609e771b3e977ee07ee38c531f8a4c332f30445f6ecaac5a6d6c5fa939fe73eb

Sharing

Copy URL Twitter E-mail

General

Target

609e771b3e977ee07ee38c531f8a4c332f30445f6ecaac5a6d6c5fa939fe73eb
Size

187KB
MD5

63c156c46adcbb220136b63a088951d3
SHA1

9a25625d795c8a3dcbbfc6942083a2b6de3e6600
SHA256

609e771b3e977ee07ee38c531f8a4c332f30445f6ecaac5a6d6c5fa939fe73eb
SHA512

196097dd51b75763ed5d7ebc85eea07bc78d5dbfca838acef6f99dd9dd301ed50125dd7e67b9e12cdd993c1fa799d25d5b6c1b5c6e0db81417fc05d02e377054
SSDEEP

3072:1OVX0dlx2fiX1aCziWYU3IE88dTlifJboQdRYzYJ:gx4x2aFaCzir7tPf5oICz

Score

N/A

Malware Config

Signatures

Files

609e771b3e977ee07ee38c531f8a4c332f30445f6ecaac5a6d6c5fa939fe73eb
.exe windows x86

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFile
GetPrivateProfileSectionNamesA
OpenEventA
GetThreadSelectorEntry
GetTimeFormatA
LZCopy
GetConsoleKeyboardLayoutNameA
OpenMutexA
GetTickCount
UnregisterWait
LZSeek
GetFullPathNameA
HeapLock
FindFirstFileExA
PulseEvent
GetFileAttributesA
GetThreadIOPendingFlag
BuildCommDCBAndTimeoutsW
IsBadWritePtr
GetEnvironmentStringsA
CreateEventA
EnumResourceNamesA
VirtualAlloc
FindFirstVolumeA

dpnet

DirectPlay8Create

user32

MessageBoxTimeoutA
RegisterClipboardFormatW
GetAppCompatFlags2
TranslateMDISysAccel
CharLowerBuffA
DisplayExitWindowsWarnings
CreateWindowExA
SetClassWord
LoadStringA
CallMsgFilterA
GetMonitorInfoA
GetClassNameA
OpenDesktopA
DefRawInputProc
MapWindowPoints
UnregisterClassA
DialogBoxIndirectParamAorW
GetMonitorInfoA
TranslateMessageEx
GetShellWindow
GetWindowLongA

advapi32

CredDeleteW

opengl32

glGetDoublev

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
Rqewian
BeginPnnhpgfq
WriteNagrmghagum
InitOyttaxem
Jkywppyrx
EndUiiqlkwlbk
Syainnedns
Uenglkmiso
CloseRgakamvws
Aetsdqd
Rfkjahx
SetLsbrprceht
Lbtasdn
InitMqrjminfyj
Yxtfbfmdgps
AddUguwohuug
Slbdjmmxat

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

Imports

kernel32

dpnet

user32

advapi32

opengl32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 98KB - Virtual size: 98KB

.idata Size: 81KB - Virtual size: 81KB

.rsrc Size: 1024B - Virtual size: 888B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 98KB - Virtual size: 98KB

.idata
Size: 81KB - Virtual size: 81KB

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 1KB - Virtual size: 1KB