0a224c09dbac5d4c717901868a989277

Sharing

Copy URL

Twitter E-mail

General

Target

0a224c09dbac5d4c717901868a989277
Size

336KB
MD5

0a224c09dbac5d4c717901868a989277
SHA1

1fb406a279deeff35ae256bcb010be28a6e0e028
SHA256

fd9598092380b462cef345fec14648934b109b841f6b678cdd5911cd60be806d
SHA512

5568cdf6240f4ea1dd81cd14d0141034fecf0a5859ebf63badf39ac17d00c86f4fed887f6ddaeb94be4a840dac166d3eaa3651bbccdd638df15ced87b32ba4b4
SSDEEP

6144:8HZPksujdYcN2pZjVldktpoBMkRI1xmeB1zxdKMrm70:8JdodN4gyBMkRRa1NEMS70

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0a224c09dbac5d4c717901868a989277

Files

0a224c09dbac5d4c717901868a989277
.exe windows:4 windows x86 arch:x86

833edeb5eede623d5d3b9dec2e9fd4de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsound

DirectSoundCreate

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

advapi32

RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA

comctl32

ord17

gdi32

SetDIBColorTable
GetStockObject
RestoreDC
GetObjectA
GetDIBColorTable
ExtTextOutA
GetDeviceCaps
DeleteObject
CreateRectRgnIndirect
CreateCompatibleDC
DeleteDC
SelectObject
CreateFontA
SaveDC
RealizePalette
CreatePalette
SelectPalette
SetSystemPaletteUse
GetSystemPaletteEntries
CreateFontIndirectA
SetBkColor
Rectangle
StretchBlt
OffsetClipRgn
CreateDIBSection
GetClipRgn
ExcludeClipRect
BitBlt
SelectClipRgn
TextOutA
SetTextColor
SetBkMode

shell32

ShellExecuteA

user32

SystemParametersInfoA
KillTimer
PostQuitMessage
GetWindowLongA
CreateDialogParamA
GetMessageA
GetSysColor
GetWindowTextA
DrawFrameControl
DrawIconEx
PostMessageA
OffsetRect
GetWindowDC
FillRect
GetCursorPos
MapWindowPoints
WindowFromPoint
PtInRect
HideCaret
LoadImageA
DrawTextA
PeekMessageA
TranslateMessage
DispatchMessageA
UnhookWindowsHookEx
SendMessageA
DestroyWindow
DestroyMenu
RedrawWindow
GetClientRect
IsIconic
LockWindowUpdate
BeginPaint
EndPaint
GetDC
CallNextHookEx
GetAsyncKeyState
DeleteMenu
InsertMenuItemA
RemoveMenu
DrawMenuBar
SetMenu
SetWindowPos
IsZoomed
MoveWindow
UpdateWindow
InvalidateRect
CreateMenu
LoadIconA
RegisterClassA
ShowWindow
ReleaseDC
SetWindowsHookExA
GetSystemMetrics
CreateWindowExA
SendDlgItemMessageA
SetTimer
SetWindowLongA
SetForegroundWindow
ShowCursor
GetWindowRect
DefWindowProcA
LoadCursorA
SetCursor
SetWindowTextA
DialogBoxParamA
MessageBoxA
EndDialog
GetActiveWindow
GetDesktopWindow
GetDlgItem
IsWindowVisible

winmm

timeBeginPeriod
timeSetEvent
waveOutPrepareHeader
waveOutWrite
waveOutReset
timeKillEvent
waveOutOpen
waveOutUnprepareHeader
waveOutGetPosition
timeGetTime
timeEndPeriod
waveOutClose
waveOutGetDevCapsA
joyGetPosEx

wsock32

closesocket
recv
accept
recvfrom
sendto
send
WSAStartup
WSACleanup
gethostname
socket
WSAGetLastError
WSAAsyncSelect
setsockopt
bind
getsockname
ntohs
ntohl

kernel32

GetVersion
CompareStringW
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
SetEnvironmentVariableA
SuspendThread
GetTimeZoneInformation
FreeEnvironmentStringsA
ExitProcess
GetCurrentThreadId
GetCurrentProcess
GetCurrentThread
DuplicateHandle
QueryPerformanceFrequency
GetModuleFileNameA
SetUnhandledExceptionFilter
GetVersionExA
GlobalMemoryStatus
LocalFree
LocalAlloc
QueryPerformanceCounter
CreateMutexA
WaitForSingleObject
ReleaseMutex
SetFilePointer
CloseHandle
SetEndOfFile
FlushFileBuffers
ReadFile
WriteFile
GetLastError
FormatMessageA
CreateFileA
HeapFree
TerminateProcess
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter
GlobalAlloc
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
HeapDestroy
CreateFileMappingA
HeapCreate
VirtualFree
RtlUnwind
VirtualAlloc
LCMapStringA
LCMapStringW
SetStdHandle
GetStringTypeA
GetStringTypeW
CompareStringA
Sleep
HeapAlloc
LoadLibraryA
FreeLibrary
GetProcAddress
SetThreadPriority
CreateThread
CreateEventA
SetEvent
GetDriveTypeA
VirtualQuery
VirtualProtect
GetSystemInfo
GetLocalTime
GetSystemTime
GlobalLock
GlobalUnlock
GlobalFree

Sections

.text
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.2rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

833edeb5eede623d5d3b9dec2e9fd4de

Headers

File Characteristics

Imports

dsound

version

advapi32

comctl32

gdi32

shell32

user32

winmm

wsock32

kernel32

Sections

.text Size: 178KB - Virtual size: 178KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 32KB - Virtual size: 185KB

.rsrc Size: 89KB - Virtual size: 88KB

.2rdata Size: 28KB - Virtual size: 28KB

.text
Size: 178KB - Virtual size: 178KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 32KB - Virtual size: 185KB

.rsrc
Size: 89KB - Virtual size: 88KB

.2rdata
Size: 28KB - Virtual size: 28KB