af9c49156b7880e5a1106799cdcb333cf5bf5ebf68629d7e5ac9e498005d684c[.]bin

Sharing

Copy URL Twitter E-mail

General

Target

af9c49156b7880e5a1106799cdcb333cf5bf5ebf68629d7e5ac9e498005d684c.bin
Size

501KB
MD5

142799390694233c3d5cbe311cb1f740
SHA1

2b05d32a80fbc88fdb568d369fc8c017a0dd3d27
SHA256

af9c49156b7880e5a1106799cdcb333cf5bf5ebf68629d7e5ac9e498005d684c
SHA512

53c35453de1a04f53abec2b03ecd5c516513e45e243946bdec2f6c6a962f2e0853eb6fa692d5fc6a50b552535dd6512fef9c0c30b6bda68871fc64baa74ba000
SSDEEP

12288:KttxG1bTlCyrY8RnjG2oXItsAqEMPESJjeb98aKiTrFOdD:JNCd8JGxX6sAg5KZTrEdD

Score

N/A

Malware Config

Signatures

Files

af9c49156b7880e5a1106799cdcb333cf5bf5ebf68629d7e5ac9e498005d684c.bin
.exe windows x86

580fdf257f0f88ed4449c0ebbd949b57

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

joyGetNumDevs
joyGetPosEx
timeGetTime
timeEndPeriod
timeBeginPeriod
joyGetDevCapsA

imm32

ImmAssociateContext

kernel32

SetConsoleTextAttribute
WriteConsoleA
CreateProcessA
SetConsoleScreenBufferSize
SetConsoleWindowInfo
GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
GetProcAddress
LoadLibraryA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError
GetModuleHandleW
TlsFree
DecodePointer
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
FillConsoleOutputAttribute
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
SetConsoleCtrlHandler
HeapFree
WideCharToMultiByte
GetLastError
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
Sleep
GetVersionExA
DeleteFileA
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
LCMapStringW
HeapCreate
ExitProcess
GetModuleFileNameW
SetFilePointer
ReadFile
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetConsoleMode
IsProcessorFeaturePresent
FlushFileBuffers
WaitForSingleObject
CloseHandle
GetPrivateProfileStringA
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
HeapSize
InterlockedExchange
LoadLibraryW
HeapReAlloc
SetStdHandle
WriteConsoleW
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
RaiseException
FreeConsole
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetProcessHeap
CreateFileW
LocalAlloc
IsValidCodePage

user32

CreateWindowExA
RegisterClassA
LoadIconA
UpdateWindow
LoadAcceleratorsA
CopyAcceleratorTableA
CreateAcceleratorTableA
TranslateAcceleratorA
DestroyAcceleratorTable
DestroyWindow
IsIconic
MapVirtualKeyA
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SendInput
IsDlgButtonChecked
SetWindowTextA
GetDlgItem
SetTimer
SetFocus
CallWindowProcA
EndDialog
SetDlgItemTextA
OpenClipboard
GetClipboardData
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
SetCursorPos
MoveWindow
EnumDisplaySettingsA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetMenuItemCount
GetSubMenu
GetMenuItemID
DrawMenuBar
ModifyMenuA
InsertMenuA
DeleteMenu
AppendMenuA
SetMenuItemInfoA
CheckMenuRadioItem
CheckMenuItem
PostQuitMessage
LoadCursorA
SetCursor
IsWindow
CharLowerA
SetRect
GetDC
ReleaseDC
GetSystemMenu
RemoveMenu
SetForegroundWindow
SetWindowPos
GetAsyncKeyState
GetForegroundWindow
FindWindowA
PeekMessageA
TranslateMessage
GetMessageA
DispatchMessageA
GetMenu
EnableMenuItem
GetWindowLongA
SetWindowLongA
DefWindowProcA
BeginPaint
EndPaint
PostMessageA
SendDlgItemMessageA

gdi32

GetStockObject
BitBlt
SetStretchBltMode
CreateDIBSection
StretchBlt
TextOutA
SetBkMode
SetTextColor
GetTextMetricsA
GetDeviceCaps
DeleteObject
SelectObject
CreateCompatibleDC
DeleteDC

comdlg32

GetOpenFileNameA

shell32

DragFinish
DragQueryFileA
DragAcceptFiles

ole32

CoUninitialize
CoInitialize

wsock32

recv
WSACleanup
closesocket
shutdown
send
inet_ntoa
WSAStartup
socket
htonl
htons
bind
setsockopt
listen
accept

comctl32

ord17
ord6

gdiplus

GdipDisposeImage
GdipSaveImageToFile
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVISaveOptions
AVISaveOptionsFree
AVIMakeCompressedStream
AVIFileRelease
AVIStreamWrite
AVIStreamRelease
AVIFileExit

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 383KB - Virtual size: 383KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 347KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

580fdf257f0f88ed4449c0ebbd949b57

Headers

DLL Characteristics

File Characteristics

Imports

winmm

imm32

kernel32

user32

gdi32

comdlg32

shell32

ole32

wsock32

comctl32

gdiplus

d3d9

avifil32

dsound

dinput8

Sections

.text Size: 383KB - Virtual size: 383KB

.rdata Size: 95KB - Virtual size: 95KB

.data Size: 13KB - Virtual size: 347KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 383KB - Virtual size: 383KB

.rdata
Size: 95KB - Virtual size: 95KB

.data
Size: 13KB - Virtual size: 347KB

.rsrc
Size: 8KB - Virtual size: 7KB