f66bb518420630dc939faa42bdf5ff58a2c412232d574accd94114888b897dc7

Sharing

Copy URL Twitter E-mail

General

Target

f66bb518420630dc939faa42bdf5ff58a2c412232d574accd94114888b897dc7
Size

616KB
MD5

28c39553f919e2b62860c530e8af7386
SHA1

087df12e2b55b2a7d8dee4487a782010be161b38
SHA256

f66bb518420630dc939faa42bdf5ff58a2c412232d574accd94114888b897dc7
SHA512

4e3f589ff1957e1819cae9386080d21e3c6399133042ab7003aa74a798c84567610745dc9466cae6efb0a4c0a0399b82796b45bec02bce3571fd197afc3959a5
SSDEEP

12288:SibUTHO3BXvwbjgx1bYpDuPMeE6YWj+yyhIY+24r4k:7bUTwX4bUxpmJ6h6Janr

Score

N/A

Malware Config

Signatures

Files

f66bb518420630dc939faa42bdf5ff58a2c412232d574accd94114888b897dc7
.exe windows x86

5bd901154a801cc5b38ce757178e07da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
LoadLibraryA
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
SetStdHandle
LCMapStringW
LCMapStringA
RaiseException
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
FlushFileBuffers
GetFileAttributesA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetModuleFileNameA
WriteFile
GetFileType
GetStdHandle
IsBadReadPtr
SetFilePointer
ReadFile
HeapSize
GetProcAddress
HeapReAlloc
HeapAlloc
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteFileA
MoveFileA
GetCurrentProcess
TerminateProcess
ExitProcess
HeapFree
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
IsBadCodePtr
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
MulDiv
GetCurrentDirectoryA
GetPrivateProfileStringA
GetTimeFormatA
GetPrivateProfileIntA
MultiByteToWideChar
CreateFileA
GetFileTime
CloseHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVersionExA
GetDateFormatA
SetHandleCount
GetLastError
WideCharToMultiByte

user32

GetWindowRect
ClientToScreen
GetClientRect
SetWindowTextA
SetDlgItemTextA
SendDlgItemMessageA
EndDialog
ShowWindow
EnableWindow
GetDlgItem
GetDlgItemTextA
PostMessageA
DefWindowProcA
WaitMessage
DestroyCursor
LoadCursorFromFileA
LoadCursorA
ReleaseCapture
SetCapture
DrawMenuBar
RedrawWindow
GetSystemMetrics
SetCursorPos
PeekMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
PostQuitMessage
DialogBoxParamA
LoadIconA
RegisterClassA
CreateWindowExA
UpdateWindow
LoadAcceleratorsA
ShowCursor
SetCursor
GetForegroundWindow
MessageBoxA

winmm

timeBeginPeriod
timeEndPeriod
waveOutSetVolume
auxSetVolume
mciSendStringA
timeGetTime

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ole32

CoCreateInstance
CoUninitialize
CoInitialize

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey

gdi32

SetTextColor
SetBkColor
SelectObject
GetTextExtentPoint32A
DeleteObject
DeleteDC
GetStockObject
CreateFontA
GetDeviceCaps
SetMapMode
CreateDIBSection
CreateCompatibleDC
SetTextAlign
ExtTextOutA

shell32

ShellExecuteA

d3d8

Direct3DCreate8

dsound

ord11

Sections

.text
Size: 484KB - Virtual size: 482KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5bd901154a801cc5b38ce757178e07da

Headers

File Characteristics

Imports

kernel32

user32

winmm

comdlg32

ole32

advapi32

gdi32

shell32

d3d8

dsound

Sections

.text Size: 484KB - Virtual size: 482KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 16KB - Virtual size: 1.4MB

.rsrc Size: 92KB - Virtual size: 90KB

.text
Size: 484KB - Virtual size: 482KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 16KB - Virtual size: 1.4MB

.rsrc
Size: 92KB - Virtual size: 90KB