16294a893b31ef81962ba81c99ac1f4459672bad27a64f0fada177402794f079

Sharing

Copy URL Twitter E-mail

General

Target

16294a893b31ef81962ba81c99ac1f4459672bad27a64f0fada177402794f079
Size

616KB
MD5

3fee79c5d31195142ea6f074344ae879
SHA1

89749e4a9a7f3ba9c3cfde18f702bd9f9f5f2cd3
SHA256

16294a893b31ef81962ba81c99ac1f4459672bad27a64f0fada177402794f079
SHA512

38aaeb07b8239878fbcf82152b5260671e64936cb7e616465703988279bd69b1d0966ffc2de2628e8cc2aab08f7ddd2a0ef6f39c355a81b012bf52dd85e3d2dd
SSDEEP

12288:SibUTHO3BXvwbjgx1bYpDuPMeE6YWj+yyhIY+24r4k:7bUTwX4bUxpmJ6h6Janr

Score

N/A

Malware Config

Signatures

Files

16294a893b31ef81962ba81c99ac1f4459672bad27a64f0fada177402794f079
.exe windows x86

5bd901154a801cc5b38ce757178e07da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetUnhandledExceptionFilter
LoadLibraryA
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
GetCPInfo
SetStdHandle
LCMapStringW
LCMapStringA
RaiseException
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
FlushFileBuffers
GetFileAttributesA
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetModuleFileNameA
WriteFile
GetFileType
GetStdHandle
IsBadReadPtr
SetFilePointer
ReadFile
HeapSize
GetProcAddress
HeapReAlloc
HeapAlloc
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
DeleteFileA
MoveFileA
GetCurrentProcess
TerminateProcess
ExitProcess
HeapFree
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
IsBadCodePtr
SetEndOfFile
CompareStringA
CompareStringW
SetEnvironmentVariableA
MulDiv
GetCurrentDirectoryA
GetPrivateProfileStringA
GetTimeFormatA
GetPrivateProfileIntA
MultiByteToWideChar
CreateFileA
GetFileTime
CloseHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVersionExA
GetDateFormatA
SetHandleCount
GetLastError
WideCharToMultiByte

user32

GetWindowRect
ClientToScreen
GetClientRect
SetWindowTextA
SetDlgItemTextA
SendDlgItemMessageA
EndDialog
ShowWindow
EnableWindow
GetDlgItem
GetDlgItemTextA
PostMessageA
DefWindowProcA
WaitMessage
DestroyCursor
LoadCursorFromFileA
LoadCursorA
ReleaseCapture
SetCapture
DrawMenuBar
RedrawWindow
GetSystemMetrics
SetCursorPos
PeekMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
PostQuitMessage
DialogBoxParamA
LoadIconA
RegisterClassA
CreateWindowExA
UpdateWindow
LoadAcceleratorsA
ShowCursor
SetCursor
GetForegroundWindow
MessageBoxA

winmm

timeBeginPeriod
timeEndPeriod
waveOutSetVolume
auxSetVolume
mciSendStringA
timeGetTime

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ole32

CoCreateInstance
CoUninitialize
CoInitialize

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey

gdi32

SetTextColor
SetBkColor
SelectObject
GetTextExtentPoint32A
DeleteObject
DeleteDC
GetStockObject
CreateFontA
GetDeviceCaps
SetMapMode
CreateDIBSection
CreateCompatibleDC
SetTextAlign
ExtTextOutA

shell32

ShellExecuteA

d3d8

Direct3DCreate8

dsound

ord11

Sections

.text
Size: 484KB - Virtual size: 482KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5bd901154a801cc5b38ce757178e07da

Headers

File Characteristics

Imports

kernel32

user32

winmm

comdlg32

ole32

advapi32

gdi32

shell32

d3d8

dsound

Sections

.text Size: 484KB - Virtual size: 482KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 16KB - Virtual size: 1.4MB

.rsrc Size: 92KB - Virtual size: 90KB

.text
Size: 484KB - Virtual size: 482KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 16KB - Virtual size: 1.4MB

.rsrc
Size: 92KB - Virtual size: 90KB