c3f503c710bd2a517ff20d99e8ac6004edc755e2d13ef1b02abdd803218e8d3b

Sharing

Copy URL Twitter E-mail

General

Target

c3f503c710bd2a517ff20d99e8ac6004edc755e2d13ef1b02abdd803218e8d3b
Size

984KB
MD5

551009e2a4e54d1b34e0d5759e0b8c70
SHA1

9edb846bc3899587ca3d6125410007251bc4a23b
SHA256

c3f503c710bd2a517ff20d99e8ac6004edc755e2d13ef1b02abdd803218e8d3b
SHA512

863e225b9c4fe51da968c16e2a64e35018edb1b21062435f2be622845e823aec92c023703f5f3fb470845470ae2356c8333785f608bf3f50b4b42fb1336ff428
SSDEEP

24576:i2DCzK3PzfIMiohLJ6+RFxX0ys7y0vhYL+ZSoE:i8PzA2LJRkThJE

Score

N/A

Malware Config

Signatures

Files

c3f503c710bd2a517ff20d99e8ac6004edc755e2d13ef1b02abdd803218e8d3b
.exe windows x86

f1a10a7ef29c18f4cd3455f7db31ad28

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gamedev

?IsConnectOK@CGameLink@@QAEHXZ
?RecvCmd@CGameLink@@QAEHAAEPADAAH@Z
?ConnectServer@CGameLink@@QAEHPBDPAUHWND__@@@Z
?SendCmd@CGameLink@@QAEHEPBDH@Z
?CloseConnect@CGameLink@@QAEXXZ
??1CGameLink@@UAE@XZ
??0CGameLink@@QAE@XZ
?TitleDrawImage@CImage@@QAEHPAVCDC@@HHHH@Z
?LoadBitmapA@CImage@@QAEHIPAUHINSTANCE__@@@Z
?RegWriteKeyInt@@YAHPBD00H@Z
?RegWriteKeyStr@@YAHPBD000@Z
?RegReadKeyStr@@YAHPBD00PADAAK@Z
?RegReadKeyInt@@YAHPBD00AAK@Z
??0CImage@@QAE@XZ
?Attach@CImage@@QAEHPAUHBITMAP__@@@Z
?TransBitBlt@CImage@@QAEHPAVCDC@@KHHHHHHHH@Z
?Detach@CImage@@QAEHXZ
??1CImage@@UAE@XZ
??0CGetEmotion@@QAE@XZ
?SetMyName@CGetEmotion@@QAEXPBD@Z
?GetEmotion@CGetEmotion@@QAEHPBD0PAD@Z
?IsLocalMessage@CGetEmotion@@QAEHXZ
??1CGetEmotion@@UAE@XZ

winmm

PlaySoundA

kernel32

HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
lstrcpynA
MultiByteToWideChar
FreeLibrary
LoadLibraryA
GlobalFree
GlobalReAlloc
GlobalAlloc
lstrcpyA
MulDiv
LocalFree
FormatMessageA
GetLastError
GetTickCount
WinExec
lstrlenA
lstrcatA
GetModuleHandleA
GetVersion
SetCurrentDirectoryA
WaitForSingleObject
CreateEventA
ResetEvent
CreateThread
Sleep
SetEvent
CloseHandle
lstrcmpA
GetProcAddress
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
LockResource
LoadResource
FindResourceA
InterlockedDecrement
SetLastError
GlobalUnlock
GlobalLock
CreateMutexA
ReleaseMutex
WideCharToMultiByte
InterlockedIncrement
IsBadWritePtr
IsBadReadPtr
lstrlenW
GetThreadLocale
GetModuleFileNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCurrentThread
GlobalFlags
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
GetFileAttributesA
GetFullPathNameA
GetFileTime
SizeofResource
GlobalSize
CopyFileA
DuplicateHandle
GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
FindClose
FindFirstFileA
GetVolumeInformationA
GetFileSize
WritePrivateProfileStringA
lstrcpyW
SetErrorMode
RtlUnwind
HeapAlloc
HeapReAlloc
RaiseException
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapFree
GetACP
SetStdHandle
GetFileType
GetTimeZoneInformation
TerminateProcess
HeapSize

user32

GetNextDlgGroupItem
PostThreadMessageA
MoveWindow
SetWindowTextA
IsDialogMessageA
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
DeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
WinHelpA
RegisterClassA
GetMenu
GetMenuItemID
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
GetWindowLongA
SetWindowLongA
CharUpperA
SystemParametersInfoA
GetWindowPlacement
WindowFromPoint
IsWindowEnabled
GetClassInfoA
DefWindowProcA
LoadCursorA
LoadIconA
CreatePopupMenu
GetMenuItemCount
GetDlgCtrlID
GetKeyState
LoadBitmapA
wsprintfA
EqualRect
BeginDeferWindowPos
EndDeferWindowPos
GetParent
GetSystemMetrics
GetSystemMenu
AppendMenuA
GetDesktopWindow
KillTimer
SetTimer
PostQuitMessage
IsWindowVisible
SetForegroundWindow
SetActiveWindow
IsIconic
SetCursorPos
mouse_event
MessageBeep
LoadMenuA
GetSubMenu
GetSysColor
EnableWindow
FrameRect
DrawTextA
DrawEdge
MessageBoxA
LoadImageA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
CopyRect
ModifyMenuA
GetSysColorBrush
LoadStringA
GetClassNameA
InflateRect
IsRectEmpty
SetRectEmpty
OffsetRect
UnionRect
ReleaseCapture
GetWindowRect
SendMessageA
GetCursorPos
ScreenToClient
PtInRect
GetClientRect
IntersectRect
FillRect
ValidateRect
CopyAcceleratorTableA
RegisterClipboardFormatA
RemoveMenu
GetMenuStringA
InsertMenuA
RegisterWindowMessageA
PostMessageA
SetRect
InvalidateRgn
InvalidateRect
ReleaseDC
IsWindow
GetDC
SetFocus
GetFocus
SetCapture
GetCapture
SetWindowContextHelpId
ShowOwnedPopups
CharNextA
CountClipboardFormats
IsClipboardFormatAvailable
DestroyCursor
RedrawWindow
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
SetCursor
TranslateAcceleratorA
LoadAcceleratorsA
EndDialog
CreateDialogIndirectParamA
MapDialogRect
GetAsyncKeyState
FindWindowA
DestroyMenu
GetMenuCheckMarkDimensions
GetMenuState
ShowWindow
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageA
TranslateMessage
SetWindowPos
GetActiveWindow

gdi32

CreateDIBitmap
CreateHalftonePalette
SelectPalette
RealizePalette
GetDIBits
DPtoLP
CreateBitmap
GetMapMode
SetMapMode
SetBkColor
StretchBlt
CreateFontIndirectA
GetObjectA
CreatePen
CreatePolygonRgn
FillRgn
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreateSolidBrush
DeleteObject
SetWindowOrgEx
BitBlt
GetTextExtentPointA
CopyMetaFileA
GetBkColor
GetTextColor
CreateDCA
LPtoDP
PatBlt
Escape
ExtTextOutA
RectVisible
PtVisible
CreatePatternBrush
GetWindowExtEx
GetViewportExtEx
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
GetStockObject
RestoreDC
SaveDC
GetClipBox
CreateDIBSection
CreateFontA
TextOutA
SetBkMode
Rectangle
SetTextColor
GetDeviceCaps
CreatePalette
DeleteDC

comdlg32

GetFileTitleA
FindTextA
ReplaceTextA
ChooseFontA
ChooseColorA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles
ShellExecuteA

comctl32

ord17
ImageList_Destroy
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA

oledlg

ord4
ord11
ord8
ord3

ole32

ReadFmtUserTypeStg
ReadClassStg
OleDuplicateData
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
CoTreatAsClass
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleGetClipboard
OleSetMenuDescriptor
CoGetClassObject
CoTaskMemAlloc
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
CoRevokeClassObject
OleCreateFromFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleSetContainedObject
StringFromCLSID
OleLockRunning
CreateFileMoniker
CoDisconnectObject
CLSIDFromString
CLSIDFromProgID
OleRegGetUserType
CoTaskMemFree
ReleaseStgMedium
CreateBindCtx
CreateGenericComposite
CreateItemMoniker
CreateStreamOnHGlobal
OleSaveToStream
WriteClassStm
OleGetIconOfClass
GetHGlobalFromILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleSave
OleLoad
OleCreate
OleCreateLinkToFile

olepro32

ord253

oleaut32

VariantClear
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
SysStringLen

Sections

.text
Size: 400KB - Virtual size: 396KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 488KB - Virtual size: 485KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1a10a7ef29c18f4cd3455f7db31ad28

Headers

File Characteristics

Imports

gamedev

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 400KB - Virtual size: 396KB

.rdata Size: 76KB - Virtual size: 73KB

.data Size: 16KB - Virtual size: 37KB

.rsrc Size: 488KB - Virtual size: 485KB

.text
Size: 400KB - Virtual size: 396KB

.rdata
Size: 76KB - Virtual size: 73KB

.data
Size: 16KB - Virtual size: 37KB

.rsrc
Size: 488KB - Virtual size: 485KB