Static task
static1
General
-
Target
CoDMP.exe
-
Size
1.5MB
-
MD5
315c389056f04b0ec68cd5796aa0a5c7
-
SHA1
26a1b7df6edfea4556992f2cd89a5103be5c78e5
-
SHA256
207fbb18a45c92d2caf46d52c20ea7d507aad2dfa26074f91597fe8c91232d09
-
SHA512
71946f33f93c47a70f17d335cdb2e78eb00bcba1db70da1d24298bf8e0a2f62fc182f2b6938c2dac8f5e2509e7cb2fb9860392c015d474f5df01ea3ba722b50b
-
SSDEEP
24576:tEKc3PB25R2kZ8cnZaMtxjNQJ2VVFfN5zl9p5h291q+xtLJgqk0Y9WWtsWBHm4/B:asZ8cnJxf7ZN5zlOLMWWmu2XUZkUjepU
Malware Config
Signatures
Files
-
CoDMP.exe.exe windows x86
9e32267ef06c971fe2c290f755552518
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
winmm
midiInGetNumDevs
midiInOpen
joyGetDevCapsA
midiInStart
midiInGetDevCapsA
joyGetPosEx
midiInClose
timeEndPeriod
timeGetTime
timeBeginPeriod
joyGetNumDevs
wsock32
send
closesocket
socket
bind
recv
WSACleanup
sendto
setsockopt
htons
WSAGetLastError
ioctlsocket
ntohl
recvfrom
WSAStartup
connect
gethostname
inet_ntoa
gethostbyname
mss32
_AIL_start_3D_sample@4
_AIL_end_sample@4
_AIL_enumerate_3D_providers@12
_AIL_set_sample_adpcm_block_size@8
_AIL_set_3D_position@16
_AIL_allocate_3D_sample_handle@4
_AIL_set_3D_sample_offset@8
_AIL_open_stream@12
_AIL_set_3D_sample_playback_rate@8
_AIL_end_3D_sample@4
_AIL_set_3D_sample_volume@8
_AIL_stop_3D_sample@4
_AIL_set_stream_ms_position@8
_AIL_open_3D_provider@4
_AIL_resume_3D_sample@4
_AIL_3D_position@16
_AIL_stream_status@4
_AIL_sample_playback_rate@4
_AIL_load_sample_buffer@16
_AIL_sample_volume_pan@12
_AIL_minimum_sample_buffer_size@12
_AIL_set_sample_ms_position@8
_AIL_release_sample_handle@4
_AIL_set_DirectSound_HWND@8
_AIL_3D_sample_length@4
_AIL_set_redist_directory@4
_AIL_sample_buffer_ready@4
_AIL_3D_sample_playback_rate@4
_AIL_close_3D_provider@4
_AIL_stream_playback_rate@4
_AIL_set_file_callbacks@16
_AIL_start_stream@4
_AIL_stream_volume_pan@12
_AIL_set_sample_type@12
_AIL_last_error@0
_AIL_set_stream_volume_pan@12
_AIL_set_3D_distance_factor@8
_AIL_3D_sample_volume@4
_AIL_pause_stream@8
_AIL_set_sample_address@12
_AIL_set_3D_sample_info@8
_AIL_start_sample@4
_AIL_process_digital_audio@24
_AIL_WAV_info@8
_AIL_set_preference@8
_AIL_set_stream_loop_count@8
_AIL_set_sample_playback_rate@8
_AIL_set_sample_loop_count@8
_AIL_set_3D_room_type@8
_AIL_stream_ms_position@12
_AIL_stop_sample@4
_AIL_init_sample@4
_AIL_allocate_sample_handle@4
_AIL_3D_sample_status@4
_AIL_resume_sample@4
_AIL_set_sample_reverb_levels@12
_AIL_3D_sample_offset@4
_AIL_shutdown@0
_AIL_set_sample_volume_pan@12
_AIL_close_stream@4
_AIL_set_3D_sample_loop_count@8
_AIL_3D_provider_attribute@12
_AIL_set_stream_playback_rate@8
_AIL_sample_status@4
_AIL_size_processed_digital_audio@16
_AIL_set_stream_reverb_levels@12
_AIL_set_3D_sample_distances@12
_AIL_open_digital_driver@16
_AIL_startup@0
_AIL_digital_CPU_percent@4
_AIL_set_3D_sample_effects_level@8
_AIL_set_digital_master_room_type@8
_AIL_sample_position@4
_AIL_sample_ms_position@12
ddraw
DirectDrawEnumerateExA
DirectDrawCreateEx
kernel32
CompareStringA
VirtualQuery
GetSystemInfo
VirtualProtect
GetOEMCP
GetACP
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetCPInfo
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
RaiseException
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
RtlUnwind
GetTimeZoneInformation
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
FlushFileBuffers
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
CompareStringW
FatalAppExitA
SetEnvironmentVariableA
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
TlsAlloc
GetCurrentThread
TlsGetValue
TlsSetValue
GetCurrentThreadId
SetLastError
TlsFree
GetCommandLineA
GetStartupInfoA
HeapReAlloc
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
TerminateProcess
ExitProcess
GetFullPathNameA
CreateDirectoryA
FindNextFileA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
MoveFileA
GetSystemDirectoryA
CloseHandle
GetVersionExA
InitializeCriticalSection
SetEnvironmentVariableW
SetStdHandle
GetTickCount
SetEndOfFile
GetLocaleInfoW
SetConsoleCtrlHandler
GetCurrentProcessId
GetTempPathA
DeleteFileA
MulDiv
HeapDestroy
Module32Next
CreateToolhelp32Snapshot
GetCurrentDirectoryA
GetModuleFileNameA
GetTempFileNameA
CopyFileA
SetUnhandledExceptionFilter
DeleteCriticalSection
IsBadCodePtr
GetFileAttributesA
SetFileAttributesA
GlobalMemoryStatus
FreeLibrary
QueryPerformanceCounter
Sleep
GetProcAddress
LoadLibraryA
GetModuleHandleA
QueryPerformanceFrequency
CreateFileA
SetErrorMode
GlobalSize
GlobalLock
WaitForSingleObject
SetThreadExecutionState
IsBadReadPtr
FormatMessageA
WriteFile
GetDriveTypeA
OpenProcess
CreateProcessA
ReadFile
GlobalUnlock
Module32First
GetLastError
user32
MapVirtualKeyA
RegisterWindowMessageA
GetWindowLongA
SystemParametersInfoA
MoveWindow
ChangeDisplaySettingsA
EnumDisplaySettingsA
SetForegroundWindow
UnregisterHotKey
CreateWindowExA
MessageBoxA
GetDC
DestroyWindow
GetSystemMetrics
ReleaseCapture
ClipCursor
GetCursorPos
SetCursorPos
ShowCursor
SetCapture
GetWindowRect
OpenClipboard
DispatchMessageA
ShowWindow
PeekMessageA
GetClipboardData
GetForegroundWindow
TranslateMessage
SetFocus
wsprintfA
CloseClipboard
GetMessageA
RegisterClassA
LoadCursorA
UpdateWindow
LoadImageA
SetWindowPos
DefWindowProcA
SendMessageA
LoadIconA
AdjustWindowRect
CallWindowProcA
CloseWindow
SetWindowTextA
GetDesktopWindow
ReleaseDC
InvalidateRect
SetWindowLongA
GetWindowTextA
PostQuitMessage
SetTimer
RegisterHotKey
gdi32
SwapBuffers
ChoosePixelFormat
DeleteDC
DescribePixelFormat
CreateSolidBrush
SetBkColor
GetDeviceCaps
CreateFontA
SetTextColor
GetDeviceGammaRamp
SetDeviceGammaRamp
SetPixelFormat
advapi32
GetUserNameA
shell32
ShellExecuteA
Sections
.text Size: 1.2MB - Virtual size: 1.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 204KB - Virtual size: 201KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 52KB - Virtual size: 20.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ