GamingMouse[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

GamingMouse.exe
Size

333KB
MD5

2dca8444d3dbd4e38060593834bd3e18
SHA1

b521558cdb2f756f0e31437c2cba09832ccf8f00
SHA256

d81b53dce492098957be734892b85aa8c7f878a9cd88c95c6287f66f22ecc80a
SHA512

424bb1ff8b52f33fa8d0f00e15a1c1b408a70966e32679f5202cc14d679d4e82ae8fd2cadf7eafc85857239be8bbff36da5bd6ad59b3c07f9fcfdcd8e717803b
SSDEEP

6144:DDbLYxd6t+Kqk2GuuVrD5ecvSuIwaXBZpeO6tPYa3z6:DDbLG4tGmPxaZsD6

Score

N/A

Malware Config

Signatures

Files

GamingMouse.exe
.exe windows x86

691ae59b4fb0b01c40c1c269075c35d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

mfc100u

ord5852
ord417
ord11333
ord7911
ord2188
ord13181
ord5830
ord8372
ord265
ord4151
ord3261
ord12413
ord8509
ord7005
ord4805
ord290
ord10409
ord6289
ord337
ord7512
ord7515
ord1013
ord5882
ord8269
ord2780
ord2618
ord3438
ord13366
ord2410
ord266
ord11940
ord4356
ord6318
ord13398
ord2528
ord10960
ord979
ord421
ord12948
ord11999
ord12871
ord3846
ord11801
ord286
ord4512
ord1298
ord13305
ord12951
ord7006
ord6243
ord3495
ord5801
ord970
ord5846
ord6615
ord280
ord4802
ord4360
ord7929
ord5855
ord12186
ord1312
ord1282
ord880
ord917
ord5802
ord5468
ord8264
ord2746
ord5558
ord12610
ord2887
ord4890
ord7385
ord2418
ord14146
ord14148
ord14147
ord2614
ord14149
ord14132
ord14059
ord14060
ord8277
ord11081
ord3402
ord10937
ord13380
ord8112
ord11210
ord6247
ord10045
ord8393
ord2853
ord12724
ord11246
ord11244
ord1501
ord1508
ord1514
ord1512
ord1519
ord4388
ord4425
ord4396
ord4408
ord4404
ord4400
ord4430
ord4421
ord4392
ord4434
ord4413
ord4379
ord4383
ord11704
ord721
ord4888
ord7524
ord7624
ord7548
ord11784
ord13854
ord4744
ord2164
ord11476
ord11477
ord13381
ord7108
ord13387
ord8530
ord3684
ord3625
ord11864
ord7126
ord1739
ord14162
ord10976
ord13267
ord11469
ord7179
ord13570
ord13567
ord13572
ord13569
ord13571
ord13568
ord3416
ord5261
ord11228
ord11236
ord4086
ord7391
ord9498
ord11240
ord11209
ord11845
ord5118
ord9328
ord6140
ord1174
ord12753
ord849
ord1895
ord7176
ord1292
ord890
ord6869
ord9447
ord5652
ord3628
ord980
ord422
ord6711
ord381
ord6344
ord11123
ord8179
ord10058
ord10412
ord3627
ord2981
ord2980
ord2756
ord4416
ord3999
ord14067
ord3992
ord2665
ord13382
ord7109
ord13388
ord6156
ord10725
ord12557
ord5276
ord2339
ord11116
ord3491
ord2952
ord2951
ord11159
ord4642
ord4923
ord5115
ord8483
ord4901
ord5143
ord4645
ord4794
ord4623
ord6931
ord6932
ord6922
ord4792
ord7393
ord9333
ord8346
ord6145
ord3397
ord2185
ord4355
ord5556
ord12606
ord2417
ord8347
ord1310
ord3428
ord11982
ord11163
ord2763
ord2184
ord945
ord11494
ord285
ord5264
ord9525
ord6713
ord3255
ord3369
ord950
ord948
ord385
ord6346
ord1905
ord3482
ord5900
ord3754
ord7903
ord6159
ord7932
ord4909
ord13047
ord3978
ord12775
ord1246
ord6102
ord2831
ord7973
ord2509
ord2030
ord6661
ord4139
ord4138
ord1934
ord1440
ord287
ord2884
ord7914
ord374
ord1212
ord788
ord2852
ord6870
ord5862
ord3446
ord296
ord902
ord4290
ord1987
ord5799
ord1296
ord897
ord2629
ord1476
ord1479
ord4511
ord14145
ord2089
ord11164
ord1300

msvcr100

_CxxThrowException
memcpy
__CxxFrameHandler3
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_controlfp_s
_invoke_watson
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
__set_app_type
_fmode
_commode
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_wcmdln
exit
_XcptFilter
_exit
_cexit
__wgetmainargs
_amsg_exit
swscanf_s
_endthread
_beginthread
free
malloc
_snwprintf_s
toupper
islower
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
swprintf_s
fclose
fwrite
fread
ftell
fseek
_wfopen
memmove
wcstol
wcsncpy
_vswprintf
wcsncmp
wcschr
_wmakepath_s
_wsplitpath_s
_wtoi
memset

kernel32

GetProcAddress
CloseHandle
Sleep
CreateEventW
GetLastError
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetUnhandledExceptionFilter
DecodePointer
EncodePointer
GetStartupInfoW
HeapSetInformation
InterlockedCompareExchange
InterlockedExchange
ReleaseSemaphore
DeviceIoControl
CreateDirectoryW
CreateMutexW
LoadResource
SizeofResource
FindResourceW
MultiByteToWideChar
WideCharToMultiByte
FormatMessageW
lstrlenW
GetModuleHandleW
GetModuleFileNameW
GlobalUnlock
GlobalLock
GlobalAlloc
OutputDebugStringW
GetFileSize
CreateFileW
ReadFile
GetTickCount

user32

GetClientRect
GetActiveWindow
GetParent
GetCapture
SetCapture
ClientToScreen
WindowFromPoint
ReleaseCapture
PostMessageW
SendMessageW
SetRect
MapWindowPoints
SetActiveWindow
ScreenToClient
EnableWindow
RedrawWindow
GetWindowTextW
DestroyWindow
CallWindowProcW
GetCursorPos
CreateWindowExW
SetFocus
SetWindowLongW
GetSysColor
InflateRect
GetSystemMetrics
TrackMouseEvent
IsWindow
InvalidateRect
UpdateWindow
ReleaseDC
GetDC
PtInRect
BringWindowToTop
IsWindowVisible
GetWindowThreadProcessId
AttachThreadInput
CallNextHookEx
PostMessageA
UnhookWindowsHookEx
SetWindowsHookExW
SystemParametersInfoW
SendMessageA
SetForegroundWindow
AppendMenuW
CreatePopupMenu
RegisterDeviceNotificationW
GetWindowRect
FindWindowW
LoadBitmapW
GetForegroundWindow
DrawIconEx
LoadIconW
GetWindow
SetParent
GetScrollInfo
KillTimer
SetTimer
IsRectEmpty
OffsetRect
ToAscii
MapVirtualKeyW
UpdateLayeredWindow
GetWindowLongW
LoadCursorW
FillRect
CopyRect

gdi32

DeleteObject
StretchBlt
SetBkMode
GetObjectW
CreateCompatibleBitmap
CreatePatternBrush
GetTextExtentPoint32W
CreateFontW
SelectObject
BitBlt
GetTextMetricsW
CreateCompatibleDC
Rectangle
SetBitmapBits
GetBitmapBits
CreateSolidBrush
TextOutW
SetTextColor

msimg32

AlphaBlend

advapi32

RegCloseKey
RegEnumKeyExW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW

shell32

Shell_NotifyIconW

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

StrStrIW

ole32

CreateStreamOnHGlobal

oleaut32

OleLoadPicture

gdiplus

GdipCreateFromHDC
GdipDeleteGraphics
GdipLoadImageFromFile
GdipFree
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectRect
GdipDrawImageRectI
GdipCloneBitmapAreaI
GdipCreateHBITMAPFromBitmap
GdipCreateSolidFill
GdipDeleteBrush
GdipCreateBitmapFromFile
GdipLoadImageFromStream
GdiplusStartup
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteFont
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipDrawString

msvcp100

?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z

hid

HidP_GetCaps
HidD_SetOutputReport
HidD_GetFeature
HidD_SetFeature
HidD_FreePreparsedData
HidP_GetSpecificValueCaps
HidD_GetHidGuid
HidD_GetAttributes
HidD_GetPreparsedData

setupapi

SetupDiEnumDeviceInfo
SetupDiGetClassDevsW
SetupDiGetDeviceRegistryPropertyW
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW

Sections

.text
Size: 195KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 75KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

691ae59b4fb0b01c40c1c269075c35d5

Headers

DLL Characteristics

File Characteristics

Imports

mfc100u

msvcr100

kernel32

user32

gdi32

msimg32

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

gdiplus

msvcp100

hid

setupapi

Sections

.text Size: 195KB - Virtual size: 195KB

.rdata Size: 75KB - Virtual size: 74KB

.data Size: 4KB - Virtual size: 2.0MB

.rsrc Size: 18KB - Virtual size: 18KB

.reloc Size: 39KB - Virtual size: 38KB

.text
Size: 195KB - Virtual size: 195KB

.rdata
Size: 75KB - Virtual size: 74KB

.data
Size: 4KB - Virtual size: 2.0MB

.rsrc
Size: 18KB - Virtual size: 18KB

.reloc
Size: 39KB - Virtual size: 38KB