caf342835143a72ca7586140bfef66a98ea0ec8dc07711b79343511fcf2df051

Sharing

Copy URL

Twitter E-mail

General

Target

caf342835143a72ca7586140bfef66a98ea0ec8dc07711b79343511fcf2df051
Size

1000KB
MD5

aedc31b7cf2fa36d0f3742d9c0e8942b
SHA1

7e174f8c784b2e6580c330314e3d0ae5326832a3
SHA256

caf342835143a72ca7586140bfef66a98ea0ec8dc07711b79343511fcf2df051
SHA512

d0de036f088a41953a38b6f4fc3568fa1e6efb1bd4033497fa70830722de27c39562b046281573e79fcbc999ad44c7b05fad02ce8cb7169b6d7f68976918c25d
SSDEEP

24576:SNpSzq7ncbMpW4IyZcdMaOhGwK8ApAwplz/NU0/Y1yFrC3:SfSzq7ncb74IyZcdMIjg1yY

Score

1^/10

Malware Config

Signatures

Files

caf342835143a72ca7586140bfef66a98ea0ec8dc07711b79343511fcf2df051
.exe windows x86

e2e5f39d094c343110f8aef733abcd53

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeEndPeriod
timeBeginPeriod
mmioOpenA
mmioAscend
mmioRead
mmioDescend
mmioGetInfo
mmioCreateChunk
mmioSeek
mmioSetInfo
mmioAdvance
mmioWrite
timeGetTime
mmioClose

kernel32

LocalFree
GetCommandLineW
GetSystemDefaultLangID
CreateEventA
DeleteCriticalSection
ResetEvent
SetEvent
GetCurrentProcess
TerminateProcess
ExitProcess
GetFileType
HeapReAlloc
HeapAlloc
RaiseException
RtlUnwind
HeapFree
FindResourceW
GetVersionExA
CreateFileW
GetFileSize
GetTempPathA
GetTempFileNameA
ReadFile
InterlockedDecrement
GetProcessHeap
HeapValidate
InterlockedIncrement
GetCommandLineA
GetVersion
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetCurrentThread
FatalAppExitA
SetHandleCount
GetStdHandle
SetFilePointer
HeapSize
WriteFile
FlushFileBuffers
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetStdHandle
SetEndOfFile
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetConsoleCtrlHandler
InterlockedExchange
SetEnvironmentVariableA
CompareStringW
DeleteFileA
GetLastError
FindFirstFileA
FindClose
CreateThread
OpenFileMappingA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
OutputDebugStringA
WideCharToMultiByte
MultiByteToWideChar
QueryPerformanceFrequency
QueryPerformanceCounter
CreateFileA
LockResource
FindResourceA
LoadResource
SizeofResource
LoadLibraryA
GetProcAddress
FreeLibrary
MulDiv
lstrcmpiA
Sleep
GetModuleHandleA
CompareStringA
lstrcpyA
lstrcatA
WaitForSingleObject
ReleaseMutex
OpenMutexA
CreateMutexA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
CopyFileA
LCMapStringW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
GetStringTypeW
GetStartupInfoA

user32

IsDlgButtonChecked
SetFocus
InvalidateRect
GetDlgItemTextA
SetDlgItemTextA
SetWindowTextA
CheckDlgButton
SetCursorPos
ClientToScreen
KillTimer
SetTimer
ClipCursor
ShowCursor
SetCursor
OffsetRect
GetKeyboardState
PostMessageA
PtInRect
DrawTextA
GetIconInfo
GetDC
ReleaseDC
LoadAcceleratorsA
PeekMessageA
DrawTextW
TranslateMessage
DispatchMessageA
GetDlgItem
EndDialog
wsprintfA
EnableWindow
DialogBoxParamA
SetWindowLongA
SetWindowPos
GetMenu
DestroyMenu
DestroyWindow
PostQuitMessage
SendMessageA
DefWindowProcA
GetCursorPos
ScreenToClient
LoadIconA
LoadCursorA
RegisterClassA
SetRect
GetSystemMetrics
LoadMenuA
CreateWindowExA
GetWindowLongA
GetWindowRect
GetClientRect
MessageBoxA
TranslateAcceleratorA

gdi32

GetMapMode
SetGraphicsMode
ModifyWorldTransform
SetWindowOrgEx
CreateFontIndirectA
Polyline
MoveToEx
LineTo
DPtoLP
BitBlt
GetTextMetricsA
CreateSolidBrush
CreatePen
SaveDC
SetViewportOrgEx
SetBkMode
Rectangle
RestoreDC
GetObjectA
GetDIBits
CreateCompatibleDC
CreateDIBSection
SetMapMode
GetDeviceCaps
CreateFontA
SelectObject
SetTextColor
SetBkColor
SetTextAlign
GetTextExtentPoint32A
ExtTextOutA
DeleteObject
DeleteDC
GetStockObject

advapi32

LookupAccountNameA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
InitializeSecurityDescriptor
InitializeAcl
RegSetValueExA
AddAccessAllowedAce
SetSecurityDescriptorDacl

shell32

CommandLineToArgvW
SHGetSpecialFolderPathA

ole32

CoCreateInstance
CoUninitialize
CoInitialize

d3d8

Direct3DCreate8

d3dxof

DirectXFileCreate

dinput8

DirectInput8Create

dsound

ord11

ws2_32

bind
listen
closesocket
gethostbyaddr
htons
gethostbyname
inet_addr
WSAStartup
WSACleanup
select
__WSAFDIsSet
WSARecvFrom
WSASendTo
WSAGetLastError
inet_ntoa
accept
setsockopt
ioctlsocket
socket
connect
ntohs

wininet

InternetSetOptionA
InternetCloseHandle
InternetOpenA
InternetOpenUrlA
InternetSetStatusCallback
InternetReadFileExA

Sections

.text
Size: 728KB - Virtual size: 726KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 164KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2e5f39d094c343110f8aef733abcd53

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

advapi32

shell32

ole32

d3d8

d3dxof

dinput8

dsound

ws2_32

wininet

Sections

.text Size: 728KB - Virtual size: 726KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 36KB - Virtual size: 1.6MB

.rsrc Size: 164KB - Virtual size: 162KB

.text
Size: 728KB - Virtual size: 726KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 36KB - Virtual size: 1.6MB

.rsrc
Size: 164KB - Virtual size: 162KB