b33c86ef3bf15e16d7f566a3507c8e989afe91e6cadd87f2131bdecf27a3b5d7

Sharing

Copy URL Twitter E-mail

General

Target

b33c86ef3bf15e16d7f566a3507c8e989afe91e6cadd87f2131bdecf27a3b5d7
Size

544KB
MD5

5acf564fef3ad946df99dbf64fee22f2
SHA1

d789e9af173b58fa35e356149bd09424e998ece4
SHA256

b33c86ef3bf15e16d7f566a3507c8e989afe91e6cadd87f2131bdecf27a3b5d7
SHA512

66ed4a4f3f234723e7bce76271dc3d15791a7285db6383bb218b68913814b984bda2183309dc34904327c4f22339027a09c0225a99fcd0a0d144b17c66a2c3d5
SSDEEP

12288:i2OCoEDtqE8jpqkczfLRhOax1Ho5lkvuwclb38Eh97GdzihYAw:ibgtqEDzfOa7uMPcN3Hh91YAw

Score

N/A

Malware Config

Signatures

Files

b33c86ef3bf15e16d7f566a3507c8e989afe91e6cadd87f2131bdecf27a3b5d7
.rar
HTLauncher.exe
.exe windows x86

9f4f96a232d2fed74fea75d9a8881803

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

socket
connect
inet_addr
recv
WSAGetLastError
htons
bind
closesocket
WSAAsyncSelect
WSAStartup
WSACleanup
inet_ntoa
send
getsockname

imm32

ImmGetCandidateListA
ImmGetCompositionStringA
ImmGetProperty
ImmNotifyIME
ImmGetContext
ImmSetCompositionWindow
ImmSetConversionStatus
ImmGetDescriptionA
ImmReleaseContext

winmm

timeEndPeriod
timeBeginPeriod
timeGetTime

wininet

InternetCloseHandle
InternetOpenUrlA
InternetReadFile
InternetOpenA

d3dx9_29

D3DXVec3TransformCoord
D3DXMatrixInverse
D3DXMatrixRotationAxis
D3DXMatrixTransformation
D3DXQuaternionRotationYawPitchRoll
D3DXPlaneFromPoints
D3DXVec3Normalize

kernel32

GetStringTypeW
GetStringTypeA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
LCMapStringW
LCMapStringA
HeapSize
TlsGetValue
TlsSetValue
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
RaiseException
GetLastError
InitializeCriticalSection
DeleteCriticalSection
lstrlenA
SetCurrentDirectoryA
GetModuleFileNameA
CompareStringA
CompareStringW
SetUnhandledExceptionFilter
CreateDirectoryA
GetProcAddress
LoadLibraryA
GetCurrentDirectoryA
Sleep
InterlockedDecrement
FreeLibrary
GetTickCount
OutputDebugStringA
DeleteFileA
GetFullPathNameA
SetEvent
SetHandleCount
WaitForSingleObject
CreateThread
LeaveCriticalSection
SetStdHandle
HeapFree
GetStdHandle
QueryPerformanceFrequency
QueryPerformanceCounter
lstrcpyA
CloseHandle
GetModuleHandleA
SetThreadPriority
CreateEventA
TerminateProcess
GetCurrentProcess
GetSystemDefaultLangID
lstrcatA
FindClose
FindNextFileA
FindFirstFileA
GetExitCodeThread
VirtualProtect
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetFileSize
VirtualQuery
FileTimeToLocalFileTime
FileTimeToSystemTime
SetFilePointer
WriteFile
ReadFile
GetCommandLineA
GetStartupInfoA
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetDateFormatA
GetTimeFormatA
RtlUnwind
ExitProcess
GetSystemInfo
VirtualAlloc
HeapAlloc
GetFileType
HeapReAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
ResetEvent
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetCurrentThreadId
GetCurrentProcessId
GetOEMCP
GetCPInfo
TlsAlloc
SetLastError
TlsFree
SetEndOfFile
IsBadReadPtr
IsBadCodePtr
GetExitCodeProcess
CreateProcessA
GetFileAttributesA
GetEnvironmentStringsW
SetEnvironmentVariableA
GetLocaleInfoW
LocalFree
GetDriveTypeA
FlushFileBuffers
EnterCriticalSection
CreateFileA

user32

TranslateMessage
DispatchMessageA
TranslateAcceleratorA
GetMessageA
SetCursor
LoadCursorA
GetCursorPos
ShowCursor
wsprintfA
ClientToScreen
SetCursorPos
LoadStringA
LoadAcceleratorsA
PeekMessageA
DestroyCursor
LoadIconA
RegisterClassExA
SetRect
AdjustWindowRectEx
UpdateWindow
DefWindowProcA
GetAsyncKeyState
GetKeyboardLayout
SetWindowLongA
EnumDisplaySettingsA
CreateWindowExA
SetFocus
ChangeDisplaySettingsA
GetWindowLongA
SetForegroundWindow
ShowWindow
ClipCursor
PostQuitMessage
MessageBoxA
LoadCursorFromFileA
FindWindowA

gdi32

GetStockObject

advapi32

CryptCreateHash
CryptDeriveKey
CryptDestroyKey
CryptReleaseContext
CryptDecrypt
CryptAcquireContextA
CryptDestroyHash
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
CryptHashData

ole32

CoCreateInstance
CoTaskMemFree
CoTaskMemAlloc
OleRun
CoUninitialize
CLSIDFromProgID
CLSIDFromString
CoInitialize

oleaut32

GetErrorInfo
VariantChangeType
SysAllocStringLen
SysAllocString
VariantInit
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayUnaccessData
VariantClear
SysFreeString

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

bugslayerutil

GetNextStackTraceString
GetFirstStackTraceString
GetRegisterString
GetFaultReason

Exports

Exports

fcEXP

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 8.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f4f96a232d2fed74fea75d9a8881803

Headers

File Characteristics

Imports

ws2_32

imm32

winmm

wininet

d3dx9_29

kernel32

user32

gdi32

advapi32

ole32

oleaut32

version

bugslayerutil

Exports

Exports

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 192KB - Virtual size: 190KB

.data Size: 80KB - Virtual size: 8.7MB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 192KB - Virtual size: 190KB

.data
Size: 80KB - Virtual size: 8.7MB

.rsrc
Size: 8KB - Virtual size: 4KB