7de481a0f1908d0985ca3c5ff8408a33c8ad7e6af2070b73cf7834d4851e5352

Sharing

Copy URL Twitter E-mail

General

Target

7de481a0f1908d0985ca3c5ff8408a33c8ad7e6af2070b73cf7834d4851e5352
Size

1.3MB
MD5

70ce4c89d2ff5b3b98a5643b74c06ee8
SHA1

1fb5bc9dd29f88f85a92f1756e49867d19ce109e
SHA256

7de481a0f1908d0985ca3c5ff8408a33c8ad7e6af2070b73cf7834d4851e5352
SHA512

104eb7b3cde331c08e316c4218ea71092063f7b834089a106fd577e8266cb72028d50ce6644558d79e59fd55c7b74ccba059a7562b1cad2f55b69f5f35634e4e
SSDEEP

12288:yo37nIVB4qYvM0VX8BTx2UMIQnjdS7Jynuv8xneKqiXw:yETqSOkn+EnuUQnAw

Score

N/A

Malware Config

Signatures

Files

7de481a0f1908d0985ca3c5ff8408a33c8ad7e6af2070b73cf7834d4851e5352
.exe windows x86

8332efa17a7af66dc8633f1aa4dde088

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dinput

DirectInputCreateA

dinput8

DirectInput8Create

d3d8

Direct3DCreate8

dsetup

ord5
ord10

kernel32

ExitProcess
HeapAlloc
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetStdHandle
UnhandledExceptionFilter
HeapFree
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CreateProcessA
SetStdHandle
VirtualProtect
GetSystemInfo
VirtualQuery
InterlockedExchange
GetFileAttributesA
SetErrorMode
GetOEMCP
GetCPInfo
CreateFileA
GetCurrentProcess
SetEndOfFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
TlsGetValue
EnterCriticalSection
GlobalHandle
GlobalReAlloc
LeaveCriticalSection
LocalAlloc
GlobalFlags
InterlockedIncrement
WritePrivateProfileStringA
GlobalGetAtomNameA
GlobalFindAtomA
lstrcatA
lstrcmpW
InterlockedDecrement
GetLastError
SetLastError
MulDiv
FormatMessageA
lstrcpynA
LocalFree
GlobalUnlock
GlobalFree
FreeResource
WaitForSingleObject
CloseHandle
GlobalAddAtomA
GetCurrentThread
GetCurrentThreadId
GlobalLock
GlobalAlloc
FreeLibrary
GlobalDeleteAtom
lstrcmpA
GetModuleFileNameA
GetProcAddress
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcpyA
LoadLibraryA
GetModuleHandleA
TerminateProcess
GetExitCodeProcess
SetCurrentDirectoryA
GetCurrentDirectoryA
Sleep
FindResourceA
LoadResource
LockResource
SizeofResource
GetACP
lstrlenA
lstrcmpiA
GetVersion
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
FreeEnvironmentStringsA

user32

MapWindowPoints
SetForegroundWindow
UpdateWindow
GetMenu
AdjustWindowRectEx
RegisterClassA
UnregisterClassA
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
CopyRect
PtInRect
GetWindow
GetWindowTextA
SetWindowPos
SetFocus
ShowWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetSysColor
EndPaint
BeginPaint
ReleaseDC
GetDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetFocus
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetWindowsHookExA
CallNextHookEx
GetMessageA
IsWindowVisible
GetKeyState
DestroyMenu
GetCursorPos
ValidateRect
GetParent
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
SetCursor
wsprintfA
PostMessageA
EnumDisplaySettingsA
PostQuitMessage
MessageBoxA
EnableWindow
PeekMessageA
TranslateMessage
DispatchMessageA
LoadIconA
GetSystemMetrics
GetActiveWindow
GetClientRect
IsIconic
SendMessageA
DrawIcon
UnhookWindowsHookEx
GetSysColorBrush
LoadCursorA
RegisterWindowMessageA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
GetClassInfoA

gdi32

GetObjectA
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetStockObject
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC
DeleteObject
GetDeviceCaps
DeleteDC
CreateBitmap

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyExA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

comctl32

ord17

shlwapi

PathFindFileNameA
PathFindExtensionA

oleaut32

VariantChangeType
VariantClear
VariantInit

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

vekkabs
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

oigwmnq
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

uluvoli
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

wcavaol
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8332efa17a7af66dc8633f1aa4dde088

Headers

File Characteristics

Imports

dinput

dinput8

d3d8

dsetup

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

shlwapi

oleaut32

oleacc

Sections

.text Size: 132KB - Virtual size: 131KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 12KB - Virtual size: 59KB

.rsrc Size: 1.0MB - Virtual size: 1.0MB

vekkabs Size: 32KB - Virtual size: 32KB

oigwmnq Size: 32KB - Virtual size: 32KB

uluvoli Size: 32KB - Virtual size: 32KB

wcavaol Size: - Virtual size: 4KB

.text
Size: 132KB - Virtual size: 131KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 12KB - Virtual size: 59KB

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

vekkabs
Size: 32KB - Virtual size: 32KB

oigwmnq
Size: 32KB - Virtual size: 32KB

uluvoli
Size: 32KB - Virtual size: 32KB

wcavaol
Size: - Virtual size: 4KB