119e516e47debe34747e31b49a1cad84294bc1e6a44dd210af702fdc2aa0c3ed

Sharing

Copy URL Twitter E-mail

General

Target

119e516e47debe34747e31b49a1cad84294bc1e6a44dd210af702fdc2aa0c3ed
Size

101KB
MD5

54d612afdc555d4e3b47b29307f2c87f
SHA1

3dccc133d1fab9ae732f6677d33806d5d342ae39
SHA256

119e516e47debe34747e31b49a1cad84294bc1e6a44dd210af702fdc2aa0c3ed
SHA512

ab132818692eb570ab69e6120fbb72ad75c594057172f9adde09d45ebb91e4f24568e928a3730ce602991a745042c61c521d4d4916a70309d58a7e312275ca46
SSDEEP

1536:s7NXAoGnZuCuiAp9gbDluD3MzyD2nc7TInOL6vds6UjA8R8sNNb:s7teZuCTOAD2MuEc7xLCs3cKrNZ

Score

N/A

Malware Config

Signatures

Files

119e516e47debe34747e31b49a1cad84294bc1e6a44dd210af702fdc2aa0c3ed
.exe windows x86

76bad9bb557044070c0a1b0498481ff5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectW
GetPaletteEntries
GetStockObject
PatBlt
SelectObject
GetTextExtentPoint32W

winmm

waveInAddBuffer
mixerClose
waveInClose
waveInPrepareHeader
mixerGetID
mixerOpen
mixerGetControlDetailsW
SendDriverMessage
OpenDriver
waveInUnprepareHeader
waveInReset
mixerGetLineControlsW
waveInStart
mixerGetLineInfoW
CloseDriver
waveInOpen
waveInStop
waveInGetDevCapsW
mixerSetControlDetails

user32

SendMessageW
GetWindowLongW
CreateDialogParamW
EnableWindow
GetDlgItem
SetDlgItemTextW
CheckDlgButton
IsWindow
GetWindowRect
GetDlgItemInt
GetAsyncKeyState
IsWindowVisible
IsRectEmpty
LoadCursorW
GetDesktopWindow
LoadStringW
SetWindowLongW
ReleaseDC
SetCursor
PeekMessageW
DestroyWindow
TranslateMessage
GetDC
GetClientRect
ShowWindow
DefWindowProcW
DispatchMessageW
MoveWindow
CheckRadioButton
SetDlgItemInt
wsprintfW
ClientToScreen
InvalidateRect

kernel32

SetFilePointer
GetStartupInfoA
GetProcAddress
GetFileAttributesW
VirtualFree
WideCharToMultiByte
GetCurrentProcessId
GetTickCount
GlobalLock
HeapAlloc
IsBadReadPtr
lstrcpyA
ResetEvent
GetFullPathNameW
GlobalHandle
SetLastError
EnterCriticalSection
GlobalAlloc
SetThreadPriority
InterlockedExchange
GetLocaleInfoW
FreeLibrary
GetQueuedCompletionStatus
LeaveCriticalSection
CreateSemaphoreW
CreateThread
GlobalMemoryStatus
IsBadWritePtr
SetEndOfFile
InterlockedDecrement
GetSystemTimeAsFileTime
InitializeCriticalSection
IsBadCodePtr
WaitForSingleObject
lstrcpyW
GetLastError
DeleteFileW
MultiByteToWideChar
QueryPerformanceCounter
ReleaseSemaphore
GetACP
WaitForMultipleObjects
CloseHandle
MulDiv
GetProfileIntA
HeapFree
GetSystemInfo
GetThreadPriority
GetFileSize
GetPrivateProfileStringW
PostQueuedCompletionStatus
GetModuleFileNameA
GlobalUnlock
CreateFileW
InterlockedIncrement
lstrlenA
CreateEventW
ReadFile
LoadLibraryW
GetCurrentThread
SetUnhandledExceptionFilter
WriteFile
GlobalFree
lstrlenW
GetProcessHeap
lstrcpynW
SetEvent
lstrcmpiW
GetVersionExW
GetDiskFreeSpaceW
lstrcmpW
GetCurrentProcess
DeleteCriticalSection
CreateIoCompletionPort

nddeapi

NDdeGetTrustedShareA
NDdeIsValidShareNameA
NDdeIsValidAppTopicListW
NDdeGetTrustedShareW
NDdeGetErrorStringA
NDdeIsValidAppTopicListA
NDdeGetShareSecurityW
NDdeGetShareSecurityA

ncobjapi

WmiCreateObjectWithProps
WmiAddObjectProp
WmiEventSourceDisconnect
WmiSetAndCommitObject
WmiDestroyObject
WmiCommitObject
WmiCreateObject
WmiIsObjectActive
WmiEventSourceConnect
WmiCreateObjectWithFormat

mydocs

PerUserInit
DllCanUnloadNow
DllGetClassObject

msvfw32

ICSendMessage
ICLocate
ICOpen
ICDecompress
ICClose
ICGetInfo
ICCompress

ole32

CoTaskMemFree
CoCreateInstance
CoFreeUnusedLibraries
StringFromGUID2
CoUninitialize
CoInitialize
CoTaskMemAlloc

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

76bad9bb557044070c0a1b0498481ff5

Headers

File Characteristics

Imports

gdi32

winmm

user32

kernel32

nddeapi

ncobjapi

mydocs

msvfw32

ole32

Sections

.text Size: 51KB - Virtual size: 50KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 20KB - Virtual size: 105KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 51KB - Virtual size: 50KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 20KB - Virtual size: 105KB

.rsrc
Size: 24KB - Virtual size: 23KB