47095f03cb59cb2fa58273d5af5fd112e3db91cc082100d70097725bfb8155e3

Sharing

Copy URL

Twitter E-mail

General

Target

47095f03cb59cb2fa58273d5af5fd112e3db91cc082100d70097725bfb8155e3
Size

254KB
MD5

709a8e0d73ca1cc6e5dc63d5446c0d48
SHA1

7cc944d2419c94ca934b7ecf09dc40fac112edec
SHA256

47095f03cb59cb2fa58273d5af5fd112e3db91cc082100d70097725bfb8155e3
SHA512

38c41c5effd87d16478f5aa877434744fa3fa4db7014434047c0448081a1f3633ed2f56bdcb695fdd5ba6229af42ce9a9e8c69db37bfed6349c3fbfa4c39f375
SSDEEP

6144:FUz+1IJF4xBmAM684UDgLyZxlrL1FF4NZdnmh9aJW:QhJKa46Z/LV4NHnmhEQ

Score

N/A

Malware Config

Signatures

Files

47095f03cb59cb2fa58273d5af5fd112e3db91cc082100d70097725bfb8155e3
.exe windows x86

3fdb1f10f4f5355a7bc87cf29a6c9273

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

EndUpdateResourceA
GetVersionExA
FlushViewOfFile
GetVersion
OpenSemaphoreA
WriteProfileStringA
CancelWaitableTimer
SetStdHandle
LocalFileTimeToFileTime
GetConsoleFontInfo
SignalObjectAndWait
CreateDirectoryExA
SetPriorityClass
LocalAlloc
GetCurrentThread
HeapReAlloc
GetSystemRegistryQuota
SetFileAttributesA
OpenSemaphoreA
GetFileTime
FileTimeToDosDateTime
SetLocaleInfoA
GlobalFree
OpenFileMappingA
GetLocalTime
GetThreadTimes
UnlockFileEx
GetNumberOfConsoleMouseButtons
SetConsoleOutputCP
LocalFlags
RaiseException
ProcessIdToSessionId
GetOEMCP
CopyFileExA
FileTimeToSystemTime
IsBadStringPtrA
GetUserDefaultLCID
GetConsoleTitleA
VirtualLock
WriteConsoleInputA
ReadConsoleInputA
FindResourceExA
CreateSemaphoreA
GlobalDeleteAtom
MoveFileExA
QueryPerformanceCounter
SystemTimeToTzSpecificLocalTime
SetInformationJobObject
GetConsoleTitleA
CloseHandle
GetVolumePathNameA
ReadConsoleA
GetNumberOfConsoleFonts
GetCurrentProcess
SetConsoleDisplayMode
_lwrite
AddConsoleAliasA
GetDiskFreeSpaceA
WriteProcessMemory
GetCompressedFileSizeA
CreateDirectoryA
FlushConsoleInputBuffer
OpenProcess
GetEnvironmentVariableA
BeginUpdateResourceA
GetCurrentDirectoryA
FileTimeToDosDateTime
IsBadHugeWritePtr
UnmapViewOfFile
IsBadWritePtr
SetFirmwareEnvironmentVariableA
DeleteTimerQueueEx
Process32Next
WritePrivateProfileStructA
ConnectNamedPipe
LocalUnlock
SetConsoleNumberOfCommandsA
CreateDirectoryExW
VirtualAllocEx
EnumUILanguagesA
SetFilePointerEx
GetDefaultCommConfigA
OpenEventA
FindNextChangeNotification
RemoveDirectoryA
SetFileAttributesA
GetDriveTypeA
FreeLibrary
IsDebuggerPresent
ExitProcess
lstrcatA
GetCurrentProcessId
WriteConsoleOutputCharacterA
FindFirstFileA
VirtualUnlock
SetEndOfFile
OpenProcess
FindFirstVolumeA
Heap32ListFirst
IsBadReadPtr
GetConsoleAliasExesLengthW
MapUserPhysicalPagesScatter
SetConsoleTitleA
lstrcpyA
SetConsoleScreenBufferSize
SetProcessShutdownParameters
GlobalMemoryStatus
ExpandEnvironmentStringsA
SignalObjectAndWait
SetThreadLocale
lstrcpyn
GetThreadPriorityBoost
GlobalAlloc
TermsrvAppInstallMode
GetThreadSelectorEntry
GetCurrentConsoleFont
GetFileType
GetStdHandle
GetOverlappedResult
DeleteTimerQueue
ReadConsoleInputA
GetPriorityClass
GetThreadLocale
QueryMemoryResourceNotification
GetComputerNameA
GetProcessHeaps
GetConsoleTitleA
UnlockFileEx
GetConsoleTitleA
IsValidCodePage
IsBadStringPtrA
WriteConsoleOutputAttribute
VirtualProtectEx
WriteProcessMemory
HeapQueryInformation
ReadConsoleA
EnumResourceNamesA
GetCurrencyFormatA
ConnectNamedPipe
IsBadReadPtr
LZCloseFile
CreateFileMappingA
lstrcatA
WriteConsoleInputA
GetDiskFreeSpaceExA
ConnectNamedPipe
MoveFileWithProgressA
Heap32ListNext
GetDriveTypeA
UnregisterWait
OutputDebugStringA
GetVolumePathNamesForVolumeNameA
SetCurrentDirectoryA
GetConsoleInputExeNameA
GetTempPathA
GlobalGetAtomNameA
RemoveDirectoryA
HeapSize
GetDevicePowerState
GetConsoleAliasExesLengthA
WriteConsoleOutputCharacterA
LockFileEx
SetEvent
GetDriveTypeA
GetConsoleCursorInfo
GetLogicalDriveStringsA
ChangeTimerQueueTimer
GetPriorityClass
GetCurrentThread
VirtualQueryEx
EnumSystemLanguageGroupsA
GetDllDirectoryA
GetPrivateProfileSectionA
lstrcmpA
WritePrivateProfileSectionA
GetComputerNameA
EnumResourceNamesA
WritePrivateProfileSectionA
GetCurrentProcessId
TermsrvAppInstallMode
SetThreadIdealProcessor
GetNamedPipeInfo
GetThreadIOPendingFlag
ReleaseMutex
GetExitCodeProcess
GetPrivateProfileStringA
UpdateResourceA
IsBadCodePtr
FindVolumeMountPointClose
GetThreadLocale
TransmitCommChar
GetSystemDirectoryA
CreateSocketHandle
GetConsoleWindow
OpenEventA
GetPriorityClass
CreateWaitableTimerA
GetSystemDefaultUILanguage
GetFileAttributesExA
GetDllDirectoryA
LoadLibraryA
ExitProcess
FindFirstFileA
GetComputerNameExA
GetCommandLineA
lstrcmpi
SetConsoleMode
VerifyVersionInfoA
GetAtomNameA
SetThreadContext
SetSystemPowerState
MoveFileWithProgressA
GetProcessHeaps
GetModuleHandleA
GetCommandLineA
GetTickCount
EnumResourceLanguagesA
GetUserDefaultLangID
WriteConsoleOutputA
GetVDMCurrentDirectories
GetConsoleOutputCP
VerifyVersionInfoA
LCMapStringA
TransmitCommChar
OpenFile
GetConsoleWindow
SetProcessPriorityBoost
GetProcessVersion
FindNextVolumeA
GetFileAttributesExA
GetCommTimeouts
CreateSocketHandle
CreateThread
CloseConsoleHandle
GetConsoleCursorMode
GetConsoleAliasExesLengthA

user32

PostMessageA
MenuWindowProcA
PostMessageA
AllowSetForegroundWindow
DrawFocusRect
GetWindowModuleFileNameA
DlgDirSelectComboBoxExA
UnloadKeyboardLayout
GetSystemMetrics
SetWindowLongA
ExcludeUpdateRgn
GetWinStationInfo
SetThreadDesktop
DlgDirListComboBoxW
EnumDesktopWindows
EnumDesktopsA
GetDoubleClickTime
DefWindowProcA
SetCursorContents
EndMenu
GetClipboardData
SendMessageCallbackA
IsHungAppWindow
GetWindowTextLengthA
LockWindowStation
AdjustWindowRect
GetMenu
GetWindowRect
GetGUIThreadInfo
ScrollWindow
GetTitleBarInfo
SetScrollPos
DeviceEventWorker
MoveWindow
ToAscii
GetDlgItem
EndDeferWindowPos
ModifyMenuA
LoadMenuA
LoadBitmapA
RegisterDeviceNotificationA
SetCapture
IsGUIThread
EndTask
GetDlgItemTextA
PostThreadMessageA
TabbedTextOutA
LoadIconA
GetGuiResources
GetScrollBarInfo
UpdateLayeredWindow
CopyAcceleratorTableA
CreateWindowExA
PrivateExtractIconExA
DestroyMenu
CharPrevExA
GetKeyState
SendInput
DrawMenuBarTemp
GetInternalWindowPos
CharLowerBuffW
OpenClipboard
OemToCharBuffW
SetCursorPos
GetClientRect
MessageBoxExA
ReasonCodeNeedsBugID
GetDialogBaseUnits
GetKeyboardLayoutList
GetClipboardFormatNameA
EnumDisplaySettingsExA
DrawStateA
MapWindowPoints
CreateWindowExA
CharLowerBuffA
EnableWindow
ReplyMessage
EnumDesktopsA
RealGetWindowClassA
EnumDisplayDevicesA
GetGUIThreadInfo
GetRawInputData
GetKeyboardState
SetThreadDesktop
DrawTextA
GetKeyState
CharUpperBuffA
EnumChildWindows
DrawTextA
SetWindowsHookExA
CreateCursor
RegisterClassExA
DlgDirSelectComboBoxExA
RemovePropA
UnhookWindowsHookEx
SetWindowLongA
GetDlgItemInt
CharToOemBuffA
OpenWindowStationA
MenuItemFromPoint
GetMessageTime
RealGetWindowClassA
OpenWindowStationA
FindWindowExA
UnloadKeyboardLayout
RegisterHotKey
GetLayeredWindowAttributes
SetSysColorsTemp
CreateWindowStationW
DrawTextExW
TranslateMessageEx
GetThreadDesktop
UpdateLayeredWindow
CreateDesktopA
PostThreadMessageA
GetWindowTextLengthA
GetScrollRange
CreateWindowExA
TabbedTextOutA
RemovePropA
BeginPaint
SetWindowRgn
GetPropA
GetWindowRect
PostMessageA
GetInputDesktop
SwitchDesktop
SetWindowPos
LoadCursorA
CallMsgFilterA
PrivateExtractIconsA
GetWindowRgn
CalcMenuBar
GetClassLongA
LoadAcceleratorsA
DestroyWindow
MapDialogRect
GetCursorFrameInfo
CloseWindow
LoadAcceleratorsA
LockSetForegroundWindow
BeginDeferWindowPos
MessageBeep
GetSubMenu
DefFrameProcA
CharLowerBuffW
CloseWindow
GetMessageTime
CharPrevA
SetWindowsHookExA
GetUserObjectInformationA
SetDlgItemTextA
PaintDesktop
MapVirtualKeyExW
SwitchDesktop
ModifyMenuA
GetNextDlgGroupItem
LockWindowStation
GetMenuItemCount
DefFrameProcA
SetDlgItemInt
LoadCursorA
RemovePropA
SetDlgItemTextA
SwapMouseButton
MenuWindowProcA
DlgDirListComboBoxA
GetMessageA
GetCursorInfo
SetMenuItemInfoA
IsServerSideWindow
DefDlgProcA
ShowCursor
IsRectEmpty
UnhookWinEvent
LoadRemoteFonts
BroadcastSystemMessageA
GetGUIThreadInfo
GetUserObjectInformationA
GetDlgItemTextA
GetDCEx
OpenInputDesktop
MessageBoxTimeoutA
GetTabbedTextExtentA
GetKeyNameTextA
OffsetRect
DestroyAcceleratorTable
ShowWindowAsync
GetSysColorBrush
GetCaretPos
OemToCharBuffA
ReplyMessage
EndDialog
RegisterDeviceNotificationA
GetParent
RemovePropA
GetKeyState
MonitorFromRect
MessageBoxIndirectA
CreateAcceleratorTableA
GetMenuCheckMarkDimensions
RemovePropA
DlgDirListComboBoxA
SetTimer
GetWindowRgn
SetCursorPos
GetTaskmanWindow
SetParent

opengl32

glGetBooleanv

ddraw

DirectDrawCreate

shell32

DragAcceptFiles
DragFinish

d3d8

Direct3DCreate8

avifil32

AVIBuildFilter

msvfw32

VideoForWindowsVersion

Sections

CODE
Size: 238KB - Virtual size: 237KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 492B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3fdb1f10f4f5355a7bc87cf29a6c9273

Headers

File Characteristics

Imports

kernel32

user32

opengl32

ddraw

shell32

d3d8

avifil32

msvfw32

Sections

CODE Size: 238KB - Virtual size: 237KB

DATA Size: 512B - Virtual size: 492B

BSS Size: 512B - Virtual size: 331KB

.idata Size: 11KB - Virtual size: 10KB

.tls Size: - Virtual size: 36B

.rdata Size: - Virtual size: 3KB

.reloc Size: 512B - Virtual size: 500B

.rsrc Size: 3KB - Virtual size: 2KB

CODE
Size: 238KB - Virtual size: 237KB

DATA
Size: 512B - Virtual size: 492B

BSS
Size: 512B - Virtual size: 331KB

.idata
Size: 11KB - Virtual size: 10KB

.tls
Size: - Virtual size: 36B

.rdata
Size: - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 500B

.rsrc
Size: 3KB - Virtual size: 2KB