mediaplayerRE32_64[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

mediaplayerRE32_64.exe
Size

2.5MB
MD5

857eb5f8772aa10ac4b5976be36deb95
SHA1

e40e91d6481f5497f3b519c8b8071815d6d053d4
SHA256

287aa86cd294452bac44843ff10fec80ecc35b8530870281f885e6877aabc077
SHA512

4640460a0e0ab121e155bb4fd899b398614d96df903df844c61d44aa026978f931fb3f67174e9e59fc2aa91d335662e75671e0d3f4ec5b1f0f0a6350a79074c2
SSDEEP

24576:sTHnH8lturfSymFJSvuMBIS/mKuAALvqBWRdJ23TcmIHdvEF/gGn3kPDnzxvXP6v:sTHc6rfSyuJL4IakDdSm/Kg/TJr4Oa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
mediaplayerRE32_64.exe

Files

mediaplayerRE32_64.exe
.exe windows:4 windows x86 arch:x86

a73214b0b6bd51aa0dd922b849725c47

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetContext

wininet

InternetQueryOptionA
InternetCheckConnectionW

kernel32

GetFileAttributesW
GetFileTime
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetPrivateProfileIntW
GetPrivateProfileSectionNamesW
GetPrivateProfileStringW
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetTempPathW
GetThreadPriority
GetTimeZoneInformation
GetVersionExA
GetVersionExW
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InterlockedDecrement
InterlockedIncrement
IsValidCodePage
LCMapStringA
LCMapStringW
LoadLibraryW
LoadResource
LocalAlloc
LocalFree
LockResource
lstrlenA
MoveFileExW
MultiByteToWideChar
OpenProcess
GetEnvironmentVariableW
QueryPerformanceFrequency
RaiseException
ReadFile
ReleaseMutex
RemoveDirectoryW
ResetEvent
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetEvent
SetFileAttributesW
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
GetEnvironmentVariableA
GetEnvironmentStrings
GetCurrentProcess
GetVersion
RtlUnwind
GetEnvironmentStringsW
GetCurrentThreadId
GetCurrentProcessId
GetCPInfo
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetCommandLineW
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitProcess
DeleteFileW
DeleteCriticalSection
CreateThread
CreateProcessW
CreateMutexW
GetStartupInfoW
GetCommandLineA
InitializeCriticalSection
EnterCriticalSection
GetTickCount
LeaveCriticalSection
LoadLibraryA
GetModuleHandleW
GetProcAddress
QueryPerformanceCounter

user32

IsDlgButtonChecked
IsIconic
IsWindow
IsWindowVisible
IsZoomed
KillTimer
LoadCursorW
LoadIconW
LoadImageW
MapDialogRect
MapVirtualKeyW
MessageBoxW
MoveWindow
MsgWaitForMultipleObjects
PeekMessageW
PostMessageW
PostQuitMessage
RegisterClassW
ReleaseDC
RemovePropW
ScreenToClient
ScrollWindowEx
SendDlgItemMessageW
SendMessageW
SetActiveWindow
SetCursor
SetDlgItemInt
SetDlgItemTextW
SetFocus
SetMenuDefaultItem
SetMenuItemInfoW
SetPropW
SetScrollInfo
SetTimer
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowsHookExW
SetWindowTextW
ShowWindow
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UpdateWindow
IsDialogMessageW
WindowFromDC
wsprintfW
MessageBoxA
GetWindowTextW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollInfo
GetPropW
GetParent
GetMessageW
GetMenu
GetKeyState
GetKeyNameTextW
GetForegroundWindow
GetFocus
GetDlgItemTextW
GetDlgItemInt
GetDlgItem
CallWindowProcW
CheckDlgButton
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursor
GetClientRect
GetClassNameA
FrameRect
FindWindowW
FillRect
EnableWindow
EnableMenuItem
DrawTextW
DrawIconEx
DispatchMessageW
DialogBoxParamW
DialogBoxIndirectParamW
DestroyWindow
DestroyMenu
InvalidateRect
InsertMenuW
InsertMenuItemW
WaitForInputIdle
GetWindowThreadProcessId
ClientToScreen
CopyImage
CreateDialogIndirectParamW
CreateDialogParamW
DestroyIcon
DeleteMenu
DefWindowProcW
CreateWindowExW
CreatePopupMenu
EndDialog

gdi32

SetViewportExtEx
TextOutW
SetTextColor
SetStretchBltMode
SetBkMode
SetBkColor
SelectObject
Polygon
MoveToEx
LineTo
GetWindowExtEx
GetViewportExtEx
GetTextExtentPoint32W
GetStockObject
GetObjectW
GetCurrentObject
DeleteObject
SetWindowExtEx
DeleteDC

comdlg32

CommDlgExtendedError

advapi32

SetSecurityDescriptorDacl
RegSetValueExW
RegSetKeySecurity
RegQueryValueExW
RegQueryInfoKeyW
RegOpenKeyW
RegOpenKeyExW
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
OpenProcessToken
InitializeSid
InitializeSecurityDescriptor
SetFileSecurityW

shell32

ShellExecuteExW
Shell_NotifyIconW
CommandLineToArgvW
ShellExecuteW

ole32

CoUninitialize
CreateStreamOnHGlobal
CoCreateInstance

Sections

.text
Size: 760KB - Virtual size: 757KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 568KB - Virtual size: 568KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_uhead_9
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a73214b0b6bd51aa0dd922b849725c47

Headers

File Characteristics

Imports

imm32

wininet

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 760KB - Virtual size: 757KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 12KB - Virtual size: 21KB

.rsrc Size: 568KB - Virtual size: 568KB

_uhead_9 Size: 1.2MB - Virtual size: 1.2MB

.text
Size: 760KB - Virtual size: 757KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 12KB - Virtual size: 21KB

.rsrc
Size: 568KB - Virtual size: 568KB

_uhead_9
Size: 1.2MB - Virtual size: 1.2MB