9b53a391525411a99733b00c14bf9f02

Sharing

Copy URL Twitter E-mail

General

Target

9b53a391525411a99733b00c14bf9f02
Size

176KB
MD5

9b53a391525411a99733b00c14bf9f02
SHA1

a7284dc854d60f6f9d936cf6c7cbb1dee4d0e1ab
SHA256

2309b893670e1eb34ea205dc820cea2c7d0dbe577d5e51320ed9d7d4bb681e4f
SHA512

30f0b78ce78fb2a5ade09f6653b682538aeadc5beccecf0465c7e6fff60740a4e6caf168a2d74cf995c016e5c727ac7fb6f40d3203a99192d0b4a419f71c5db5
SSDEEP

3072:AGV4O1TaqGAbkou5cF34ouy//UIj5upt2KJoLVDXRkzQm6Cp:AGVGXoFF34VYcrYbk+W

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9b53a391525411a99733b00c14bf9f02

Files

9b53a391525411a99733b00c14bf9f02
.exe windows:4 windows x86 arch:x86

f8d46360bf5347cedc37d495a3d43627

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
MultiByteToWideChar
CreateFileA
FlushFileBuffers
SetStdHandle
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
GetStringTypeA
FreeEnvironmentStringsW
GetModuleFileNameA
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
SetFilePointer
WriteFile
ReadFile
RaiseException
CloseHandle
GetLastError
HeapSize
GetStringTypeW
LCMapStringA
LCMapStringW
SetEndOfFile
Sleep
FindNextFileA
FindFirstFileA
WideCharToMultiByte
QueryPerformanceCounter
QueryPerformanceFrequency
GetCurrentProcess
TerminateProcess
GetProcAddress
ExitProcess
GetVersion
FreeEnvironmentStringsA
MulDiv
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapFree
HeapReAlloc
HeapAlloc
RtlUnwind

user32

SetCapture
ReleaseCapture
SetWindowPos
SetWindowLongA
AdjustWindowRect
ClientToScreen
GetClientRect
SetCursorPos
GetCursorPos
ShowCursor
SystemParametersInfoA
ToAsciiEx
MapVirtualKeyExA
GetKeyboardState
GetKeyboardLayout
GetWindowRect
PostQuitMessage
MessageBoxA
DefWindowProcA
EndPaint
ScreenToClient
LoadCursorA
PeekMessageA
TranslateMessage
DispatchMessageA
GetMessageA
WaitMessage
LoadIconA
BeginPaint
RegisterClassA
GetDesktopWindow
CreateWindowExA
ShowWindow
UpdateWindow
SetFocus
GetDC

gdi32

GetTextExtentPoint32A
SetBkMode
SetTextColor
CreateFontA
SelectObject
TextOutA
DeleteObject
GetDeviceCaps
GetStockObject

shell32

ShellExecuteA

winmm

timeGetTime
joyGetPos

ddraw

DirectDrawCreate

fmod

_FMUSIC_SetOrder@8
_FMUSIC_PlaySong@4
_FMUSIC_SetLooping@8
_FMUSIC_SetMasterVolume@8
_FMUSIC_LoadSong@4
_FMUSIC_FreeSong@4
_FSOUND_GetVersion@0
_FSOUND_SetMemorySystem@20
_FSOUND_Init@12
_FSOUND_PlaySoundEx@16
_FSOUND_SetFrequency@8
_FSOUND_SetVolume@8
_FSOUND_SetPan@8
_FSOUND_SetPaused@8
_FSOUND_PlaySound@8
_FSOUND_StopSound@4
_FSOUND_SetSFXMasterVolume@4
_FSOUND_Sample_Load@20

Sections

.text
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f8d46360bf5347cedc37d495a3d43627

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

winmm

ddraw

fmod

Sections

.text Size: 120KB - Virtual size: 118KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 5.0MB

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 120KB - Virtual size: 118KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 5.0MB

.rsrc
Size: 32KB - Virtual size: 32KB