e637896d9fcb59a232ced2e6a5e246ae309624b557864c805e7b93a1b284ce9e

General

Target

e637896d9fcb59a232ced2e6a5e246ae309624b557864c805e7b93a1b284ce9e
Size

181KB
MD5

85274a7defc02eef3a928daa1cf17559
SHA1

5156211c24a36a43307261cb1fab996e57448767
SHA256

e637896d9fcb59a232ced2e6a5e246ae309624b557864c805e7b93a1b284ce9e
SHA512

9a00344310c3a437f16f4152b84a6b3bab8345cc95ecaea3c9253e48f2fd544a971754c3a479263c50973c20604b65df4a6bad459a1627cafda94545b1f78577
SSDEEP

3072:qgmPnQc2BaM/aBZn0bsX0zs6I9589w32Rg3lHmjm7rlK+6apFEQC:qRPnp20M/PbsEI699w3r0Orlx6

Score

N/A

Malware Config

Signatures

Files

e637896d9fcb59a232ced2e6a5e246ae309624b557864c805e7b93a1b284ce9e
.exe windows x86

47bdade0b1a609c63198ecb519ff546d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

user32

DispatchMessageW
TranslateMessage
PeekMessageW
FillRect
GetClientRect
SetRectEmpty
IsRectEmpty
CopyRect
GetDC
wsprintfW
ReleaseDC
OffsetRect
GetWindowRect

avifil32

AVISaveOptions
AVIMakeCompressedStream

kernel32

GetShortPathNameA
LoadLibraryW
TerminateProcess
GetTempFileNameA
GetLastError
DeleteFileA
GetProcAddress
SetFileAttributesA
LocalAlloc
EnterCriticalSection
GetTempPathA
OutputDebugStringA
MultiByteToWideChar
LeaveCriticalSection
MulDiv
Sleep
GetModuleFileNameW
lstrlenW
FreeLibrary
GetProcessAffinityMask
GetLocaleInfoA
FindNextFileW
CreateMutexA
GetACP
DeleteFileW
LocalFree
ReleaseMutex
SetFilePointer
GetTempFileNameW
WaitForSingleObject
InterlockedExchange
CreateFileA
InitializeCriticalSection
FindFirstFileW
GetCurrentThreadId
ReadFile
GetModuleFileNameA
EnumResourceTypesW
GetTempPathW
GetCurrentProcessId
WideCharToMultiByte
GetTickCount
SetFileAttributesW
DisableThreadLibraryCalls
DeleteCriticalSection
GetSystemTime
QueryPerformanceCounter
CopyFileA
WriteFile
GetFileAttributesA
lstrlenA
CloseHandle
InterlockedIncrement
GetVersionExA
CreateDirectoryW
OutputDebugStringW
GetThreadLocale
RemoveDirectoryW
CreateDirectoryA
InterlockedDecrement
GetVersionExW
FindClose
GetSystemTimeAsFileTime

Sections

.text
Size: 107KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47bdade0b1a609c63198ecb519ff546d

Headers

File Characteristics

Imports

winmm

user32

avifil32

kernel32

Sections

.text Size: 107KB - Virtual size: 106KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 70KB - Virtual size: 69KB

.tls Size: 1024B - Virtual size: 124KB

.text
Size: 107KB - Virtual size: 106KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 70KB - Virtual size: 69KB

.tls
Size: 1024B - Virtual size: 124KB