58115900b91094b9cff6e39c1253991ad60a8d1b3190271aedd5469cba9d1536

Sharing

Copy URL Twitter E-mail

General

Target

58115900b91094b9cff6e39c1253991ad60a8d1b3190271aedd5469cba9d1536
Size

187KB
MD5

467c044d5d0ab536babea613abdbaf91
SHA1

4170baa02d461bc3bd14b9cb42e8f3e6feadace7
SHA256

58115900b91094b9cff6e39c1253991ad60a8d1b3190271aedd5469cba9d1536
SHA512

c5ffdb9c2318264ae6aaf575be8c761bb4cf8307e5794d828bd8b8eef7fb67bae6f794092012bd86a87986a65e9dc7ca9ef9626f2bbc345eabc9543dd714262c
SSDEEP

3072:d6ifxHgQMSO1W3XKkXJ2VKy2VoAwlBri9JxdxoEBdFvF:0i5Hg2nKk8gjQlZivx1BT

Score

N/A

Malware Config

Signatures

Files

58115900b91094b9cff6e39c1253991ad60a8d1b3190271aedd5469cba9d1536
.exe windows x86

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFile
GetPrivateProfileSectionNamesA
OpenEventA
GetThreadSelectorEntry
GetTimeFormatA
LZCopy
GetConsoleKeyboardLayoutNameA
OpenMutexA
GetTickCount
UnregisterWait
LZSeek
GetFullPathNameA
HeapLock
FindFirstFileExA
PulseEvent
GetFileAttributesA
GetThreadIOPendingFlag
BuildCommDCBAndTimeoutsW
IsBadWritePtr
GetEnvironmentStringsA
CreateEventA
EnumResourceNamesA
VirtualAlloc
FindFirstVolumeA

dpnet

DirectPlay8Create

user32

MessageBoxTimeoutA
RegisterClipboardFormatW
GetAppCompatFlags2
TranslateMDISysAccel
CharLowerBuffA
DisplayExitWindowsWarnings
CreateWindowExA
SetClassWord
LoadStringA
CallMsgFilterA
GetMonitorInfoA
GetClassNameA
OpenDesktopA
DefRawInputProc
MapWindowPoints
UnregisterClassA
DialogBoxIndirectParamAorW
GetMonitorInfoA
TranslateMessageEx
GetShellWindow
GetWindowLongA

advapi32

CredDeleteW

opengl32

glGetDoublev

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
Rqewian
BeginPnnhpgfq
WriteNagrmghagum
InitOyttaxem
Jkywppyrx
EndUiiqlkwlbk
Syainnedns
Uenglkmiso
CloseRgakamvws
Aetsdqd
Rfkjahx
SetLsbrprceht
Lbtasdn
InitMqrjminfyj
Yxtfbfmdgps
AddUguwohuug
Slbdjmmxat

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

Imports

kernel32

dpnet

user32

advapi32

opengl32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 98KB - Virtual size: 98KB

.idata Size: 81KB - Virtual size: 81KB

.rsrc Size: 1024B - Virtual size: 888B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 98KB - Virtual size: 98KB

.idata
Size: 81KB - Virtual size: 81KB

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 1KB - Virtual size: 1KB