e549f4766b67ecac06256cff17ad1bc7ad46ffee6794355b2232fba85793d0c2

Sharing

Copy URL Twitter E-mail

General

Target

e549f4766b67ecac06256cff17ad1bc7ad46ffee6794355b2232fba85793d0c2
Size

120KB
MD5

04ca1fca647ce055742d558a0d5b9c08
SHA1

c6ee027ba72508379849191baf661719b921b171
SHA256

e549f4766b67ecac06256cff17ad1bc7ad46ffee6794355b2232fba85793d0c2
SHA512

303c135e58b15f95fede07f757e8ee24cffa77465064c32c9833fb925762635be9438032426c7ae8c8ecd23f4e55e9d30c0959cf69855eb18bd8145c2f705812
SSDEEP

1536:fZzbyVjH4gE2LgzwWTWVXpF5b51rgQWyKteamJU0CEF6/+oihS:9IBDLuwW6VX75b51rgDyvamJ3Cy6/+o

Score

N/A

Malware Config

Signatures

Files

e549f4766b67ecac06256cff17ad1bc7ad46ffee6794355b2232fba85793d0c2
.exe windows x86

67cacce98064a4dc5a9553da0aca60a2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
UpdateWindow
TranslateMessage
ShowWindow
SetRect
SetClipboardData
ScreenToClient
ReleaseDC
RegisterClassA
PostThreadMessageA
PeekMessageA
OpenClipboard
MsgWaitForMultipleObjects
LoadCursorA
GetSystemMetrics
GetQueueStatus
GetForegroundWindow
GetDC
EmptyClipboard
DispatchMessageA
DestroyWindow
DefWindowProcA
DefDlgProcW
CreateWindowExA
CloseClipboard
ClientToScreen
CharToOemA
AdjustWindowRect

advapi32

SetSecurityDescriptorDacl
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
OpenProcessToken
InitializeSecurityDescriptor
InitializeAcl
GetSecurityDescriptorDacl
GetLengthSid
GetAce
EqualSid
ElfRegisterEventSourceA
CryptExportKey
CryptEnumProvidersW
AllocateAndInitializeSid
AddAce
AddAccessAllowedAce
StartServiceCtrlDispatcherA

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

winmm

waveInReset
waveInOpen
waveInGetNumDevs
waveInStart
sndPlaySoundA
joyGetPosEx
WOW32ResolveMultiMediaHandle
waveOutPrepareHeader
waveOutUnprepareHeader
waveInGetDevCapsW
timeKillEvent

shell32

ShellExecuteA
SHFileOperationW
SHGetSpecialFolderPathW

ws2_32

socket
send
select
inet_addr
getservbyname
connect
WSAGetLastError
WSAAsyncGetHostByName
WSAAccept

kernel32

WritePrivateProfileSectionW
TlsGetValue
WideCharToMultiByte
WaitForSingleObject
UpdateResourceA
GetFileInformationByHandle
GetModuleHandleA
TlsFree
AddConsoleAliasW
BackupRead
BackupSeek
CloseHandle
CompareStringA
CreateDirectoryExA
CreateFileA
CreateSemaphoreA
DeleteCriticalSection
EnumLanguageGroupLocalesA
ExitProcess
GetCommandLineA
GetCompressedFileSizeW
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcessId
WritePrivateProfileStructW
SetEnvironmentVariableA
RemoveDirectoryW
MulDiv
LeaveCriticalSection
IsBadHugeWritePtr
HeapFree
HeapCreate
HeapAlloc
GetSystemInfo
GlobalMemoryStatus
GlobalAlloc
GetWindowsDirectoryA
GetVersionExA
GetTempPathW
GetExitCodeProcess

dinput

DirectInputCreateW

ole32

IsEqualGUID
PropVariantClear
CoUninitialize

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67cacce98064a4dc5a9553da0aca60a2

Headers

File Characteristics

Imports

user32

advapi32

version

winmm

shell32

ws2_32

kernel32

dinput

ole32

Sections

.text Size: 84KB - Virtual size: 83KB

.data Size: 24KB - Virtual size: 23KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 84KB - Virtual size: 83KB

.data
Size: 24KB - Virtual size: 23KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB