2503e9c58d752314561bd1303930949e8a16876d8207b44b9fa9a1d507a159d1

General

Target

2503e9c58d752314561bd1303930949e8a16876d8207b44b9fa9a1d507a159d1
Size

1.4MB
MD5

6d78f198822176056c30659cc586cfaf
SHA1

6ca77222b1731a22d9646b6fa4a4e2a5f7c30fb7
SHA256

2503e9c58d752314561bd1303930949e8a16876d8207b44b9fa9a1d507a159d1
SHA512

ca567aad718aeb8e0886ca201487d0916bedef6114505af916036f52a3f2b35765d4578b15de2c4919c8408b2aeeea2977daec2cc80d97595a1f2ec1d38a69aa
SSDEEP

24576:gUoFylQWF4KWDDdJE024q5RqFb+Rc3m5M+fv7UvKn9:HLiWraCqFvmFfv7UvKn9

Score

N/A

Malware Config

Signatures

Files

2503e9c58d752314561bd1303930949e8a16876d8207b44b9fa9a1d507a159d1
.exe windows x86

673621d2c13ec3519254b3559d5dea0e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadStringPtrA
EnumResourceTypesA
VirtualAllocEx
MultiByteToWideChar
GetVolumeNameForVolumeMountPointA
GetLocaleInfoA
SetThreadUILanguage
FreeLibrary
GetSystemInfo
VirtualLock
GetTempPathA
GetConsoleScreenBufferInfo
SetFilePointerEx
PeekConsoleInputA
GetCurrentThread
SetPriorityClass
PulseEvent
GetComputerNameA
CommConfigDialogA
VirtualUnlock
ExpandEnvironmentStringsA
UnlockFileEx
VerifyVersionInfoA
ReplaceFile
GetComputerNameExA
GetDllDirectoryA
SetCommTimeouts
OpenJobObjectA
GetSystemDefaultLangID
GetConsoleOutputCP
GetComputerNameA
OpenProcess
GetPriorityClass
LocalFileTimeToFileTime
DeleteAtom
ProcessIdToSessionId
GetLastError
Heap32ListNext
GetTickCount
SetCommTimeouts
ReadConsoleOutputCharacterA
LZCloseFile
lstrcmpi

dpnlobby

DirectPlay8LobbyCreate

advapi32

CredGetTargetInfoA

user32

GetMessagePos
LoadCursorFromFileA
DefFrameProcA
CharToOemBuffW
GetWindow
SetClassWord
TabbedTextOutA
SetShellWindowEx
SetCursor
GetAltTabInfo
DialogBoxIndirectParamA
RealGetWindowClassA
RegisterUserApiHook
DialogBoxParamA
DlgDirSelectExA
MessageBoxExA

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 824KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 372KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

673621d2c13ec3519254b3559d5dea0e

Headers

File Characteristics

Imports

kernel32

dpnlobby

advapi32

user32

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 824KB - Virtual size: 1.1MB

.data Size: 372KB - Virtual size: 372KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 824KB - Virtual size: 1.1MB

.data
Size: 372KB - Virtual size: 372KB

.rsrc
Size: 16KB - Virtual size: 16KB