c0072a5f5437b09482eda05bc5becf6bc64f51f959a3be244953429e79a3c0fa

Sharing

Copy URL

Twitter E-mail

General

Target

c0072a5f5437b09482eda05bc5becf6bc64f51f959a3be244953429e79a3c0fa
Size

320KB
MD5

41967348b569bed72051168d507e895f
SHA1

2d9b15aeac779bf11f1d7b402c2be6c2ce768077
SHA256

c0072a5f5437b09482eda05bc5becf6bc64f51f959a3be244953429e79a3c0fa
SHA512

f546907239e941e0a8549b2f5ea8dd71839670329e86d580de5577bbffb6c60c8d75f2081adf0f6798f737d5224664e362dfd686d712816b5e433424e72a9110
SSDEEP

6144:QmjycVRv2djQj+D4PvexikwXQVONWvfdW4hxA4OM7d3nyt/0DoOL1pQ1:bWcVReFQRafU4veK3s/0DoOi

Score

N/A

Malware Config

Signatures

Files

c0072a5f5437b09482eda05bc5becf6bc64f51f959a3be244953429e79a3c0fa
.dll windows x86

192fa4a585296a740bab8932c36090db

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

WOWShellExecute
SHGetSpecialFolderLocation
SHExtractIconsW
DragQueryFileAorW
CommandLineToArgvW

kernel32

CancelDeviceWakeupRequest
DeleteTimerQueueTimer
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FileTimeToSystemTime
FindResourceA
FlushInstructionCache
FreeLibrary
GetACP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetNumberOfConsoleInputEvents
GetProcessPriorityBoost
GetProcessVersion
GetQueuedCompletionStatus
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalUnfix
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
Module32First
MultiByteToWideChar
ProcessIdToSessionId
QueryPerformanceCounter
SetHandleInformation
SetPriorityClass
SizeofResource
VirtualAlloc
VirtualFree
VirtualProtect
WaitForMultipleObjectsEx
WideCharToMultiByte
lstrcmpA
lstrcmpiA
lstrcpynA
lstrlenA
HeapFree

dsound

ord10
ord1
ord11

dinput

DirectInputCreateEx

ws2_32

WSARecvDisconnect

Exports

Exports

CreateMarkers
CreatePolygon
MatrixRotationZ
mpegInSeekSample

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

192fa4a585296a740bab8932c36090db

Headers

File Characteristics

Imports

shell32

kernel32

dsound

dinput

ws2_32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 148KB - Virtual size: 147KB

.data Size: 67KB - Virtual size: 67KB

.rsrc Size: 48KB - Virtual size: 47KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 148KB - Virtual size: 147KB

.data
Size: 67KB - Virtual size: 67KB

.rsrc
Size: 48KB - Virtual size: 47KB

.reloc
Size: 3KB - Virtual size: 2KB