket
inet_addr
sendto
closesocket
bind
htonl
getprotobynumber
listen
ntohs
gethostbyaddr
setsockopt
select
gethostbyname

wsnmp32

ord900
ord600
ord902
ord220
ord501

Sections

.text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c0aa1b24ef979c0da7211d1127fded8

Headers

File Characteristics

Imports

kernel32

version

avifil32

avicap32

msvfw32

uxtheme

ws2_32

wsnmp32

Sections

.text Size: 29KB - Virtual size: 28KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 3KB - Virtual size: 14KB

.rsrc Size: 42KB - Virtual size: 41KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 29KB - Virtual size: 28KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 3KB - Virtual size: 14KB

.rsrc
Size: 42KB - Virtual size: 41KB

.reloc
Size: 4KB - Virtual size: 3KB