e20529940963a6b3a6621fff4149c853bb64158d2e093ce004cf869f59be2d62

Sharing

Copy URL Twitter E-mail

General

Target

e20529940963a6b3a6621fff4149c853bb64158d2e093ce004cf869f59be2d62
Size

120KB
MD5

312ad9f065a5e2daad6acd4932c453a0
SHA1

35f426774a3b3f20eee64b2cfcb45c5ff7f2884b
SHA256

e20529940963a6b3a6621fff4149c853bb64158d2e093ce004cf869f59be2d62
SHA512

e1316706b48d45ca7cacd812a889f85c5ce41806996a47e1a3ae2817a53d0ed1df0e28149b65e58b2ed5358528e074802f778dfe72553fcf3ef9292237ac3bdb
SSDEEP

1536:VkbdL0TJc6BEHc9/x/i00lej1Iz10YF420YDzYXrTsGDBt5QdoqicwnQ3J2OX/A:V0L0TzlKejyWC42RIXnsGVtHXnQcO4

Score

N/A

Malware Config

Signatures

Files

e20529940963a6b3a6621fff4149c853bb64158d2e093ce004cf869f59be2d62
.dll windows x86

d6cc185ec4ae0782367985f13502999d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc
BeginUpdateResourceA
LoadLibraryW
GlobalWire
WaitForSingleObject
GetVersion
VerifyConsoleIoHandle
GlobalReAlloc
CreateFileMappingW
GetFileTime
EnumSystemCodePagesW
DeleteCriticalSection
FlushViewOfFile
ShowConsoleCursor
GetConsoleAliasesW
GetComputerNameW
GetFileAttributesExA
GetLargestConsoleWindowSize
FindNextVolumeA
GetConsoleScreenBufferInfo
CallNamedPipeA
IsBadStringPtrW
HeapDestroy
OpenEventA
GlobalUnfix
ReadConsoleInputW
GetPrivateProfileIntW
GetLocalTime
GetHandleInformation
EnumDateFormatsExW
FatalAppExitA
GetModuleHandleA
GetCPInfo
SetFilePointer
SetCurrentDirectoryW
BuildCommDCBAndTimeoutsA
TlsAlloc
WaitNamedPipeA
GlobalFindAtomW
LocalAlloc
DeleteVolumeMountPointW
GlobalSize
FreeLibrary
FlushInstructionCache
GetThreadLocale
Process32Next
ExitProcess
GetThreadPriorityBoost
FindNextVolumeW
WriteConsoleOutputW
EnumResourceTypesA
SystemTimeToTzSpecificLocalTime
IsValidLocale
GetFileAttributesA
HeapCreate
GetSystemTime
EnumResourceLanguagesW
GetConsoleCommandHistoryLengthW
SetTapePosition
GetFileSizeEx
SetDefaultCommConfigW
lstrlenA
SetSystemTime
SetStdHandle
SetCommState
SizeofResource
GetConsoleHardwareState
SetProcessPriorityBoost
GetLogicalDriveStringsW
InterlockedExchangeAdd

winmm

joySetCapture
mixerGetLineControlsW
waveOutSetPitch
joyGetDevCapsW
mmioRenameA
wid32Message
midiInPrepareHeader
mciGetYieldProc
mmTaskYield
joyReleaseCapture
mmTaskCreate
midiInGetErrorTextW
mmioAdvance
mmioStringToFOURCCA
mmioRead
timeKillEvent
SendDriverMessage
midiStreamClose
mmsystemGetVersion
wod32Message
midiStreamPause
mciDriverNotify
midiOutGetErrorTextA
midiOutGetErrorTextW
timeSetEvent
joyGetPosEx
mmioWrite
mmioInstallIOProcW
aux32Message
DriverCallback
midiStreamProperty
midiInUnprepareHeader
waveOutPrepareHeader
midiInStop
mciGetCreatorTask
midiInGetNumDevs
midiOutClose
waveInGetNumDevs
auxGetVolume
midiInGetDevCapsW
midiConnect
waveOutGetVolume
mixerGetID
mciFreeCommandResource
waveOutGetPlaybackRate
CloseDriver
mciSendCommandA
waveOutClose
mixerGetControlDetailsA
midiOutSetVolume
mod32Message
mciGetDriverData
timeGetTime
joyGetPos
joyGetDevCapsA
auxGetDevCapsW
waveInClose
mmioFlush
midiOutUnprepareHeader
mixerGetLineInfoA
PlaySoundA
joyConfigChanged
mciGetDeviceIDFromElementIDA
midiOutGetID
joyGetNumDevs
midiInGetErrorTextA
timeEndPeriod
mciGetDeviceIDW
midiInStart
mxd32Message
midiInAddBuffer
waveInMessage
midiInGetID

msvcrt

_mbsnicmp
_mbsnccnt
_mbscoll
_mbsnbcat
_mbsnbicoll
_mbsset
puts
fread
wcstok
_Getmonths
swprintf
_wspawnlp
_wcsnicoll
fscanf
wscanf
_mbctoupper
vfwprintf
_Getdays
_wexecv
_wcsicmp
fsetpos
fseek
printf
_mbsnset
_fileinfo
_adj_fdiv_m32i
_getcwd
_wtempnam
_wcsdup
_sopen
exp
cos
_mkdir
_CIsinh
_heapused
_findclose
_setmode
_mbctokata
_wspawnv
_aexit_rtn
memchr
_ismbbalnum
fopen
strftime
fwprintf
_wspawnvpe
wcsncpy
iswspace
feof
__p__winver
_open
_adj_fdivr_m32i
clearerr
_wrename
_callnewh
memset
ferror
_wstat
fclose
_mbscspn
ctime
_setsystime
sprintf
iswalnum
fflush
_filelength
_dup2
fputc
__CxxLongjmpUnwind
_set_error_mode
_setjmp3
_memicmp
__iscsymf
_mbsnbcoll
strtod
_unlink
_i64toa
strrchr
_wasctime
_mbsncoll
_ui64toa
_wspawnve
_safe_fdivr
_wfullpath
_swab
_wspawnvp
getc
fputs
_wfindnext
fprintf
_cexit
_safe_fdiv
sinh
fwrite
_ismbckata
getenv
_ultow
_wcslwr
isxdigit
__dllonexit
_searchenv
$I10_OUTPUT
_flsbuf
_outpw
__p__mbctype
log10
_mbsupr
_wcsicoll
_chdrive
_cwait
ftell

Exports

Exports

Cddav
Cdoax
Dwhypod
Ibaot
Jznekblm
Tyhjphamn
Vtxoxcs
Xohvojefez

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6cc185ec4ae0782367985f13502999d

Headers

File Characteristics

Imports

kernel32

winmm

msvcrt

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 52KB - Virtual size: 49KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 52KB - Virtual size: 49KB

.reloc
Size: 8KB - Virtual size: 6KB