43efa71b41e90d1f355f88a36473ad297eb9bf8fb941ea5bacaa356fda2c9578

Sharing

Copy URL Twitter E-mail

General

Target

43efa71b41e90d1f355f88a36473ad297eb9bf8fb941ea5bacaa356fda2c9578
Size

1024KB
MD5

91069b1bc688e771a8c363ee38c6cbe0
SHA1

65ed2c04a9849e319bbc4453eefc5cc372536094
SHA256

43efa71b41e90d1f355f88a36473ad297eb9bf8fb941ea5bacaa356fda2c9578
SHA512

4e106e5cd3fb7016c436ad6bfca63827d348d4107117b278a55d92b1473e9dbea2dbb5244019379377afc23151bc22f318904b241042f553b666210ee4851fad
SSDEEP

24576:3GuG+jPCb5DYeXJaJ7AaN6Zdj+dxgj0ExOyZ+uPSoR:1G5DYeXJadmdjCGpbYSR

Score

N/A

Malware Config

Signatures

Files

43efa71b41e90d1f355f88a36473ad297eb9bf8fb941ea5bacaa356fda2c9578
.exe windows x86

f6ecb9317060275e7a2c3859ab1ab504

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dsound

ord11

xinput1_2

XInputGetState
XInputSetState

d3dx9_30

D3DXMatrixScaling
D3DXMatrixRotationYawPitchRoll
D3DXMatrixMultiply
D3DXMatrixLookAtLH
D3DXVec3Normalize
D3DXPlaneIntersectLine
D3DXPlaneFromPointNormal
D3DXCreateFontA
D3DXVec3TransformCoord
D3DXMatrixInverse
D3DXMatrixPerspectiveFovLH
D3DXCreateRenderToSurface
D3DXCreateCubeTextureFromFileInMemoryEx
D3DXCreateCubeTextureFromFileExA
D3DXCreateTextureFromFileInMemoryEx
D3DXCreateTexture
D3DXGetImageInfoFromFileInMemory
D3DXGetImageInfoFromFileA
D3DXSaveTextureToFileA
D3DXMatrixRotationZ
D3DXSaveSurfaceToFileA
D3DXPlaneTransform
D3DXMatrixOrthoLH
D3DXCreateTextureFromFileExA
D3DXVec3Project
D3DXMatrixReflect
D3DXCreateEffectFromFileA
D3DXMatrixTranspose
D3DXVec3TransformNormal
D3DXMatrixTranslation

d3d9

Direct3DCreate9

dinput8

DirectInput8Create

winmm

mmioOpenW
mmioClose
mmioAdvance
mmioSetInfo
mmioSeek
mmioWrite
timeGetTime
mmioDescend
mmioGetInfo
mmioRead
mmioAscend
mmioCreateChunk

ws2_32

inet_ntoa
gethostname
sendto
WSAGetLastError
recvfrom
gethostbyname
socket
setsockopt
ioctlsocket
bind
htons
WSACleanup
WSAStartup
closesocket
getsockname
ntohs
inet_addr

hawknl

_nlRead@12
_nlGetRemoteAddr@8
_nlAddrToString@8
_nlInit@0
_nlSelectNetwork@4
_nlHint@8
_nlOpen@8
_nlShutdown@0
_nlWrite@12

sdl

SDL_Init
SDL_Quit
SDL_GetError

sdl_mixer

Mix_OpenAudio
Mix_FreeMusic
Mix_HaltMusic
Mix_PauseMusic
Mix_ResumeMusic
Mix_PlayMusic
Mix_LoadMUS
Mix_VolumeMusic
Mix_CloseAudio

freetype6

ord135
ord169
ord168
ord66
ord67
ord77
ord126
ord117

kernel32

IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetOEMCP
GetACP
GetModuleFileNameA
HeapCreate
HeapDestroy
VirtualAlloc
GetLocaleInfoW
VirtualFree
SetFilePointer
GetConsoleMode
GetConsoleCP
WriteFile
ReadFile
IsValidCodePage
HeapSize
GetFileType
GetStdHandle
SetHandleCount
SetEndOfFile
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
GetProcAddress
LCMapStringW
LCMapStringA
GetCPInfo
GetStartupInfoA
GetProcessHeap
GetVersionExA
GetCommandLineA
CreateThread
GetCurrentThreadId
ExitThread
HeapReAlloc
FlushFileBuffers
CreateFileA
SetStdHandle
LoadLibraryA
WriteConsoleA
GetConsoleOutputCP
ExitProcess
WriteConsoleW
HeapFree
GetLastError
HeapAlloc
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
SetLastError
LeaveCriticalSection
EnterCriticalSection
GetDriveTypeA
QueryPerformanceCounter
QueryPerformanceFrequency
Sleep
LockResource
SizeofResource
LoadResource
FindResourceW
MultiByteToWideChar
WideCharToMultiByte
CloseHandle
InitializeCriticalSection
DeleteCriticalSection

user32

UpdateWindow
ShowWindow
CreateWindowExW
RegisterClassExW
LoadIconW
LoadCursorW
MessageBoxA
ShowCursor
PostQuitMessage
ClipCursor
GetWindowRect
DefWindowProcW
UnregisterClassW
DispatchMessageW
TranslateMessage
PeekMessageW

gdi32

AddFontResourceA
RemoveFontResourceA

ole32

CoInitialize
StringFromGUID2
CoCreateGuid
CoUninitialize

Sections

.text
Size: 828KB - Virtual size: 824KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 29.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6ecb9317060275e7a2c3859ab1ab504

Headers

File Characteristics

Imports

dsound

xinput1_2

d3dx9_30

d3d9

dinput8

winmm

ws2_32

hawknl

sdl

sdl_mixer

freetype6

kernel32

user32

gdi32

ole32

Sections

.text Size: 828KB - Virtual size: 824KB

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 52KB - Virtual size: 29.4MB

.rsrc Size: 44KB - Virtual size: 41KB

.text
Size: 828KB - Virtual size: 824KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 52KB - Virtual size: 29.4MB

.rsrc
Size: 44KB - Virtual size: 41KB