1141bb880b888470fd4616cf4167ee97c3b574bfcc31196ded3ce4cd3079a11b

Sharing

Copy URL

Twitter E-mail

General

Target

1141bb880b888470fd4616cf4167ee97c3b574bfcc31196ded3ce4cd3079a11b
Size

1.4MB
MD5

816df278e562eb1ccb5c6183373a57a1
SHA1

b4d4b0de0a0eb1a1b2400ca7005ac15c1d6c747b
SHA256

1141bb880b888470fd4616cf4167ee97c3b574bfcc31196ded3ce4cd3079a11b
SHA512

5495de49269b3b37db08e077ccfb0ed2584b22fceded41ec0f3c862bd7616c87affe78dbe33ca184d649bbd90517ad2e29b1b47858ebe92637cb455c43b043fb
SSDEEP

24576:JV4l0ASgHfqPuaAgx9jNzi5jPExd7tx2RHh3FbJINPl8HF:Juhx2Nx9jNzi5jPExd7tx2RHh3FbJINc

Score

N/A

Malware Config

Signatures

Files

1141bb880b888470fd4616cf4167ee97c3b574bfcc31196ded3ce4cd3079a11b
.exe windows x86

101f98b9fa0e2ce0dd9b6051c62937e3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gamedev

?IsConnectOK@CGameLink@@QAEHXZ
?RecvCmd@CGameLink@@QAEHAAEPADAAH@Z
?ConnectServer@CGameLink@@QAEHPBDPAUHWND__@@@Z
?SendCmd@CGameLink@@QAEHEPBDH@Z
?CloseConnect@CGameLink@@QAEXXZ
??1CGameLink@@UAE@XZ
??0CGameLink@@QAE@XZ
?TitleDrawImage@CImage@@QAEHPAVCDC@@HHHH@Z
?LoadBitmapA@CImage@@QAEHIPAUHINSTANCE__@@@Z
?RegWriteKeyInt@@YAHPBD00H@Z
?RegWriteKeyStr@@YAHPBD000@Z
?RegReadKeyStr@@YAHPBD00PADAAK@Z
?RegReadKeyInt@@YAHPBD00AAK@Z
??0CImage@@QAE@XZ
?Attach@CImage@@QAEHPAUHBITMAP__@@@Z
?TransBitBlt@CImage@@QAEHPAVCDC@@KHHHHHHHH@Z
?Detach@CImage@@QAEHXZ
??1CImage@@UAE@XZ
??0CGetEmotion@@QAE@XZ
?SetMyName@CGetEmotion@@QAEXPBD@Z
?GetEmotion@CGetEmotion@@QAEHPBD0PAD@Z
?IsLocalMessage@CGetEmotion@@QAEHXZ
??1CGetEmotion@@UAE@XZ

winmm

PlaySoundA

kernel32

TerminateProcess
HeapSize
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
lstrcpynA
MultiByteToWideChar
FreeLibrary
LoadLibraryA
GlobalFree
GlobalReAlloc
GlobalAlloc
lstrcpyA
MulDiv
LocalFree
FormatMessageA
GetLastError
GetTickCount
WinExec
lstrlenA
lstrcatA
GetModuleHandleA
GetVersion
Sleep
SetCurrentDirectoryA
WaitForSingleObject
CreateEventA
ResetEvent
CreateThread
SetEvent
CloseHandle
GetProcAddress
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
LockResource
LoadResource
FindResourceA
SetLastError
GlobalUnlock
GlobalLock
InterlockedDecrement
CreateMutexA
ReleaseMutex
WideCharToMultiByte
InterlockedIncrement
IsBadWritePtr
IsBadReadPtr
lstrcmpA
lstrlenW
GetThreadLocale
GetModuleFileNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCurrentThread
GlobalFlags
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
SizeofResource
GetFileAttributesA
GetFullPathNameA
GetFileTime
GlobalSize
CopyFileA
DuplicateHandle
GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
FindClose
FindFirstFileA
GetVolumeInformationA
GetFileSize
WritePrivateProfileStringA
lstrcpyW
SetErrorMode
RtlUnwind
HeapAlloc
HeapFree
HeapReAlloc
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
GetACP
SetStdHandle
GetFileType
GetTimeZoneInformation

user32

CopyAcceleratorTableA
CharUpperA
GetNextDlgGroupItem
PostThreadMessageA
IsDialogMessageA
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
DeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
WinHelpA
RegisterClassA
GetMenu
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
GetWindowLongA
SetWindowLongA
RegisterWindowMessageA
SystemParametersInfoA
GetWindowPlacement
RegisterClipboardFormatA
IsWindowEnabled
GetClassInfoA
LoadCursorA
KillTimer
SetTimer
CreatePopupMenu
GetMenuItemCount
GetDlgCtrlID
GetKeyState
DestroyWindow
EqualRect
BeginDeferWindowPos
EndDeferWindowPos
GetSystemMetrics
GetDesktopWindow
GetSystemMenu
AppendMenuA
LoadImageA
PostQuitMessage
IsWindowVisible
SetForegroundWindow
SetActiveWindow
IsIconic
SetCursorPos
mouse_event
MessageBeep
LoadMenuA
GetSubMenu
GetSysColor
wsprintfA
GetDlgItem
EnableWindow
GetParent
UpdateWindow
SetWindowPos
LoadIconA
FrameRect
DrawTextA
DrawEdge
MessageBoxA
LoadBitmapA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetCapture
EnableMenuItem
GetSysColorBrush
GetClassNameA
SetWindowContextHelpId
LoadStringA
ShowOwnedPopups
InflateRect
IsRectEmpty
SetRectEmpty
OffsetRect
UnionRect
ReleaseCapture
GetWindowRect
SendMessageA
GetCursorPos
ScreenToClient
PtInRect
GetClientRect
IntersectRect
FillRect
ValidateRect
RemoveMenu
GetMenuStringA
InsertMenuA
WindowFromPoint
PostMessageA
CopyRect
SetRect
InvalidateRgn
InvalidateRect
ReleaseDC
IsWindow
GetDC
SetFocus
GetFocus
SetCapture
CharNextA
CountClipboardFormats
IsClipboardFormatAvailable
DestroyCursor
RedrawWindow
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
SetCursor
TranslateAcceleratorA
LoadAcceleratorsA
MapDialogRect
GetAsyncKeyState
FindWindowA
DestroyMenu
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
SetWindowTextA
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
GetMessageA
TranslateMessage
GetActiveWindow
ShowWindow
DefWindowProcA
MoveWindow

gdi32

SetTextColor
GetDeviceCaps
CreateDIBitmap
DPtoLP
CreateBitmap
GetMapMode
SetMapMode
SetBkColor
GetObjectA
StretchBlt
CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreateSolidBrush
DeleteObject
SetWindowOrgEx
BitBlt
GetTextExtentPointA
CopyMetaFileA
GetBkColor
GetTextColor
CreateDCA
LPtoDP
Escape
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetStockObject
RestoreDC
SaveDC
PatBlt
CreatePatternBrush
GetClipBox
TextOutA
CreateDIBSection
ExtTextOutA
CreateFontA
SetBkMode
CreatePen
Rectangle
DeleteDC

comdlg32

GetFileTitleA
FindTextA
ReplaceTextA
ChooseFontA
ChooseColorA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles
ShellExecuteA

comctl32

ord17
ImageList_Destroy
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA

oledlg

ord4
ord11
ord8
ord3

ole32

ReadFmtUserTypeStg
ReadClassStg
OleDuplicateData
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
CoTreatAsClass
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleGetClipboard
OleSetMenuDescriptor
CoGetClassObject
CoTaskMemAlloc
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
CoRevokeClassObject
OleCreateFromFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleSetContainedObject
StringFromCLSID
OleLockRunning
CreateFileMoniker
CoDisconnectObject
CLSIDFromString
CLSIDFromProgID
OleRegGetUserType
CoTaskMemFree
ReleaseStgMedium
CreateBindCtx
CreateGenericComposite
CreateItemMoniker
CreateStreamOnHGlobal
OleSaveToStream
WriteClassStm
OleGetIconOfClass
GetHGlobalFromILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleSave
OleLoad
OleCreate
OleCreateLinkToFile

olepro32

ord253

oleaut32

VariantClear
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen

Sections

.text
Size: 384KB - Virtual size: 381KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 952KB - Virtual size: 951KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

*T�x�u%
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

101f98b9fa0e2ce0dd9b6051c62937e3

Headers

File Characteristics

Imports

gamedev

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 384KB - Virtual size: 381KB

.rdata Size: 76KB - Virtual size: 75KB

.data Size: 16KB - Virtual size: 36KB

.rsrc Size: 952KB - Virtual size: 951KB

*T�x�u% Size: 20KB - Virtual size: 20KB

.text
Size: 384KB - Virtual size: 381KB

.rdata
Size: 76KB - Virtual size: 75KB

.data
Size: 16KB - Virtual size: 36KB

.rsrc
Size: 952KB - Virtual size: 951KB

*T�x�u%
Size: 20KB - Virtual size: 20KB