Static task
static1
Behavioral task
behavioral1
Sample
16736936bff10c78f3dfd17a7d96f7f605ab154ea9296f5ef59b8a38134ccfe6.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
16736936bff10c78f3dfd17a7d96f7f605ab154ea9296f5ef59b8a38134ccfe6.exe
Resource
win10v2004-20220901-en
windows10-2004-x64
General
-
Target
16736936bff10c78f3dfd17a7d96f7f605ab154ea9296f5ef59b8a38134ccfe6
-
Size
292KB
-
MD5
25f2faba94b7c828f7fa11c5d58a1ac0
-
SHA1
c0ac2b9ce987ce89e72070b8ce7ddafafee9922e
-
SHA256
16736936bff10c78f3dfd17a7d96f7f605ab154ea9296f5ef59b8a38134ccfe6
-
SHA512
3d1270ff9f994b472c32a244dfafd2230573ae6ee64e83cd59d426b40e3eadd4d0a9d6bb4c7327907dfe484720385882d307eae7c82d9e7c8251056787652914
-
SSDEEP
6144:OFy//b77RWATyZosFAhc9wRmgqhOgyFzo0naGj:OE/D777TyZosFr9w4lkPaGj
Malware Config
Signatures
Files
-
16736936bff10c78f3dfd17a7d96f7f605ab154ea9296f5ef59b8a38134ccfe6.exe windows x86
02382365ad7ec85ed4219e426ce29d7b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gameengineutilityopt
?SetGlyphName@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXPBD@Z
?GetGlyphName@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEPBDXZ
?GetGlyphTypeName@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEPBDXZ
?SetPosition@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NUtagPOINT@@@Z
?GetPosition@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE?AUtagPOINT@@XZ
?SetSize@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NUtagSIZE@@@Z
?GetSize@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE?AUtagSIZE@@XZ
?SetRect@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NUtagRECT@@@Z
?GetRect@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE?AUtagRECT@@XZ
?SetParentGlyph@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NPAVIGlyph@23@@Z
?GetParentGlyph@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEPAVIGlyph@23@XZ
?SetUseDirty@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEX_N@Z
?IsUseDirty@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NXZ
?ReLayout@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXXZ
?Layout@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXHHKHH@Z
?OnMouseEventPrivate@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXW4enmMouseEventType@23@UtagPOINT@@@Z
?OnMouseEvent@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXW4enmMouseEventType@23@UtagPOINT@@@Z
?OnKeyBoardEvent@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXW4enmKeyBoardEventType@23@GJ@Z
?GetGlyphAtPoint@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEPAVIGlyph@23@ABUtagPOINT@@@Z
?GetGlyphInnerAbleFlag@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UBEKXZ
?MarkDirty@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXXZ
?Enable@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_N_N@Z
?IsEnabled@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NXZ
?Activate@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_N_N@Z
?IsActive@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NXZ
?Focus@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_N_N@Z
?IsFocused@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NXZ
?GetWidgetID@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEHXZ
?IsPtInRect@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NUtagPOINT@@@Z
?SetPositionWithoutMarkDirty@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NUtagPOINT@@@Z
?SetSizeWithoutMarkDirty@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NUtagSIZE@@@Z
?CanBeDrag@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAE_NUtagPOINT@@@Z
?OnMouseHover@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXXZ
?OnMouseHover@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXABUtagPOINT@@@Z
?OnMouseLeave@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXXZ
?OnMouseEnter@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXXZ
?OnMouseEnter@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXABUtagPOINT@@@Z
?OnLButtonDown@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXXZ
?OnLButtonDown@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXABUtagPOINT@@@Z
?OnLButtonUp@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXXZ
?OnLButtonUp@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXABUtagPOINT@@@Z
?OnLButtonClick@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXABUtagPOINT@@@Z
?OnLButtonDoubleClick@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXABUtagPOINT@@@Z
?OnRButtonDown@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXABUtagPOINT@@@Z
?IsVisible@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NXZ
?Resize@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXHHHH@Z
?ResizeWithoutMarkDirty@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXHHHH@Z
?CanAcceptPoint@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NABUtagPOINT@@@Z
??1?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@QAE@XZ
?Show@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXXZ
?Hide@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAEXXZ
?GetGlyphByName@CPanel@Game@Game51@@QAEPAVIGlyph@23@PBD@Z
?GetRootPanel@CResourceManager@Game@Game51@@QAEPAVCPanel@23@XZ
?InitializeResource@CResourceManager@Game@Game51@@QAE_NPB_W@Z
?GetResourceManager@CResourceManagerInitializer@Game@Game51@@QAEPAVCResourceManager@23@XZ
??0CResourceManagerInitializer@Game@Game51@@QAE@PAVIGameEngine@12@@Z
?SetText@CTextExGlyph@Game@Game51@@QAEXPB_W@Z
?SetSourceImage@CImageGlyph@Game@Game51@@QAE_NPAVIImage@23@_N@Z
?SetShowNumber@CNumberImageGlyph@Game@Game51@@QAEXHH@Z
?Update@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NHAAVIDirtyRectManager@23@@Z
?SetDrawingParameter@CSequenceImageGlyph@Game@Game51@@QAE_NPAUtagCanvasDrawImageParameter@ICanvas@23@@Z
??1CToolTipEX@Game@Game51@@QAE@XZ
??1CTextGlyph@Game@Game51@@QAE@XZ
??1CWinMenu@Game@Game51@@QAE@XZ
??1?$TWidget@VIGlyph@Game@Game51@@@Game@Game51@@QAE@XZ
??0CToolTipEX@Game@Game51@@QAE@XZ
??0CTextGlyph@Game@Game51@@QAE@XZ
??0CWinMenu@Game@Game51@@QAE@XZ
??0?$TWidget@VIGlyph@Game@Game51@@@Game@Game51@@QAE@XZ
?GetWidgetID@?$TWidget@VIGlyph@Game@Game51@@@Game@Game51@@UAEHXZ
?Initialize@?$TWidget@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NPAVIGameEngine@23@H@Z
?IsInitialized@?$TWidget@VIGlyph@Game@Game51@@@Game@Game51@@UAE_NXZ
?SetDrawingParameter@CImageGlyph@Game@Game51@@QAE_NPAUtagCanvasDrawImageParameter@ICanvas@23@@Z
?AddGameNotify@CChatRegionDisplayer@Game@Game51@@QAE_NPB_WK@Z
?SetText@CTextGlyph@Game@Game51@@QAE_NPB_W@Z
?SetShowTips@CToolTipEX@Game@Game51@@QAEX_N@Z
?SetTargetPoint@CTextGlyph@Game@Game51@@QAE_NHH@Z
?SetColor@CTextGlyph@Game@Game51@@QAE_NKK@Z
?SetFont@CTextGlyph@Game@Game51@@QAE_NPAUHFONT__@@@Z
?AddEventHandler@CWinMenu@Game@Game51@@QAEXPAVIMenuEvent@23@@Z
?InitializeResourse@CToolTipEX@Game@Game51@@QAEXPB_W@Z
?OnCreate@CToolTipEX@Game@Game51@@QAE_NPAVIGameEngine@23@H@Z
?AddButtonEventHandler@CButtonWidget@Game@Game51@@QAEXPAVIButtonEvent@23@@Z
?SetLobby@CCommonBehavior@Game@Game51@@QAE_NPAVILobby@23@@Z
?Initialize@CXMLButton@Game@Game51@@QAE_NPAVIGameEngine@23@HPBDPAVTiXmlElement@@PAVIImage@23@@Z
?Initialize@CXMLCheckButton@Game@Game51@@QAE_NPAVIGameEngine@23@HPBDPAVTiXmlElement@@PAVIImage@23@@Z
?ShowGlyph@CFaceRegionDisplayer@Game@Game51@@QAEXPBD_N@Z
?AttachPlayerDetail@CFaceRegionDisplayer@Game@Game51@@QAEXPAUtagPlayerDetail@3@_N1@Z
?AttachMyDetail@CFaceRegionDisplayer@Game@Game51@@QAEXPAUtagPlayerDetail@3@@Z
?OnRButtonUp@?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@MAEXABUtagPOINT@@@Z
??0?$TGlyph@VIGlyph@Game@Game51@@@Game@Game51@@QAE@XZ
shell32
ShellExecuteW
wininet
InternetQueryDataAvailable
InternetReadFileExA
InternetOpenW
InternetCanonicalizeUrlW
InternetCloseHandle
HttpQueryInfoW
InternetConnectW
InternetGetLastResponseInfoW
InternetSetStatusCallbackW
HttpOpenRequestW
HttpSendRequestW
mfc80u
ord5083
ord629
ord2897
ord5319
ord1430
ord265
ord1197
ord762
ord266
ord764
ord384
msvcr80
strcmp
__CxxFrameHandler3
memcpy
_purecall
memset
__RTDynamicCast
malloc
wcscpy
strlen
rand
swprintf_s
_vswprintf_c_l
sprintf_s
wcslen
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_controlfp_s
_invoke_watson
_except_handler4_common
?_name_internal_method@type_info@@QBEPBDPAU__type_info_node@@@Z
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_configthreadlocale
_adjust_fdiv
__setusermatherr
??0exception@std@@QAE@ABQBD@Z
_initterm_e
_initterm
_wcmdln
exit
_XcptFilter
_exit
_cexit
__wgetmainargs
_amsg_exit
__RTtypeid
wcsncpy
_snwprintf_s
_beginthreadex
_wmakepath_s
_resetstkoflw
_waccess
_wsplitpath_s
sprintf
memmove
strchr
strncmp
isalnum
isalpha
tolower
isspace
fclose
fseek
ftell
fread
_vsnprintf_s
fprintf
fopen_s
??0exception@std@@QAE@XZ
vswprintf_s
_invalid_parameter_noinfo
wcscpy_s
_time64
srand
_vswprintf
abs
vsprintf_s
free
??1exception@std@@UAE@XZ
atoi
?what@exception@std@@UBEPBDXZ
kernel32
GetThreadLocale
GetACP
GetLocaleInfoA
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetStartupInfoW
InterlockedCompareExchange
InterlockedExchange
Sleep
FreeLibrary
ResumeThread
TerminateThread
WaitForSingleObject
OutputDebugStringW
GetModuleFileNameW
WaitForMultipleObjects
GetLastError
CloseHandle
CreateEventW
SetEvent
ResetEvent
lstrcpyW
WritePrivateProfileStringW
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
lstrlenA
GetPrivateProfileIntW
LoadLibraryW
GetProcAddress
GetTickCount
GetCommandLineW
GetModuleHandleW
GetVersionExA
user32
GetMessageW
DefWindowProcW
DispatchMessageW
PeekMessageW
DestroyWindow
SetWindowLongW
CreateWindowExW
IsWindow
PostMessageW
GetActiveWindow
TranslateMessage
IsIconic
ShowWindow
FlashWindow
PostQuitMessage
SetClassLongW
LoadCursorFromFileW
GetCursorPos
ScreenToClient
MessageBoxW
LoadIconW
SendMessageW
SetRect
SetTimer
KillTimer
SetFocus
wsprintfW
gdi32
CreateFontIndirectW
msvcp80
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?eof@?$char_traits@D@std@@SAHXZ
?eq_int_type@?$char_traits@D@std@@SA_NABH0@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHPBDH@Z
?width@ios_base@std@@QAEHH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@H@Z
??6?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV01@H@Z
?str@?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??_D?$basic_stringstream@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEXXZ
??0?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?str@?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@2@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??_D?$basic_stringstream@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEXXZ
?c_str@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEPB_WXZ
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?good@ios_base@std@@QBE_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?uncaught_exception@std@@YA_NXZ
?flush@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Lock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEXXZ
?_Unlock@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@ABV01@@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@_W@Z
?end@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@XZ
?erase@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE?AV?$_String_iterator@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@2@V32@@Z
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?flags@ios_base@std@@QBEHXZ
?width@ios_base@std@@QBEHXZ
?length@?$char_traits@D@std@@SAIPBD@Z
?setstate@?$basic_ios@_WU?$char_traits@_W@std@@@std@@QAEXH_N@Z
?sputn@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEHPB_WH@Z
?sputc@?$basic_streambuf@_WU?$char_traits@_W@std@@@std@@QAEG_W@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEXXZ
ole32
CreateStreamOnHGlobal
ws2_32
htonl
ntohl
htons
ntohs
gdiplus
GdipAlloc
GdipFree
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromFile
GdipCloneImage
GdiplusStartup
GdiplusShutdown
GdipLoadImageFromFile
GdipDisposeImage
Sections
.text Size: 176KB - Virtual size: 175KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 56KB - Virtual size: 55KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 48KB - Virtual size: 47KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ