2899344fa0ad9f5adbf7d7a4b9f506afeb87a51418fe4ffb58d1aecab0120cb9

Sharing

Copy URL Twitter E-mail

General

Target

2899344fa0ad9f5adbf7d7a4b9f506afeb87a51418fe4ffb58d1aecab0120cb9
Size

328KB
MD5

8dc0b69b0b292c97f2a5c77d527ea4c0
SHA1

2d36b1b4391961374f7da6385317e30040750c47
SHA256

2899344fa0ad9f5adbf7d7a4b9f506afeb87a51418fe4ffb58d1aecab0120cb9
SHA512

e8e141d2b653a7f47893050f7a3382e480568bdd95dd5aaf874cb2028d57eb375508958b447e7272afea9da08ac9c976966f475800781f78e6684268f0eca8cf
SSDEEP

6144:4ZXXM8x1Iy/UjTmCLdYKs3crqvmprzsz86+Vn/MjkT3KHLG0d22i:4RXMi1Iy/2m46Ks3nasoxn/MjMKHLG0e

Score

N/A

Malware Config

Signatures

Files

2899344fa0ad9f5adbf7d7a4b9f506afeb87a51418fe4ffb58d1aecab0120cb9
.dll windows x86

513312dae0be79575e07e8000bf9fa21

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetParent
FillRect
WindowFromDC
GetWindowLongA
DestroyWindow
SetWindowsHookExA
UnhookWindowsHookEx
MessageBoxA
ReleaseDC
wsprintfA
GetDesktopWindow
ClientToScreen
GetActiveWindow
GetWindowRect
GetWindowThreadProcessId
GetClientRect

ddraw

DirectDrawCreate

kernel32

GetDateFormatA
GetLastError
TlsGetValue
OutputDebugStringA
Sleep
FreeLibrary
VirtualFree
GetProcAddress
LoadLibraryA
WriteFile
TlsAlloc
GetStartupInfoA
VirtualAlloc
GlobalFree
GetTickCount
GetVersionExA
GetModuleFileNameA
GetCurrentThread
TlsSetValue
GlobalAlloc
SetThreadPriority
GlobalSize
SetLastError
GetCurrentThreadId
GetTempPathA
DeleteCriticalSection
TlsFree
CreateFileA
InitializeCriticalSection
LeaveCriticalSection
GetModuleHandleA
GetThreadSelectorEntry
EnterCriticalSection

msvcrt

fflush
abort
sqrt
ftell
getenv
fread
exit
rand
floor
fwrite
sscanf
_stricmp
atol
memcpy
strcpy
memmove
realloc
memcmp
_CIpow
atof
calloc
atoi
_ftol
qsort
_filbuf
malloc
fseek
fgets
free
sprintf
fprintf
strncmp
strstr
_iob
fopen
strcmp
_assert
strtok
memset
fscanf
ungetc
printf
fclose
bsearch

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

gdi32

SelectObject
SetDIBColorTable
GetDIBits
CreateCompatibleBitmap
GetDeviceCaps
GetGlyphOutlineA
GetCurrentObject
DescribePixelFormat
CreateFontIndirectA
DeleteObject
BitBlt
CreateSolidBrush
GetOutlineTextMetricsA
DeleteDC
CreateCompatibleDC
ExtEscape
GetObjectType
GetRasterizerCaps
CreateDIBSection
GetPaletteEntries
GetPixelFormat

Exports

Exports

GetFuncName
Init
InteractiveOne
Module_AddObject
StringAEncode
StringAFromFormat
mmx_support
set_gamma
vIsModuleLoaded

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

513312dae0be79575e07e8000bf9fa21

Headers

File Characteristics

Imports

user32

ddraw

kernel32

msvcrt

advapi32

gdi32

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 88KB - Virtual size: 86KB

.data Size: 44KB - Virtual size: 44KB

.rsrc Size: 76KB - Virtual size: 75KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 88KB - Virtual size: 86KB

.data
Size: 44KB - Virtual size: 44KB

.rsrc
Size: 76KB - Virtual size: 75KB

.reloc
Size: 8KB - Virtual size: 7KB