c2fd51690f732fde56a2c1221decf21e08cc2c0aaf9db6a00cebbc6b921dd200

Sharing

Copy URL Twitter E-mail

General

Target

c2fd51690f732fde56a2c1221decf21e08cc2c0aaf9db6a00cebbc6b921dd200
Size

120KB
MD5

0eed1fd4efe1899a527784b1340cb246
SHA1

cb19c44560e05735e799fc067666df9a946c9570
SHA256

c2fd51690f732fde56a2c1221decf21e08cc2c0aaf9db6a00cebbc6b921dd200
SHA512

6be244a347700297ac95520794dea44de59ab0cd6622d8ba94b2e023bf21503a7eb46a7f2ccf7a5ef1fd823b79068220c80b529e6fc0b734c3b32411d42122c8
SSDEEP

1536:VkbdM0TJZ6BEHc9/x/U00l4j1Iz10YF420YDWYjrko9DBt5QdoqicwnQ3J2OX/A:V0M0Tulw4jyWC42Rbjoo9VtHXnQcO4

Score

N/A

Malware Config

Signatures

Files

c2fd51690f732fde56a2c1221decf21e08cc2c0aaf9db6a00cebbc6b921dd200
.dll windows x86

d6cc185ec4ae0782367985f13502999d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
VirtualAlloc
BeginUpdateResourceA
LoadLibraryW
GlobalWire
WaitForSingleObject
GetVersion
VerifyConsoleIoHandle
GlobalReAlloc
CreateFileMappingW
GetFileTime
EnumSystemCodePagesW
DeleteCriticalSection
FlushViewOfFile
ShowConsoleCursor
GetConsoleAliasesW
GetComputerNameW
GetFileAttributesExA
GetLargestConsoleWindowSize
FindNextVolumeA
GetConsoleScreenBufferInfo
CallNamedPipeA
IsBadStringPtrW
HeapDestroy
OpenEventA
GlobalUnfix
ReadConsoleInputW
GetPrivateProfileIntW
GetLocalTime
GetHandleInformation
EnumDateFormatsExW
FatalAppExitA
GetModuleHandleA
GetCPInfo
SetFilePointer
SetCurrentDirectoryW
BuildCommDCBAndTimeoutsA
TlsAlloc
WaitNamedPipeA
GlobalFindAtomW
LocalAlloc
DeleteVolumeMountPointW
GlobalSize
FreeLibrary
FlushInstructionCache
GetThreadLocale
Process32Next
ExitProcess
GetThreadPriorityBoost
FindNextVolumeW
WriteConsoleOutputW
EnumResourceTypesA
SystemTimeToTzSpecificLocalTime
IsValidLocale
GetFileAttributesA
HeapCreate
GetSystemTime
EnumResourceLanguagesW
GetConsoleCommandHistoryLengthW
SetTapePosition
GetFileSizeEx
SetDefaultCommConfigW
lstrlenA
SetSystemTime
SetStdHandle
SetCommState
SizeofResource
GetConsoleHardwareState
SetProcessPriorityBoost
GetLogicalDriveStringsW
InterlockedExchangeAdd

winmm

joySetCapture
mixerGetLineControlsW
waveOutSetPitch
joyGetDevCapsW
mmioRenameA
wid32Message
midiInPrepareHeader
mciGetYieldProc
mmTaskYield
joyReleaseCapture
mmTaskCreate
midiInGetErrorTextW
mmioAdvance
mmioStringToFOURCCA
mmioRead
timeKillEvent
SendDriverMessage
midiStreamClose
mmsystemGetVersion
wod32Message
midiStreamPause
mciDriverNotify
midiOutGetErrorTextA
midiOutGetErrorTextW
timeSetEvent
joyGetPosEx
mmioWrite
mmioInstallIOProcW
aux32Message
DriverCallback
midiStreamProperty
midiInUnprepareHeader
waveOutPrepareHeader
midiInStop
mciGetCreatorTask
midiInGetNumDevs
midiOutClose
waveInGetNumDevs
auxGetVolume
midiInGetDevCapsW
midiConnect
waveOutGetVolume
mixerGetID
mciFreeCommandResource
waveOutGetPlaybackRate
CloseDriver
mciSendCommandA
waveOutClose
mixerGetControlDetailsA
midiOutSetVolume
mod32Message
mciGetDriverData
timeGetTime
joyGetPos
joyGetDevCapsA
auxGetDevCapsW
waveInClose
mmioFlush
midiOutUnprepareHeader
mixerGetLineInfoA
PlaySoundA
joyConfigChanged
mciGetDeviceIDFromElementIDA
midiOutGetID
joyGetNumDevs
midiInGetErrorTextA
timeEndPeriod
mciGetDeviceIDW
midiInStart
mxd32Message
midiInAddBuffer
waveInMessage
midiInGetID

msvcrt

_mbsnicmp
_mbsnccnt
_mbscoll
_mbsnbcat
_mbsnbicoll
_mbsset
puts
fread
wcstok
_Getmonths
swprintf
_wspawnlp
_wcsnicoll
fscanf
wscanf
_mbctoupper
vfwprintf
_Getdays
_wexecv
_wcsicmp
fsetpos
fseek
printf
_mbsnset
_fileinfo
_adj_fdiv_m32i
_getcwd
_wtempnam
_wcsdup
_sopen
exp
cos
_mkdir
_CIsinh
_heapused
_findclose
_setmode
_mbctokata
_wspawnv
_aexit_rtn
memchr
_ismbbalnum
fopen
strftime
fwprintf
_wspawnvpe
wcsncpy
iswspace
feof
__p__winver
_open
_adj_fdivr_m32i
clearerr
_wrename
_callnewh
memset
ferror
_wstat
fclose
_mbscspn
ctime
_setsystime
sprintf
iswalnum
fflush
_filelength
_dup2
fputc
__CxxLongjmpUnwind
_set_error_mode
_setjmp3
_memicmp
__iscsymf
_mbsnbcoll
strtod
_unlink
_i64toa
strrchr
_wasctime
_mbsncoll
_ui64toa
_wspawnve
_safe_fdivr
_wfullpath
_swab
_wspawnvp
getc
fputs
_wfindnext
fprintf
_cexit
_safe_fdiv
sinh
fwrite
_ismbckata
getenv
_ultow
_wcslwr
isxdigit
__dllonexit
_searchenv
$I10_OUTPUT
_flsbuf
_outpw
__p__mbctype
log10
_mbsupr
_wcsicoll
_chdrive
_cwait
ftell

Exports

Exports

Cddav
Cdoax
Gbfbibk
Ibaot
Jznekblm
Tyhjphamn
Vtxoxcs
Xohvojefez

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6cc185ec4ae0782367985f13502999d

Headers

File Characteristics

Imports

kernel32

winmm

msvcrt

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 52KB - Virtual size: 49KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 52KB - Virtual size: 49KB

.reloc
Size: 8KB - Virtual size: 6KB