f36a79fd7d26256e9418805e934a23e0cdb01db5efa27306af89a7a7762493ff

Sharing

Copy URL

Twitter E-mail

General

Target

f36a79fd7d26256e9418805e934a23e0cdb01db5efa27306af89a7a7762493ff
Size

120KB
MD5

460dec12562988abfea6f853b3704ce3
SHA1

6b1643d9b2dfd40987e8a26b85cd1a5cdb72187f
SHA256

f36a79fd7d26256e9418805e934a23e0cdb01db5efa27306af89a7a7762493ff
SHA512

6a277908a72a86d761d418eea1af7400a4f798d99e82bb0a32ed02a34ecca2938d0fabe818988a845eab42a82753a5ce6c1397bacbe7ac05e45d770b0cdcbf45
SSDEEP

1536:zvLYv65iCMXFqi3FYwhc3EhfM6KzxMs3qnuiswPzbV8:zvm65TMX7FYwhAERM6Kis3qnurwPze

Score

N/A

Malware Config

Signatures

Files

f36a79fd7d26256e9418805e934a23e0cdb01db5efa27306af89a7a7762493ff
.dll windows x86

f8ca2b9e35c866b40168a847ee761b73

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
FreeLibrary
InterlockedExchange
LocalAlloc
RaiseException
GetLastError

user32

GetCursorInfo
LoadCursorA
IsWindow
CreateWindowExA
GetSystemMetrics
SendMessageA
DestroyCursor
MessageBoxA

msvcrt

_CxxThrowException
free
malloc
_except_handler3
strrchr
memmove
strncmp
strncpy
strchr
_errno
strncat
realloc
atol
wcstombs
_beginthreadex
calloc
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
strstr
_ftol
ceil
__CxxFrameHandler
??3@YAXPAX@Z
??2@YAPAXI@Z
_strrev
_strnicmp
_strupr
atoi
_strcmpi

winmm

waveInGetNumDevs
waveInOpen
waveOutPrepareHeader
waveInAddBuffer
waveInStart
waveOutOpen
waveOutGetNumDevs
waveOutClose
waveOutUnprepareHeader
waveOutWrite
waveInStop
waveInReset
waveInUnprepareHeader
waveInClose
waveInPrepareHeader
waveOutReset

msvcp60

?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Xran@std@@YAXXZ
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB

msvfw32

ICSendMessage

Exports

Exports

Main
ServiceMain
main

Sections

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8ca2b9e35c866b40168a847ee761b73

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

winmm

msvcp60

msvfw32

Exports

Exports

Sections

.text Size: 80KB - Virtual size: 77KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 80KB - Virtual size: 77KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 8KB - Virtual size: 6KB