f85dec9436ba5b6f177983a9f3c7a38cc0d409d2b16e059d80ba85973c263922

Sharing

Copy URL

Twitter E-mail

General

Target

f85dec9436ba5b6f177983a9f3c7a38cc0d409d2b16e059d80ba85973c263922
Size

255KB
MD5

0455ba9ec37e00cff640043a405adad0
SHA1

30fd173aeff6b61d90ac36a7f26d608a6479adc1
SHA256

f85dec9436ba5b6f177983a9f3c7a38cc0d409d2b16e059d80ba85973c263922
SHA512

9b23f5bf73a7d2c2e47dcb0720aaed3107ac5400f814e566832e03000442ca0c2658683399082cc4adf3a640c00281f7b20e4d427be59cdcdf4e6e690071d22e
SSDEEP

6144:DXt9oOwUgVg3glkp9kOJNyqku2w3YrRMQ7LSgb1:Dt9oOwdq3glkpGOJoqPmx

Score

N/A

Malware Config

Signatures

Files

f85dec9436ba5b6f177983a9f3c7a38cc0d409d2b16e059d80ba85973c263922
.exe windows x86

8dd441c79bcb0f49a794931f21739f56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DispatchMessageA
SetCursorPos
OffsetRect
ClientToScreen
TranslateMessage
wsprintfA
GetDC
ReleaseDC
GetMessageA
SetCursor
DefWindowProcA
SetWindowLongA
LoadCursorA
PostQuitMessage
MessageBoxA
GetWindowLongA
SetFocus
PeekMessageA
ShowWindow
CreateWindowExA
SetRect
WaitMessage
SetWindowPos
GetWindowRect
GetClientRect
RegisterClassA
GetSystemMetrics
LoadIconA

gdi32

GetDeviceCaps
GetStockObject

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

ole32

CoInitialize
CoCreateInstance
CLSIDFromString
CoUninitialize

kernel32

WaitForSingleObject
SetEvent
MapViewOfFile
CreateFileMappingA
CloseHandle
OpenEventA
GetVersionExA
OutputDebugStringA
GetTickCount
GetTempPathA
GetDriveTypeA
_lcreat
_lopen
_lclose
_llseek
_lread
_lwrite
DeleteFileA
FindFirstFileA
FindNextFileA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetWindowsDirectoryA
GetSystemDirectoryA
RemoveDirectoryA
CreateDirectoryA
ExitProcess
TerminateProcess
GetCurrentProcess
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
HeapAlloc
HeapFree
HeapReAlloc
RaiseException
GetProcAddress
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetLastError
SetFilePointer
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetStdHandle
FlushFileBuffers
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
EnterCriticalSection
GetCurrentProcessId

dsound

ord1

ddraw

DirectDrawCreate

winmm

timeGetTime
auxGetVolume
mciSendCommandA
timeKillEvent
waveOutGetNumDevs
auxGetDevCapsA
auxGetNumDevs
waveOutGetDevCapsA
auxSetVolume
waveOutGetVolume
timeSetEvent
waveOutSetVolume

avifil32

AVIStreamInfoA
AVIStreamStart
AVIStreamRead
AVIStreamReadFormat
AVIFileGetStream
AVIFileRelease
AVIStreamRelease
AVIFileExit
AVIFileInit
AVIFileOpenA
AVIStreamLength
AVIStreamSampleToTime
AVIStreamTimeToSample

msvfw32

ICLocate
ICDecompress
ICClose
ICSendMessage

Sections

.text
Size: 207KB - Virtual size: 500KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 23KB - Virtual size: 322KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.WWP32
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8dd441c79bcb0f49a794931f21739f56

Headers

File Characteristics

Imports

user32

gdi32

advapi32

ole32

kernel32

dsound

ddraw

winmm

avifil32

msvfw32

Sections

.text Size: 207KB - Virtual size: 500KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 23KB - Virtual size: 322KB

.rsrc Size: 8KB - Virtual size: 4KB

.WWP32 Size: 1024B - Virtual size: 712B

.text
Size: 207KB - Virtual size: 500KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 23KB - Virtual size: 322KB

.rsrc
Size: 8KB - Virtual size: 4KB

.WWP32
Size: 1024B - Virtual size: 712B