70e91233977f85a733a8e07bf6c29ea2e3fdaa535d08bcece3aa3b9718680550

Sharing

Copy URL Twitter E-mail

General

Target

70e91233977f85a733a8e07bf6c29ea2e3fdaa535d08bcece3aa3b9718680550
Size

732KB
MD5

3508c0c43ef2be1c2e51bdba5e45f091
SHA1

51ef396b7f94498e89e3b314b56d4ce0088764d0
SHA256

70e91233977f85a733a8e07bf6c29ea2e3fdaa535d08bcece3aa3b9718680550
SHA512

c548c53d15d772deea21a5c47e729723165221de801dad8b80eda3117a1a903be5263c3a77e2b6a5843c6a68f02942e2531f88dc9191ca6df49b0aeb0c71f4dd
SSDEEP

12288:HUZiA9Qqd3iwrLiUtPSXQCNNWKCDvWDfG1ba:HUZiYQqdTKyg3WKCDvMfGk

Score

N/A

Malware Config

Signatures

Files

70e91233977f85a733a8e07bf6c29ea2e3fdaa535d08bcece3aa3b9718680550
.exe windows x86

93048257db8daf7b06433aa61b62399b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreate

kernel32

GetVersion
GetCommandLineA
GetStartupInfoA
ExitProcess
GetLocalTime
GetTimeZoneInformation
HeapAlloc
HeapFree
GetProcAddress
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
RaiseException
GetModuleFileNameA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
RtlUnwind
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetStdHandle
CompareStringA
CompareStringW
FlushFileBuffers
GetCommState
SetCommState
GetSystemTime
ClearCommError
FindResourceExA
LoadResource
LockResource
QueryPerformanceFrequency
DeviceIoControl
GetVersionExA
DeleteFileA
MulDiv
SetFilePointer
GlobalReAlloc
CreateFileA
_llseek
_lclose
_lread
GetSystemDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
LocalAlloc
LocalLock
WriteFile
LocalUnlock
LocalFree
GlobalCompact
GlobalMemoryStatus
GlobalSize
GlobalLock
GlobalUnlock
FindFirstFileA
FindNextFileA
FindClose
OpenFile
GetFileSize
ReadFile
CloseHandle
lstrcpynA
GlobalFlags
GetLastError
QueryPerformanceCounter
GlobalAlloc
GlobalFree
GetTickCount
lstrcmpA
lstrcatA
lstrlenA
lstrcpyA
GetModuleHandleA

user32

AdjustWindowRect
CreatePopupMenu
ClientToScreen
TrackPopupMenu
InsertMenuA
DefMDIChildProcA
IntersectRect
InvertRect
ScreenToClient
SetSysColors
GetSysColor
GetWindow
PostMessageA
WinHelpA
CheckMenuItem
PostQuitMessage
LoadBitmapA
DestroyIcon
DestroyCursor
DestroyMenu
LoadStringA
LoadIconA
RegisterClassA
LoadAcceleratorsA
UpdateWindow
GetAsyncKeyState
CharLowerBuffA
IsDialogMessageA
TranslateAcceleratorA
DrawMenuBar
GetParent
DispatchMessageA
TranslateMessage
GetWindowTextLengthA
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
EnableMenuItem
IsClipboardFormatAvailable
DrawFocusRect
FrameRect
MessageBeep
InflateRect
SetTimer
AppendMenuA
KillTimer
DeleteMenu
LoadCursorA
GetCursor
RedrawWindow
OffsetRect
SetWindowTextA
SendMessageA
CreateDialogParamA
GetMenu
CopyRect
SetCursor
InvalidateRect
SetActiveWindow
BringWindowToTop
ShowWindow
CreateWindowExA
GetSystemMetrics
GetSubMenu
ModifyMenuA
GetWindowRect
MoveWindow
GetWindowTextA
GetClientRect
SetCapture
WaitMessage
PeekMessageA
PtInRect
ReleaseCapture
IsDlgButtonChecked
DrawTextA
CheckRadioButton
GetDlgItemTextA
GetDlgItem
GetWindowLongA
EqualRect
CheckDlgButton
SetScrollRange
SetScrollPos
EndDialog
GetDlgItemInt
SetDlgItemTextA
SetDlgItemInt
SendDlgItemMessageA
DialogBoxParamA
wsprintfA
MessageBoxA
SetRect
FillRect
ValidateRect
BeginPaint
EndPaint
GetDC
ReleaseDC
SetWindowLongA
DestroyWindow
DefWindowProcA
IsWindow
SetFocus
GetCursorPos

gdi32

FrameRgn
Ellipse
SetTextColor
DeleteObject
SaveDC
GetStockObject
SelectObject
MoveToEx
LineTo
RestoreDC
SelectPalette
RealizePalette
GetRgnBox
CreatePolygonRgn
CloseEnhMetaFile
CreatePen
ExtTextOutA
DeleteDC
SetROP2
CreateDIBSection
CreateCompatibleDC
StretchDIBits
GetNearestPaletteIndex
TextOutA
SetBkMode
StretchBlt
UnrealizeObject
GetTextMetricsA
ExtFloodFill
GetPixel
SetPixel
PtInRegion
OffsetRgn
BitBlt
Rectangle
CreateRectRgnIndirect
GetTextExtentPoint32A
PatBlt
SetBkColor
CreateDIBitmap
GetDIBits
GetObjectA
GetBitmapBits
SetAbortProc
GetDeviceCaps
EndDoc
EndPage
AbortDoc
SetBrushOrgEx
SetStretchBltMode
StartPage
StartDocA
CreateFontIndirectA
SetMapMode
GetMapMode
PlayEnhMetaFile
SelectClipRgn
SetWindowOrgEx
DeleteEnhMetaFile
SetWindowExtEx
CreateEnhMetaFileA
DPtoLP
SetSystemPaletteUse
CreatePalette
SetDIBColorTable
SetPaletteEntries
CreatePatternBrush
SetMapperFlags
SetBitmapBits
PaintRgn
InvertRgn
CombineRgn
CreateRectRgn
FillRgn
GdiFlush
CreateEllipticRgnIndirect
CreateSolidBrush

comdlg32

ChooseColorA
ChooseFontA
PageSetupDlgA
PrintDlgA
CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA

advapi32

RegCloseKey
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA

shell32

ShellExecuteA

Exports

Exports

About
ImageWndProc
InfoWndProc
LUTWndProc
MapWndProc
PicWndProc
ToolWndProc

Sections

.text
Size: 464KB - Virtual size: 462KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

knveqbg
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93048257db8daf7b06433aa61b62399b

Headers

File Characteristics

Imports

ddraw

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Exports

Exports

Sections

.text Size: 464KB - Virtual size: 462KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 48KB - Virtual size: 128KB

.rsrc Size: 204KB - Virtual size: 204KB

knveqbg Size: - Virtual size: 4KB

.text
Size: 464KB - Virtual size: 462KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 48KB - Virtual size: 128KB

.rsrc
Size: 204KB - Virtual size: 204KB

knveqbg
Size: - Virtual size: 4KB