b187489883abbf5baa8a90f3f4e06428cf5065c07b4be9e8e45ffecd62f25d64

Sharing

Copy URL Twitter E-mail

General

Target

b187489883abbf5baa8a90f3f4e06428cf5065c07b4be9e8e45ffecd62f25d64
Size

1.1MB
MD5

0ef6d7eb11ef3e9b2574b18a04ec6557
SHA1

fdf3becbca0bd5a1c1886f98c8d5ad0e84c5bea3
SHA256

b187489883abbf5baa8a90f3f4e06428cf5065c07b4be9e8e45ffecd62f25d64
SHA512

7a95aa11bd791e9bd03ba6f9f80a120b250aac132be68bff93544f032bc6762743599b8246681cf5354dc5032eee7cc9b9869e70ce9eeda084e8835a8c57ad96
SSDEEP

24576:4B4r4OApUcqNtYEAOiW5gcHJi8SgaBYksH:4BVUcqNt3A37Z2r

Score

1^/10

Malware Config

Signatures

Files

b187489883abbf5baa8a90f3f4e06428cf5065c07b4be9e8e45ffecd62f25d64
.exe windows x86

b425378c4a0f3cfbfaaf1b8030c3be27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mss32

_AIL_redbook_volume@4
_AIL_redbook_set_volume@8
_AIL_set_digital_master_volume@8
_AIL_redbook_status@4
_AIL_redbook_play@12
_AIL_redbook_stop@4
_AIL_redbook_close@4
_AIL_redbook_open_drive@4
_AIL_redbook_open@4
_AIL_release_sample_handle@4
_AIL_close_digital_driver@4
_AIL_shutdown@0
_AIL_end_sample@4
_AIL_sample_status@4
_AIL_init_sample@4
_AIL_set_sample_file@12
_AIL_set_named_sample_file@20
_AIL_set_sample_pan@8
_AIL_set_sample_loop_count@8
_AIL_start_sample@4
_AIL_set_sample_volume@8
_AIL_set_redist_directory@4
_AIL_startup@0
_AIL_open_digital_driver@16
_AIL_get_preference@4
_AIL_allocate_sample_handle@4
_AIL_digital_master_volume@4

binkw32

_BinkWait@4
_BinkDoFrame@4
_BinkCopyToBuffer@28
_BinkNextFrame@4
_BinkService@4
_BinkClose@4
_BinkOpen@8
_BinkGetError@0
_BinkGetSummary@8
_BinkSetVolume@8
_BinkOpenMiles@4
_BinkOpenDirectSound@4
_BinkSetSoundSystem@8
_BinkDDSurfaceType@4

kernel32

Sleep
GetProcAddress
TlsGetValue
SetLastError
CopyFileA
MoveFileA
FormatMessageA
SetEndOfFile
FlushViewOfFile
UnmapViewOfFile
GetSystemInfo
CreateFileMappingA
MapViewOfFile
LocalFree
GetTempPathA
GetTempFileNameA
GetFileSize
ReadFile
VirtualProtect
GetLocalTime
lstrcpyA
lstrlenA
lstrcpynA
lstrcmpA
GetVersionExA
lstrcatA
DeleteFileA
GetVolumeInformationA
GetDriveTypeA
GetLogicalDrives
lstrcmpiA
CreateDirectoryA
SetCurrentDirectoryA
GetCurrentDirectoryA
VirtualAlloc
VirtualFree
GetUserDefaultLangID
GetCPInfo
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
LCMapStringA
CloseHandle
SetEvent
CreateEventA
WaitForSingleObject
GetLastError
GetTickCount
CreateFileA
MultiByteToWideChar
WideCharToMultiByte
TlsAlloc
TlsSetValue
GetCurrentThreadId
IsBadWritePtr
HeapReAlloc
HeapCreate
HeapDestroy
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetCurrentProcess
GetEnvironmentStrings
TerminateProcess
ExitProcess
HeapAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindNextFileA
FindFirstFileA
InterlockedIncrement
InterlockedDecrement
HeapSize
RtlUnwind
HeapFree
GetACP
GetOEMCP
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
EnterCriticalSection
LCMapStringW
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
FreeEnvironmentStringsW
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
SetFilePointer
LoadLibraryA
SetStdHandle
RaiseException
CreateThread
FlushFileBuffers
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetLocalTime
RemoveDirectoryA
InterlockedExchange
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteFile

user32

ShowCursor
RegisterClassA
ClipCursor
CharPrevExA
CharNextA
DefWindowProcA
PostQuitMessage
GetKeyState
FindWindowA
IsIconic
ShowWindow
SetForegroundWindow
LoadCursorA
LoadIconA
RegisterClassExA
CreateWindowExA
SetMessageQueue
UpdateWindow
SetFocus
PeekMessageA
TranslateMessage
DispatchMessageA
SetTimer
KillTimer
GetActiveWindow
SetRect
GetWindowLongA
GetMenu
AdjustWindowRectEx
GetDC
ReleaseDC
SetWindowPos
MessageBoxA
PostMessageA
CharNextExA
wsprintfA
SetCursorPos
ClientToScreen
ScreenToClient
GetCursorPos
SetCursor
wvsprintfA
GetSystemMetrics
SetWindowLongA
GetClientRect
RedrawWindow
DrawMenuBar
ValidateRect
GetUpdateRect
GetMessageA

gdi32

GetStockObject
SetTextColor
SetBkColor
GetTextExtentPoint32A
TextOutA
CreateFontIndirectA
GetSystemPaletteEntries
GetDeviceCaps
SelectObject
SetBkMode
DeleteObject

advapi32

RegCreateKeyExA
RegEnumValueA
RegSetValueExA
RegOpenKeyExA
RegCloseKey

ole32

CoUninitialize
CoInitializeEx
CoCreateGuid
CoCreateInstance

ws2_32

WSAStartup
gethostname
gethostbyname
WSACleanup
inet_ntoa

winmm

timeEndPeriod
timeGetDevCaps
timeBeginPeriod
timeGetTime
mixerOpen
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mmioClose
mmioAscend
mmioRead
mmioDescend
mmioOpenA
mmioSeek
mmioSetInfo
mmioAdvance
mmioGetInfo
mciSendCommandA
mixerClose
mixerSetControlDetails
mixerGetNumDevs

imm32

ImmIsIME

ddraw

DirectDrawEnumerateA
DirectDrawCreate

dinput

DirectInputCreateA

Exports

Exports

?SFINIT0_open_item_data@@YIXXZ
?SFLB_AskDialogKeepData@@YAXPADK@Z
?SFLB_CalcTieSecondStep@@YAXXZ
?SFLB_SelfMakeCharacterFileProcess@@YAHXZ

Sections

.text
Size: 900KB - Virtual size: 898KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b425378c4a0f3cfbfaaf1b8030c3be27

Headers

File Characteristics

Imports

mss32

binkw32

kernel32

user32

gdi32

advapi32

ole32

ws2_32

winmm

imm32

ddraw

dinput

Exports

Exports

Sections

.text Size: 900KB - Virtual size: 898KB

.rdata Size: 88KB - Virtual size: 84KB

.data Size: 40KB - Virtual size: 317KB

.rsrc Size: 12KB - Virtual size: 9KB

.reloc Size: 76KB - Virtual size: 73KB

.text
Size: 900KB - Virtual size: 898KB

.rdata
Size: 88KB - Virtual size: 84KB

.data
Size: 40KB - Virtual size: 317KB

.rsrc
Size: 12KB - Virtual size: 9KB

.reloc
Size: 76KB - Virtual size: 73KB