50925487f0f3eda65a73b0ddf66d7d556ce3d5e687be3991ff5ef4cfef73ae22

Sharing

Copy URL Twitter E-mail

General

Target

50925487f0f3eda65a73b0ddf66d7d556ce3d5e687be3991ff5ef4cfef73ae22
Size

1.7MB
MD5

3bd73b3b5d655b218bcf6bb3e43fbc4f
SHA1

3900c4f7fd29fec755a20a363120a26945f4c661
SHA256

50925487f0f3eda65a73b0ddf66d7d556ce3d5e687be3991ff5ef4cfef73ae22
SHA512

f9904ecc411d665d4b46c24e47ec05516499bdd7b68306d5943d49f89a4b6e102487ed341b5286b35bd56fc3fcc1a6ecef92ae2ae62bb8ee7b4188bfd43c6164
SSDEEP

24576:AZ2al2gTiz79EZeBiitfN/4fA4dYNyHA6gI7LMw79T78JjvgynC/I9MvwtILudTg:Xll4oI7x79gjvgyx99tIadT960u

Score

N/A

Malware Config

Signatures

Files

50925487f0f3eda65a73b0ddf66d7d556ce3d5e687be3991ff5ef4cfef73ae22
.exe windows x86

69d6e82e0cc14b2903beac6ae58c4a47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDriveTypeA
Sleep
MultiByteToWideChar
GetLastError
CreateMutexA
SetEndOfFile
ResumeThread
RtlUnwind
IsBadCodePtr
GetTimeZoneInformation
SetUnhandledExceptionFilter
InterlockedIncrement
IsBadReadPtr
CreateFileA
FlushFileBuffers
InterlockedDecrement
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetFileType
GetStdHandle
SetStdHandle
SetFilePointer
HeapSize
SetHandleCount
TlsGetValue
WideCharToMultiByte
TlsAlloc
SetLastError
GetProcAddress
WriteFile
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetCurrentThreadId
GetSystemTime
IsBadWritePtr
HeapReAlloc
RaiseException
LCMapStringW
LCMapStringA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
GetTickCount
GetStringTypeW
GetStringTypeA
OutputDebugStringA
HeapFree
HeapAlloc
VirtualAlloc
DeleteCriticalSection
GetCommandLineA
GetLocalTime
ReadFile
CreateThread
TlsSetValue
ExitThread
CloseHandle
GetModuleHandleA
GetStartupInfoA
EnterCriticalSection
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
LeaveCriticalSection
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
CreateFileMappingA
ReleaseMutex
MapViewOfFile
SetPriorityClass
GetThreadPriority
GetCurrentThread
GetPriorityClass
FreeLibrary
WaitForSingleObject
DeviceIoControl
CreateDirectoryA
FindFirstFileA
GetCurrentProcessId
SetEvent
OpenEventA
CreateSemaphoreA
ReleaseSemaphore
GetSystemDirectoryA
GetTempPathA
GetVersionExA
FindClose
UnmapViewOfFile
GetUserDefaultLangID
VirtualProtectEx
GetEnvironmentVariableA

user32

DispatchMessageA
GetAsyncKeyState
LoadIconA
RegisterClassExA
PeekMessageA
TranslateMessage
GetMessageA
ShowCursor
MessageBoxA
BeginPaint
DefWindowProcA
EndPaint
SetWindowLongA
PostQuitMessage
InvalidateRect
CreateWindowExA
UpdateWindow
ShowWindow
GetCursorPos
ChangeDisplaySettingsA
GetDC
ReleaseDC
LoadCursorA
UnregisterClassA
CopyImage
LoadImageA
LoadCursorFromFileA
SetSystemCursor

gdi32

SetBkMode
SelectObject
CreateDIBSection
GetStockObject
DeleteObject
DeleteDC
CreateCompatibleDC
TextOutA
BitBlt
GetCurrentObject
SetTextColor
CreateFontA
CreateCompatibleBitmap
SetBkColor
CreateBitmap
RectVisible
StretchDIBits
SetStretchBltMode
StretchBlt

ole32

CoUninitialize
CoInitialize
CoCreateInstance

dsound

ord1

winmm

mmioDescend
mmioGetInfo
mmioAdvance
mmioSetInfo
mmioRead
mmioAscend
mmioClose
mmioOpenA
mmioSeek

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

advapi32

RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegOpenKeyA

Sections

.text
Size: 656KB - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 878KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dmbb
Size: 472KB - Virtual size: 472KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.zzqw
Size: 540KB - Virtual size: 538KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69d6e82e0cc14b2903beac6ae58c4a47

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

dsound

winmm

version

advapi32

Sections

.text Size: 656KB - Virtual size: 656KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 36KB - Virtual size: 878KB

.dmbb Size: 472KB - Virtual size: 472KB

.zzqw Size: 540KB - Virtual size: 538KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 656KB - Virtual size: 656KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 36KB - Virtual size: 878KB

.dmbb
Size: 472KB - Virtual size: 472KB

.zzqw
Size: 540KB - Virtual size: 538KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 3KB