mplayer2[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

mplayer2.exe
Size

107KB
MD5

b16443ba0652c42645b32a48232822e7
SHA1

dffcc7ff4b9bedd9710d849e6e3791bb3fb6a291
SHA256

46a5e4205b4e9edaf16d281f403753720df550e96752d6b2cc9a5d4ea30378e4
SHA512

6b5c08d9f0405334f2be2b30a572ae1c6c98b9e54b7d935913263634032f381e392dd751da9fd799030a3690473519adbbd1747a8cab5bfb83c7165a4225130f
SSDEEP

3072:NcGBtLVqxsspmnTo7cyTfk0BKTHZFU6Jt:NlIeTo7LTc0Bg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
mplayer2.exe

Files

mplayer2.exe
.exe windows:5 windows x86 arch:x86

229921471c6a1ee8fd728564c21e9a2b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

EqualSid
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegCreateKeyA
RegQueryValueA
RegSetValueExA
FreeSid
RegCloseKey
AllocateAndInitializeSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
RegEnumValueA
RegQueryInfoKeyA

kernel32

CreateMutexA
FreeLibrary
GetCurrentProcessId
SetEvent
OpenEventA
lstrcmpiA
WideCharToMultiByte
GetVersionExA
GetCurrentThread
GetCurrentDirectoryA
LoadLibraryA
lstrcpyA
GetSystemTime
GetSystemTimeAsFileTime
SystemTimeToFileTime
FormatMessageA
CreateThread
WaitForSingleObject
LocalFree
GetSystemInfo
GetUserDefaultLCID
GetLocaleInfoA
GetModuleFileNameA
CloseHandle
ReleaseMutex
lstrcmpA
GetModuleHandleA
GetProcAddress
FindResourceA
lstrlenW
lstrlenA
FreeResource
LoadResource
LockResource
FindNextFileA
ExpandEnvironmentStringsA
FindFirstFileA
MultiByteToWideChar
FindClose
CreateDirectoryA
GetFileAttributesA
GetLastError
GetCommandLineA
GetCurrentProcess
GetCurrentThreadId
GetStartupInfoA
LocalAlloc
InterlockedExchange
RaiseException

gdi32

PatBlt
BitBlt
SetBkColor
TextOutA
StretchBlt
SetTextColor
SetTextAlign
CreateDIBitmap
GetTextExtentPoint32A
DeleteDC
SetBkMode
CreateCompatibleDC
GetStockObject
CreateSolidBrush
CreateFontIndirectA
DeleteObject
SelectObject
GetOutlineTextMetricsA
GetTextMetricsA

user32

OffsetRect
DispatchMessageA
TranslateMessage
GetMessageA
wsprintfA
MapWindowPoints
LoadAcceleratorsA
GetWindowLongA
RegisterClassA
CharNextA
CharPrevA
GetSubMenu
GetMenuStringA
EnumWindows
EnumDesktopWindows
GetThreadDesktop
CharUpperA
SendMessageTimeoutA
SetWindowPlacement
GetCursorPos
GetLastActivePopup
GetMenuState
CheckMenuItem
SetForegroundWindow
EndPaint
ModifyMenuA
AppendMenuA
DrawMenuBar
InsertMenuA
LoadStringW
SendDlgItemMessageA
CheckDlgButton
WinHelpA
GetDlgCtrlID
ChildWindowFromPoint
EndDialog
PostMessageA
SetWindowLongA
LoadStringA
SetCursor
SetTimer
IsWindowEnabled
UpdateWindow
PtInRect
TranslateAcceleratorA
DefWindowProcA
InvalidateRgn
InvalidateRect
SetCapture
ReleaseCapture
GetClassNameA
DestroyWindow
BeginPaint
SetWindowTextA
LoadCursorA
CheckMenuRadioItem
GetMenuItemCount
GetMenuItemRect
CopyRect
CreateWindowExA
GetClientRect
GetMenu
EnableMenuItem
ReleaseDC
SetRectEmpty
GetDC
DrawTextA
LoadIconA
FillRect
DeleteMenu
DrawIconEx
CreateMenu
SystemParametersInfoA
InsertMenuItemA
GetSysColor
MessageBoxA
GetSystemMetrics
DestroyIcon
GetDlgItemTextA
GetWindowTextA
IsDlgButtonChecked
DialogBoxParamA
CheckRadioButton
SetDlgItemTextA
SendMessageA
EnumChildWindows
SetFocus
EnableWindow
GetParent
GetDlgItem
ScreenToClient
ShowWindow
GetWindowRect
PostQuitMessage
MoveWindow
KillTimer
SetWindowPos
GetWindowPlacement

ole32

OleUninitialize
StringFromGUID2
OleInitialize
GetRunningObjectTable
CreateItemMoniker
CoDisconnectObject
CoTaskMemAlloc
OleLockRunning
CoTaskMemFree
CoCreateInstance

oleaut32

SysAllocString
SysFreeString
VariantInit
SysStringLen

shell32

SHGetFileInfoA
ExtractIconExA
DragFinish
SHFileOperationA
ShellExecuteA
DragQueryFileA

msvcrt

__p__commode
_initterm
__getmainargs
__setusermatherr
exit
_XcptFilter
__p__acmdln
_mbslwr
_snprintf
_exit
_mbsncpy
_ismbcspace
_mbstok
_itoa
_mbsdec
_mbsnbcmp
_mbsnbcpy
_mbsstr
wcscmp
_mbslen
_mbsnbcnt
_ltoa
wcslen
swprintf
atol
tolower
_mbsicmp
_wcsicmp
atoi
_mbschr
_mbsrchr
wcspbrk
_mbsinc
sprintf
wcschr
_adjust_fdiv
wcsrchr
_mbscmp
??3@YAXPAX@Z
??2@YAPAXI@Z
__p__fmode
__set_app_type
_onexit
__dllonexit
_except_handler3
_controlfp

Sections

.text
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

229921471c6a1ee8fd728564c21e9a2b

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

ole32

oleaut32

shell32

msvcrt

Sections

.text Size: 61KB - Virtual size: 60KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 41KB - Virtual size: 40KB

.text
Size: 61KB - Virtual size: 60KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 41KB - Virtual size: 40KB