f96974a22f0d6a83be4572af1dc93f4c6c27d236d87392d277ea4cb35285483f

Sharing

Copy URL

Twitter E-mail

General

Target

f96974a22f0d6a83be4572af1dc93f4c6c27d236d87392d277ea4cb35285483f
Size

276KB
MD5

7328c5a353f61ef8144c6392890ce6e0
SHA1

8a292353e52b4daf4d7f452c56802ef26bb4bfbc
SHA256

f96974a22f0d6a83be4572af1dc93f4c6c27d236d87392d277ea4cb35285483f
SHA512

53bbcbb49f20fd5c861281b6364b9b64560fa24a61a673da44e5eeb8625c4d64e6ff7350743ddf02cc998bccc0cb87a97cc420beced1f9f3c912a8fba1cca5f8
SSDEEP

6144:6604HiAjQmHWagtlJJiSFFuLJPLabZTPQ5J3ErR7nlGSsQLH5Ade:XiAjQmHWTtlJfuLJjabZTo5J3EF7lGSn

Score

N/A

Malware Config

Signatures

Files

f96974a22f0d6a83be4572af1dc93f4c6c27d236d87392d277ea4cb35285483f
.exe windows x86

691a2825b064488fe3c9b10c02a2490c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetStartupInfoA
VirtualQuery
GetSystemInfo
ExitProcess
VirtualProtect
RtlUnwind
HeapSize
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
SetUnhandledExceptionFilter
HeapCreate
VirtualFree
IsBadWritePtr
TerminateProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetVersionExA
SetHandleCount
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetFilePointer
SetStdHandle
FlushFileBuffers
GetLastError
MultiByteToWideChar
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
HeapFree
GetCurrentProcess
FlushInstructionCache
GetProcessHeap
HeapAlloc
WideCharToMultiByte
FindResourceExA
LoadResource
LockResource
SizeofResource
FindResourceA
RaiseException
GetCurrentThreadId
WritePrivateProfileStringA
GetModuleHandleA
lstrcpyA
GetTickCount
GetModuleFileNameA
GetPrivateProfileIntA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
HeapDestroy
CloseHandle

user32

DestroyWindow
GetWindow
SystemParametersInfoA
MapWindowPoints
FrameRect
SetWindowPos
GetParent
KillTimer
ReleaseDC
GetDC
GetWindowTextLengthA
GetWindowTextA
SetRect
DrawTextA
RedrawWindow
BeginPaint
GetClientRect
GetWindowRect
MoveWindow
SetWindowTextA
UnregisterClassA
CallWindowProcA
GetWindowLongA
DefWindowProcA
OffsetRect
GetDlgItem
SetWindowLongA
EndDialog
DialogBoxParamA
SetFocus
FlashWindow
SetCapture
SetTimer
ShowWindow
PostMessageA
SetCursor
LoadCursorA
PtInRect
GetActiveWindow
BringWindowToTop
FillRect
GetCapture
ReleaseCapture
LoadIconA
SendMessageA
EndPaint

gdi32

DeleteObject
SetBkMode
SetTextColor
GetStockObject
CreatePatternBrush
CreateCompatibleDC
SelectObject
StretchBlt
DeleteDC
BitBlt
CreateSolidBrush
CreateFontIndirectA

shell32

ShellExecuteA

asdeatlgameframe

?ReSetRect@CViewUnit@@QAEXHHHH@Z
??0CDDrawSurface@@QAE@PAUIDirectDrawSurface@@@Z
??1CDDrawSurface@@QAE@XZ
??0CDDrawSurface@@QAE@XZ
?OnDraw@CSingleUnit2@@UAEJPAVCDevice@@AAUtagRECT@@HPAX@Z
?OnDraw@CSingleUnit@@UAEJPAVCDevice@@AAUtagRECT@@HPAX@Z
?CTextUnit_DisConstruct@CTextUnit@@CAXPAV1@@Z
?CTextUnit_Construct@CTextUnit@@CAXPAV1@@Z
?OnDraw@CTextUnit@@EAEJPAVCDevice@@AAUtagRECT@@HPAX@Z
?OnDetchFrom@CTextUnit@@EAEXPAUCViewLayer@@PAUCViewArea@@@Z
?OnDrawText@CTextUnit@@UAEHPAUHDC__@@0PAVCImageResource@@1UtagRECT@@PBDHIPAUHFONT__@@KKK@Z
?CMainFrame_DisConstruct@CMainFrame@@CAXPAV1@@Z
?CMainFrame_Construct@CMainFrame@@CAXPAV1@PADFAAVCMainFrameTraits@@W4AD_GAME_TYPE@@@Z
??0CViewRect@@QAE@XZ
?__init__@CViewUnit@@AAEXHHHHE@Z
??1CViewRect@@QAE@XZ
?ProcessWindowMessage@CSkinButton@@UAEHPAUHWND__@@IIJAAJK@Z
?ProcessWindowMessage@CSkinCheckBox@@UAEHPAUHWND__@@IIJAAJK@Z
?SendPackage@CMainFrame@@QAEHPADG_N@Z
?GetGameSaveHandle@CMainFrame@@QAEPAVCGameSave@@XZ
?BlockRecv@CMainFrame@@QAEHXZ
?UnBlockRecv@CMainFrame@@QAEHH@Z
?AsdeForceExitApplication@@YAJHH@Z
?Attach@CSingleUnit2@@QAEJAAUtagRECT@@PAVCViewManager@@GGIPAUtagPOINT@@PAVCImageResource@@3@Z
?GetDDSurf@CDDrawSurface@@QAEPAUIDirectDrawSurface@@XZ
?CreateFromBitmap@CDDrawSurface@@QAEJPAVCDisplay@@PBDKK@Z
?DisplayChatText@CMainFrame@@QAEHV?$CStringT@DV?$StrTraitATL@DV?$ChTraitsCRT@D@ATL@@@ATL@@@ATL@@0H@Z
?Attach@CSingleUnit@@QAEJPAVCViewManager@@GGIPAVCImageResource@@1@Z
?LoadImageA@CImageResource@@SAPAUHBITMAP__@@PBDKK@Z
?FreeSkin@CSkinResouce@@SAXAAPAV1@@Z
?Destroy@CDDrawSurface@@QAEJXZ
?LVRefresh@CViewUnit@@QAEXH@Z
?PlayESound@CSoundManager@@QAEXPAVCSoundBuffer@@KK@Z
?GetMyInfo@CMainFrame@@QAEPAUPLAYERINFO@@XZ
?GetSoundManager@CMainFrame@@QAEPAVCSoundManager@@XZ
?CreateWave@CSoundManager@@QAEJPAPAVCSoundBuffer@@PADKU_GUID@@K@Z
?CreateOgg@CSoundManager@@QAEJPAPAVCSoundBuffer@@PADKU_GUID@@K@Z
?SetToEVolume@CSoundManager@@QAEXPAVCSoundBuffer@@@Z
?LVShow@CViewUnit@@QAEXEH@Z
?GetDeskViewUnit@CMainFrame@@QAEPAVCViewUnit@@XZ
?AttachUnit@CViewManager@@QAEXPAVCViewUnit@@GG@Z
?Create@CDDrawSurface@@QAEJPAVCDisplay@@PAU_DDSURFACEDESC@@@Z
?DetchSelf@CViewUnit@@QAEXXZ
?Attach@CSingleUnit2@@QAEJPAVCViewManager@@GGIPAUtagPOINT@@PAVCImageResource@@2@Z
?GetGameRect@CMainFrame@@QAEXPAUtagRECT@@@Z
?GetCmdInfo@CMainFrame@@QAEAAUCMDINFO@@XZ
?SeatServerToClient@CMainFrame@@QAEFF@Z
?Attach@CTextUnit@@QAEJAAUtagRECT@@PAVCViewManager@@GGPAVCDevice@@KPAUHFONT__@@IHKKK@Z
?LVMoveTo@CViewUnit@@QAEXHHH@Z
?ApplyText@CTextUnit@@QAEXPAD@Z
?LVChangeRect@CViewUnit@@QAEXHHHHH@Z
?ReSetRect@CViewUnit@@QAEXAAUtagRECT@@@Z
?SendFrameOperation@CMainFrame@@QAEHIJAAJ@Z
?GetViewManager@CMainFrame@@QAEPAVCViewManager@@XZ
?AllocLayers@CViewManager@@QAEXG@Z
?GetDrawDevice@CMainFrame@@QAEPAVCDevice@@XZ
?BuildPlayerListCtrlColumn@CMainFrame@@QAEJJPAUPLColumnInfo@@@Z
?LoadSkin@CSkinResouce@@SAPAV1@PAD@Z
?AsdeSetSkin@@YAPAVCSkinResouce@@PAV1@@Z
?ProcessFrameEvent@CMainFrame@@UAEHIJAAJ@Z
?ProcessSocketXieYi@CMainFrame@@UAEHIAAVbistream@Win32Tools@@AAJK@Z
?ProcessWindowMessage@CMainFrame@@UAEHPAUHWND__@@IIJAAJK@Z
?GetBackBuffer@CDisplay@@QAEPAVCDDrawSurface@@XZ
??0CDDrawRender@@QAE@PAVCDDrawSurface@@@Z
?BltAlpha@CDDrawRender@@QAEJKKPAVCDDrawSurface@@0PAUtagRECT@@0KK@Z
?Blt@CDDrawRender@@QAEJKKPAVCDDrawSurface@@PAUtagRECT@@K@Z
??1CDDrawRender@@QAE@XZ
?GetUIFace@CSkinResouce@@QAEPAVCFaceUI@@PBD0@Z
?SubClass@CSkinButton@@QAEXPAUHWND__@@@Z
?GetSkinImage@CFaceUI@@QAEPAVCGdiBitmap@@XZ
?GetBmpInfo@CGdiBitmap@@QAEAAUtagBITMAP@@XZ
?GetBitmap@CGdiBitmap@@QAEPAUHBITMAP__@@XZ
?GetSubUIFace@CFaceUI@@QAEPAV1@PBD0@Z
?AsdeUnInitApplication@@YAXXZ
?AsdeTimerRunApplication@@YAJHK@Z
?Create@CMainFrame@@QAEPAUHWND__@@PAU2@V_U_RECT@ATL@@PBDKKV_U_MENUorID@4@PAX@Z
?AsdeInitApplication@@YAJPAUHINSTANCE__@@HPBD111J@Z
?SubClass@CSkinCheckBox@@QAEXPAUHWND__@@@Z
?UnlockDC@CDDrawSurface@@QAEJPAUHDC__@@@Z
?LockDC@CDDrawSurface@@QAEPAUHDC__@@XZ
?SetSkin@CSkinButton@@QAEXPAVCFaceButton@@@Z

ruleedit

?GetNumericConfig@CRuleConfig@@QAEHIAA_J_J@Z
??1CRuleConfig@@QAE@XZ
??0CRuleConfig@@QAE@XZ
?PraseRuleString@CRuleConfig@@QAEHPBD0@Z

gamesave

?SnapStep@CGameSave@@QAEHIAAGAAK1AAPAD@Z

Sections

.text
Size: 164KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

691a2825b064488fe3c9b10c02a2490c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

asdeatlgameframe

ruleedit

gamesave

Sections

.text Size: 164KB - Virtual size: 160KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 4KB - Virtual size: 37KB

.rsrc Size: 80KB - Virtual size: 77KB

.text
Size: 164KB - Virtual size: 160KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 4KB - Virtual size: 37KB

.rsrc
Size: 80KB - Virtual size: 77KB