b298459b455c975d21335a2493cad1d0e2273453c752d13bf0b92e5395d3d94c

Sharing

Copy URL Twitter E-mail

General

Target

b298459b455c975d21335a2493cad1d0e2273453c752d13bf0b92e5395d3d94c
Size

167KB
MD5

431661efbdde692e71a2edffe4f06438
SHA1

068a9c0fbc02bc3f3417d8369d869fbb582da245
SHA256

b298459b455c975d21335a2493cad1d0e2273453c752d13bf0b92e5395d3d94c
SHA512

795d198dc31bf55fcfba854afb2a9e1a90d9c3b23b9c7bcbab66ff2d62b120eec73c48d5b729046200fac34f286fe3557bce923e79a65b542981fa5e62b644e9
SSDEEP

1536:SXqJh1bFBmTPKofezacghPdqULFUkiT107t/nILoBgY7Igoqnpt5FxAC8Pioa:DsPCa3kURUK79QoBjIgoqVFxAC8PY

Score

N/A

Malware Config

Signatures

Files

b298459b455c975d21335a2493cad1d0e2273453c752d13bf0b92e5395d3d94c
.exe windows x86

586fd35e9e68421dafbd3d6dae9ff07c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
CopyFileA
GetModuleFileNameA
Sleep
SetThreadPriority
CreateThread
GetProcessHeap
ExitProcess
HeapAlloc
GetTickCount
GetTempPathA
GetStartupInfoA
GetCommandLineA
OutputDebugStringA
HeapFree
GetLastError
GetEnvironmentVariableA
HeapReAlloc
GetStdHandle
CompareStringA
lstrcmpiA
CompareStringW
GetTempFileNameA
WriteFile
GlobalUnlock
DeleteFileA
CreateProcessA
WaitForSingleObject
GetWindowsDirectoryA
GetFileAttributesA
CreateFileA
GetFileSize
CloseHandle
ReadFile
SetFilePointer
GlobalAlloc
GlobalLock
GetModuleHandleA

user32

ShowWindow
SetWindowRgn
CreateWindowExA
GetSystemMetrics
RegisterClassExA
LoadIconA
LoadCursorA
wvsprintfA
CharLowerBuffA
CharUpperBuffA
UpdateWindow
DispatchMessageA
SendMessageA
InvalidateRect
EnableWindow
KillTimer
SetTimer
PostQuitMessage
BeginPaint
GetClientRect
wsprintfA
SetWindowTextA
TranslateMessage
GetMessageA
DrawTextA
DefWindowProcA
MessageBoxA
EndPaint

gdi32

DeleteObject
BitBlt
GetObjectA
CreateCompatibleDC
SetTextColor
SetBkMode
ExtCreateRegion
SelectObject
GetCurrentObject
CreateFontA
DeleteDC

advapi32

CryptAcquireContextA
CryptGenRandom
CryptReleaseContext

ole32

CreateStreamOnHGlobal

oleaut32

OleLoadPicture

winmm

waveOutUnprepareHeader
waveOutGetPosition
waveOutOpen
waveOutPrepareHeader
waveOutClose
waveOutReset
waveOutWrite

Sections

.code
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 128KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

586fd35e9e68421dafbd3d6dae9ff07c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

winmm

Sections

.code Size: 36KB - Virtual size: 36KB

.idata Size: 128KB - Virtual size: 132KB

.rsrc Size: 2KB - Virtual size: 4KB

.code
Size: 36KB - Virtual size: 36KB

.idata
Size: 128KB - Virtual size: 132KB

.rsrc
Size: 2KB - Virtual size: 4KB