c4d327afa6125f5ad15ed6c9286cb1017cf83243b88ed03474c11000edaf4e7b

Sharing

Copy URL Twitter E-mail

General

Target

c4d327afa6125f5ad15ed6c9286cb1017cf83243b88ed03474c11000edaf4e7b
Size

209KB
MD5

e9beaf789fe11de86291e83e101322c2
SHA1

dfc0fec46e2cb61d7c4348242e3dc1cc92d2adaf
SHA256

c4d327afa6125f5ad15ed6c9286cb1017cf83243b88ed03474c11000edaf4e7b
SHA512

f754c80accf71b8fa095620be8336bf70d2710b0400f1756e070dd2fdcb1c15047c0ed0e05cae56b94b20c2da089b2890dbc51afff5f963baf6724b8f8e20558
SSDEEP

6144:Qi3v5U+aUs3Ga4QmqXssuMXB9cqWwuLO7:fzaUs3ipqXsuxHWjL

Score

N/A

Malware Config

Signatures

Files

c4d327afa6125f5ad15ed6c9286cb1017cf83243b88ed03474c11000edaf4e7b
.exe windows x86

ca037ba4ee15fadd1712eabfe159c1a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetTimeZoneInformation
GetSystemTime
GetLocalTime
InterlockedDecrement
InterlockedIncrement
GetCommandLineA
GetVersion
GetModuleHandleA
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
RtlUnwind
GetProcAddress
WideCharToMultiByte
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
HeapAlloc
MultiByteToWideChar
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
GetCPInfo
GetStringTypeA
GetStringTypeW
GetACP
GetOEMCP
LoadLibraryA
RaiseException
CompareStringA
CompareStringW
SetEnvironmentVariableA
VirtualAllocEx
LocalAlloc

winmm

midiOutGetErrorTextW
WOW32ResolveMultiMediaHandle
auxOutMessage
mmsystemGetVersion
waveOutOpen
mciDriverNotify
mixerGetNumDevs
midiInUnprepareHeader
timeSetEvent
mciGetDeviceIDFromElementIDA
mmioFlush
mciGetErrorStringW
GetDriverModuleHandle
mmioRenameA
PlaySoundW
waveOutPause
waveOutBreakLoop
midiInAddBuffer
auxGetVolume
waveOutPrepareHeader

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 558KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 17KB - Virtual size: 396KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca037ba4ee15fadd1712eabfe159c1a3

Headers

File Characteristics

Imports

kernel32

winmm

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 160KB - Virtual size: 558KB

.bss Size: 17KB - Virtual size: 396KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 160KB - Virtual size: 558KB

.bss
Size: 17KB - Virtual size: 396KB

.rsrc
Size: 11KB - Virtual size: 10KB