14612aa63d67c40a55e12be157162c534a06d4d2c0e594357f29a95a757a54c0

Sharing

Copy URL Twitter E-mail

General

Target

14612aa63d67c40a55e12be157162c534a06d4d2c0e594357f29a95a757a54c0
Size

144KB
MD5

0c73a4f7e11d7e2b6e918ae167126480
SHA1

9f53e8d95182960c9268b7f1f3766e4cf60e39e3
SHA256

14612aa63d67c40a55e12be157162c534a06d4d2c0e594357f29a95a757a54c0
SHA512

317b2c43058167556167bc2aec9a80a2bbadec6c5bdbd7abe1bcc16c103296fa6bd6cfbaed82527e49ace713f72beb9e1ec6a0d8e69fb179bd1ad5b19ea9ea4b
SSDEEP

3072:PUOkLzvYXVOu642UQx3eZIE3vfcoAuCJDGDCbx+:P2LzvYXVCE3sbL

Score

N/A

Malware Config

Signatures

Files

14612aa63d67c40a55e12be157162c534a06d4d2c0e594357f29a95a757a54c0
.exe windows x86

35e669b1343a75f0127dfe75e7713f66

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord241
ord1206
ord1222
ord924
ord1277
ord827
ord569
ord1323
ord1062
ord1275
ord961
ord83
ord1348
ord357
ord391
ord830
ord363
ord582
ord456
ord1345
ord1344
ord662
ord847
ord167
ord284
ord352
ord906
ord500
ord1343
ord515
ord212
ord742
ord455
ord1180
ord1341
ord1342
ord1346
ord722
ord718
ord721
ord720
ord85
ord133
ord1116
ord842
ord838
ord1279
ord871
ord532
ord694
ord705
ord1357
ord1363
ord712
ord390
ord388
ord392
ord1064
ord1063
ord184
ord1045
ord1214
ord780
ord1263
ord1050
ord373
ord754
ord750
ord1266
ord677
ord478
ord1228
ord1141
ord1226
ord1229
ord614
ord1137
ord477
ord475
ord1303
ord356
ord355
ord568
ord1241
ord451
ord1221
ord676
ord393
ord612
ord534
ord701
ord725
ord872
ord616
ord619
ord813
ord815

user32

ord1661
ord1659
ord1657
ord1664
ord1618
ord2013
ord2052
ord2171
ord1805
ord2227
ord1804
ord1725
ord1574
ord2223
ord2018
ord2078
ord1572
ord1727
ord1785
ord1798
ord2126
ord2139
ord1806
ord2168
ord1680
ord1531
ord2298
ord1675
ord1854
ord2274
ord1723
ord2331
ord2144
ord1984
ord2248
ord1921
ord2039
ord1907
ord2220
ord1809
ord1993
ord2080
ord2321
ord1985
ord2075
ord2277
ord1683
ord1851
ord1847
ord2034
ord1887
ord2272
ord1865
ord2134
ord2325
ord2260
ord2281
ord1846
ord1852
ord1891
ord1914
ord2231
ord2004
ord1997
ord1888
ord2100
ord1530
ord2333

gdi32

ord1072
ord1242
ord1661
ord1561
ord1096
ord1553
ord1643
ord1073
ord1471

comdlg32

ord113

comctl32

ord17
ord6
ord22

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

winmm

ord151

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

encmpc

ord3
ord4
ord2
ord5
ord1

pichelp

ord2
ord1
ord3

mpcplay

ord2
ord1

mpgaudio

ord19
ord15
ord17
ord14
ord22
ord11
ord12

waveout

ord1
ord4
ord5

encmpa

ord5
ord8
ord9
ord12
ord3
ord1
ord6
ord4
ord2

waverec

ord5
ord3
ord6
ord2
ord1
ord4

recvapi

ord4
ord5
ord2
ord3
ord6

sendapi

ord3
ord4
ord2

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35e669b1343a75f0127dfe75e7713f66

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

comctl32

version

winmm

avicap32

encmpc

pichelp

mpcplay

mpgaudio

waveout

encmpa

waverec

recvapi

sendapi

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 32KB - Virtual size: 296KB

.rsrc Size: 20KB - Virtual size: 16KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 32KB - Virtual size: 296KB

.rsrc
Size: 20KB - Virtual size: 16KB