b54e134bf9b57676b5da2fb6e274460eba23c797e48669ee41f1fa5a680a8474

Sharing

Copy URL Twitter E-mail

General

Target

b54e134bf9b57676b5da2fb6e274460eba23c797e48669ee41f1fa5a680a8474
Size

2.0MB
MD5

645d695b767524349c9b29f1d1c19eb0
SHA1

bbc29e121586da948290e2ccbba064cb484ffdaf
SHA256

b54e134bf9b57676b5da2fb6e274460eba23c797e48669ee41f1fa5a680a8474
SHA512

53f2cf173fbf41d40cc09534d62996108d0c493d5994ed5fd266a34cef1060cbac6267c559e84dc63eb43885aefa90ee4a510ca44c4ea8844367de6fa8746ffe
SSDEEP

24576:TF2wjON6DwswXmPjfNtFPBEJ4B6vzOqG01cQoPkpXmhvK5no4z68pJu4PpXHTWV/:IsO4TLVi1vzOPAmkghvU682uHTbYAzFy

Score

N/A

Malware Config

Signatures

Files

b54e134bf9b57676b5da2fb6e274460eba23c797e48669ee41f1fa5a680a8474
.exe windows x86

b91b397e5d93ead2689f4f58d11a2972

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
GetLocalTime
SetPriorityClass
GetThreadPriority
GetCurrentThread
GetCurrentThreadId
GetPriorityClass
GetCurrentProcess
GetVersionExA
GetLastError
WaitForMultipleObjects
LeaveCriticalSection
EnterCriticalSection
QueryPerformanceCounter
Sleep
WaitForSingleObject
CloseHandle
SetFilePointer
ReadFile
GetOverlappedResult
WriteFile
FindFirstFileA
FindClose
FindNextFileA
DeleteFileA
CreateDirectoryA
RemoveDirectoryA
SetEvent
QueryPerformanceFrequency
GetFileSize
InitializeCriticalSection
SetThreadPriority
GlobalMemoryStatus
GetUserDefaultLangID
GetCommandLineA
CreateFileA
WideCharToMultiByte
SetStdHandle
SetEndOfFile
MultiByteToWideChar
UnhandledExceptionFilter
TlsGetValue
SetLastError
TlsAlloc
DeleteCriticalSection
HeapSize
GetProcAddress
HeapReAlloc
GetSystemTimeAsFileTime
RtlUnwind
HeapFree
FileTimeToLocalFileTime
FileTimeToSystemTime
GetVersion
GetStartupInfoA
GetOEMCP
GetACP
GetFileAttributesA
SetEnvironmentVariableA
CompareStringW
GetCPInfo
GetStringTypeW
GetStringTypeA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
RaiseException
IsBadWritePtr
LoadLibraryA
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetTickCount
GetModuleFileNameA
LCMapStringW
LCMapStringA
GetModuleHandleA
IsBadReadPtr
IsBadCodePtr
GetSystemTime
GetTimeZoneInformation
HeapAlloc
InterlockedIncrement
InterlockedDecrement
ExitThread
CompareStringA
SetUnhandledExceptionFilter
TlsSetValue
ResumeThread
TerminateProcess
CreateThread
ExitProcess
FlushFileBuffers

user32

UpdateWindow
DestroyWindow
MessageBoxW
PostMessageA
GetWindowRect
GetClientRect
GetDesktopWindow
MessageBoxA
ShowWindow
SetCursorPos
SetCursor
ClientToScreen
SetForegroundWindow
EnumThreadWindows
LoadIconA
RegisterClassA
CreateWindowExA
SetTimer
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
LoadCursorA
PostQuitMessage
SetWindowPlacement
AdjustWindowRect
SetWindowPos
GetWindowPlacement

winmm

timeGetTime

ole32

CoUninitialize
CoInitialize

ws2_32

WSACleanup
inet_ntoa
gethostbyname
getsockopt
gethostname
htonl
WSAIoctl
WSAGetLastError
WSAStartup
sendto
recvfrom
getsockname
ntohs
select
__WSAFDIsSet
socket
htons
bind
listen
ioctlsocket
recv
closesocket
shutdown
send
accept
setsockopt
inet_addr
ntohl

advapi32

GetUserNameA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA

d3d9

Direct3DCreate9

dsound

ord11

dinput8

DirectInput8Create

binkw32

_BinkOpen@8
_BinkClose@4
_BinkDoFrame@4
_BinkCopyToBuffer@28
_BinkNextFrame@4

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 240KB - Virtual size: 238KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 64KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.2rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b91b397e5d93ead2689f4f58d11a2972

Headers

File Characteristics

Imports

kernel32

user32

winmm

ole32

ws2_32

advapi32

d3d9

dsound

dinput8

binkw32

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 240KB - Virtual size: 238KB

.data Size: 64KB - Virtual size: 1.5MB

.rsrc Size: 4KB - Virtual size: 1KB

.2rdata Size: 68KB - Virtual size: 68KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 240KB - Virtual size: 238KB

.data
Size: 64KB - Virtual size: 1.5MB

.rsrc
Size: 4KB - Virtual size: 1KB

.2rdata
Size: 68KB - Virtual size: 68KB