8f6314b14aa537e8d3c697989cfbca25a93bedcb9cbce6791f1034b12a732f04

Sharing

Copy URL Twitter E-mail

General

Target

8f6314b14aa537e8d3c697989cfbca25a93bedcb9cbce6791f1034b12a732f04
Size

292KB
MD5

d8e3556021cd52a87a95d6c4bf125940
SHA1

45276456978c4008a22b5ad2fb788df13be6c76d
SHA256

8f6314b14aa537e8d3c697989cfbca25a93bedcb9cbce6791f1034b12a732f04
SHA512

396aed0e850f37e0266916d674c1173e1a9b05372592dd9bf04b2beb523844cb472c0e9e3f4c1f0f123a1ff119f6a3842edb0ec973c9969abd14294d4b667431
SSDEEP

6144:ceuVWx0xsT+spjrG2JBaDaDuSwceBD5GL49QUmyk:tuVWx0xsT+cj6gkaDuSwPBDSFv

Score

N/A

Malware Config

Signatures

Files

8f6314b14aa537e8d3c697989cfbca25a93bedcb9cbce6791f1034b12a732f04
.dll windows x86

58d7724fbe36cea226030981885362fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteObject
CreateDIBSection
BitBlt
CreateCompatibleBitmap
CreateSolidBrush
SelectObject
CreateCompatibleDC
CreateFontIndirectA
GetOutlineTextMetricsA
ExtEscape
GetDeviceCaps
GetCurrentObject
SetDIBColorTable
GetDIBits
DescribePixelFormat
GetObjectType
GetObjectA
GetPaletteEntries
GetRasterizerCaps
DeleteDC
GetPixelFormat
GetGlyphOutlineA

user32

GetParent
GetDesktopWindow
WindowFromDC
GetActiveWindow
ClientToScreen
GetWindowLongA
wsprintfA
GetClientRect
DestroyWindow
GetWindowThreadProcessId
FillRect
GetDC
CallNextHookEx
ReleaseDC
MessageBoxA
GetWindowRect
UnhookWindowsHookEx
SetWindowsHookExA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

msvcrt

floor
_CIpow
getenv
_assert
abort
printf
calloc
sscanf
_ftol
strtok
memcmp
ftell
qsort
strncmp
fclose
ceil
fprintf
fflush
atoi
fread
fopen
malloc
fgets
realloc
_iob
fscanf
_filbuf
bsearch
fwrite
atof
memset
_stricmp
exit
atol
fseek
memcpy
sprintf
strstr
free
strcmp
strcpy
memmove
sqrt
rand
ungetc

kernel32

LeaveCriticalSection
Sleep
GlobalAlloc
TlsFree
GetLastError
VirtualAlloc
EnterCriticalSection
GetVersionExA
VirtualFree
GlobalSize
FreeLibrary
SetLastError
TlsSetValue
TlsAlloc
InitializeCriticalSection
GetCurrentThreadId
DeleteCriticalSection
OutputDebugStringA
GlobalFree
SetPriorityClass
SetThreadPriority
GetModuleHandleA
GetDateFormatA
LoadLibraryA
WriteFile
TlsGetValue
CreateFileA
GetTickCount
GetTempPathA
GetCurrentThread
GetProcAddress
GetThreadSelectorEntry
GetStartupInfoA
GetModuleFileNameA

ddraw

DirectDrawCreate

Exports

Exports

IsTrue
New
Node_Free
SimpleParseFileFlags
SyntaxLocation
_snprintf
set_gamma
set_packing
vExecTokenW

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58d7724fbe36cea226030981885362fe

Headers

File Characteristics

Imports

gdi32

user32

advapi32

msvcrt

kernel32

ddraw

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 44KB - Virtual size: 44KB

.rsrc Size: 80KB - Virtual size: 78KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 44KB - Virtual size: 44KB

.rsrc
Size: 80KB - Virtual size: 78KB

.reloc
Size: 8KB - Virtual size: 5KB