ace37ae23502bbb35597d3b8092d8d32205eb0783a5dc2db4a5f740423fc0d7e

Sharing

Copy URL

Twitter E-mail

General

Target

ace37ae23502bbb35597d3b8092d8d32205eb0783a5dc2db4a5f740423fc0d7e
Size

604KB
MD5

38f362f762e5e37deb56036abc6495aa
SHA1

35158fba3a2eaef8c2303b3acee6efedab7e4407
SHA256

ace37ae23502bbb35597d3b8092d8d32205eb0783a5dc2db4a5f740423fc0d7e
SHA512

3630c64676934820a19faddca0569f5fdaf7d6877ebb91db228a06fc17dce6d263b673e7afc671e80321c7301f558854c7d491e2f8c2d281d5f22304cd93ccbd
SSDEEP

12288:lH70csWpfy3d/bMnLW5ovVkbAvNqULwyOKjfe:6Wpfy3d/b+LW5xmmefe

Score

N/A

Malware Config

Signatures

Files

ace37ae23502bbb35597d3b8092d8d32205eb0783a5dc2db4a5f740423fc0d7e
.exe windows x86

bbb652144cb0f1a3c1a2931cd873f65f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreateEx
DirectDrawEnumerateExA

dsound

ord2
ord1

dinput

DirectInputCreateEx

winmm

timeBeginPeriod
timeGetDevCaps
timeSetEvent
timeEndPeriod

kernel32

GetFileAttributesA
GetFileTime
SetErrorMode
GlobalFlags
GetCPInfo
GetOEMCP
RtlUnwind
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
RaiseException
HeapAlloc
HeapFree
GetStartupInfoA
GetCommandLineA
HeapReAlloc
SetStdHandle
GetFileType
ExitThread
CreateThread
TerminateProcess
HeapSize
GetCurrentProcessId
LCMapStringA
LCMapStringW
GetTimeZoneInformation
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
GetStdHandle
UnhandledExceptionFilter
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetEnvironmentVariableA
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
SizeofResource
LockResource
LoadResource
FindResourceA
WideCharToMultiByte
WritePrivateProfileStringA
GetPrivateProfileStringA
ExitProcess
FindClose
FindFirstFileA
CopyFileA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
InterlockedIncrement
GetCurrentThread
lstrcmpA
ConvertDefaultLocale
EnumResourceLanguagesA
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
GetCurrentThreadId
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetModuleHandleA
WaitForSingleObject
LeaveCriticalSection
FreeEnvironmentStringsA
GetTickCount
GetProcAddress
LoadLibraryA
QueryPerformanceCounter
Sleep
QueryPerformanceFrequency
GlobalMemoryStatus
GetPrivateProfileIntA
MultiByteToWideChar
GetVersion
CompareStringA
CreateEventA
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
IsBadReadPtr
IsBadWritePtr
GetModuleFileNameA
CreateFileA
GetFullPathNameA
GetVolumeInformationA
CompareStringW
lstrcpyA
GetCurrentProcess
DuplicateHandle
CloseHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
InterlockedDecrement
LocalAlloc
FreeLibrary
FileTimeToLocalFileTime
FileTimeToSystemTime
GetLastError
SetLastError
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
lstrlenA
lstrcmpiA

user32

InflateRect
LoadCursorA
GetSysColorBrush
ShowOwnedPopups
PostQuitMessage
GetWindowDC
ReleaseDC
GetDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
SetPropA
GetPropA
RemovePropA
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
SetForegroundWindow
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
RegisterClassA
UnregisterClassA
DefWindowProcA
CallWindowProcA
GetWindowRect
PtInRect
RegisterWindowMessageA
LoadMenuA
DestroyMenu
GetClassNameA
GetSysColor
WinHelpA
GetActiveWindow
EqualRect
GetKeyState
GetMenu
UnpackDDElParam
LoadIconA
GetClassInfoA
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetActiveWindow
IsWindowVisible
InvalidateRect
IsIconic
InsertMenuItemA
CreatePopupMenu
IntersectRect
OffsetRect
SetRectEmpty
CopyRect
GetLastActivePopup
BringWindowToTop
SetMenu
IsWindow
GetWindow
TranslateAcceleratorA
GetWindowTextA
SendMessageA
GetFocus
GetParent
SetWindowPos
SetFocus
EnableWindow
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
GetWindowLongA
GetDlgItem
wsprintfA
GetSystemMetrics
UnhookWindowsHookEx
GetDesktopWindow
GetMenuState
GetMenuItemID
SystemParametersInfoA
GetMenuItemInfoA
GetMenuItemCount
GetSubMenu
CharUpperA
SetRect
MapVirtualKeyA
ToAscii
GetWindowPlacement
AdjustWindowRect
GetClientRect
ClientToScreen
GetForegroundWindow
PostMessageA
ShowCursor
UpdateWindow
MessageBoxA
ReuseDDElParam

gdi32

DeleteObject
BitBlt
GetPixel
PtVisible
RectVisible
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
DeleteDC
CreatePatternBrush
CreateSolidBrush
GetTextExtentPoint32A
RestoreDC
SaveDC
CreateBitmap
GetObjectA
SetBkColor
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
SetBkMode
SetTextColor
TextOutA
CreateFontIndirectA
SetDIBitsToDevice
Ellipse
GetStockObject
SelectObject
MoveToEx
SetMapMode
ScaleWindowExtEx
LineTo

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

DragFinish
DragQueryFileA

comctl32

ImageList_Draw
ImageList_GetImageInfo
ord17
ImageList_Destroy

shlwapi

PathIsUNCA
PathFindExtensionA
PathStripToRootA
PathFindFileNameA

oleaut32

VariantInit
VariantChangeType
VariantClear

wininet

HttpOpenRequestA
InternetConnectA
HttpSendRequestExA
HttpEndRequestA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
HttpQueryInfoA
HttpAddRequestHeadersA
InternetQueryDataAvailable

Sections

.text
Size: 376KB - Virtual size: 372KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 120KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ordata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bbb652144cb0f1a3c1a2931cd873f65f

Headers

File Characteristics

Imports

ddraw

dsound

dinput

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

wininet

Sections

.text Size: 376KB - Virtual size: 372KB

.rdata Size: 120KB - Virtual size: 116KB

.data Size: 12KB - Virtual size: 22KB

.rsrc Size: 32KB - Virtual size: 29KB

.ordata Size: 60KB - Virtual size: 60KB

.text
Size: 376KB - Virtual size: 372KB

.rdata
Size: 120KB - Virtual size: 116KB

.data
Size: 12KB - Virtual size: 22KB

.rsrc
Size: 32KB - Virtual size: 29KB

.ordata
Size: 60KB - Virtual size: 60KB