2a382fff6bc5a9ccb79ed84722989470e8a810186a68ecb6ee08cf4002cb9e49

Sharing

Copy URL Twitter E-mail

General

Target

2a382fff6bc5a9ccb79ed84722989470e8a810186a68ecb6ee08cf4002cb9e49
Size

300KB
MD5

466baaecf86786325de10daf0a35af40
SHA1

164cc420272dba103be5fe179f5206d26112a1ad
SHA256

2a382fff6bc5a9ccb79ed84722989470e8a810186a68ecb6ee08cf4002cb9e49
SHA512

5c94fc55128d1f1110a3d78696a2834c026a82c496bf4b4b5500c8a08c37cac6b4b27219721950ebb2b4cc66782059210b019c948b0d94fe826f2bfc36aa0ec3
SSDEEP

6144:yRBpzH5FeNSMLhvN4K05+1ReehEn9AjGy3z8u3jKu76Rpx0lECB:Ev9A0MHC+OeukjKwGpz

Score

N/A

Malware Config

Signatures

Files

2a382fff6bc5a9ccb79ed84722989470e8a810186a68ecb6ee08cf4002cb9e49
.dll windows x86

04334118f7f781ed8a8532825bbbfeba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreate

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

kernel32

DeleteCriticalSection
VirtualAlloc
OutputDebugStringA
GetCurrentThread
GetVersionExA
FreeLibrary
VirtualFree
GetStartupInfoA
GetCurrentThreadId
GlobalFree
CreateFileA
GetTempPathA
EnterCriticalSection
SetPriorityClass
GetModuleHandleA
GetProcAddress
SetThreadPriority
TlsSetValue
Sleep
TlsAlloc
TlsGetValue
LoadLibraryA
WriteFile
GlobalAlloc
SetLastError
GetTickCount
GetDateFormatA
GetLastError
GetThreadSelectorEntry
TlsFree
LeaveCriticalSection
GlobalSize
GetModuleFileNameA
InitializeCriticalSection

msvcrt

fopen
strcpy
fwrite
sscanf
malloc
_ftol
_CIpow
abort
fprintf
atoi
fflush
free
exit
memcmp
fseek
strtok
strstr
rand
realloc
fgets
sprintf
strcmp
_filbuf
_assert
strncmp
atof
printf
memset
bsearch
memcpy
fclose
qsort
calloc
fscanf
memmove
_iob
atol
ftell
fread
ungetc
floor
getenv
_stricmp
ceil
sqrt

gdi32

DeleteDC
GetRasterizerCaps
SetDIBColorTable
SelectObject
GetObjectA
GetPaletteEntries
BitBlt
CreateSolidBrush
CreateDIBSection
GetDeviceCaps
DescribePixelFormat
ExtEscape
GetObjectType
GetPixelFormat
GetDIBits
GetCurrentObject
GetOutlineTextMetricsA
DeleteObject
CreateCompatibleDC
CreateFontIndirectA
CreateCompatibleBitmap
GetGlyphOutlineA

user32

MessageBoxA
GetClientRect
GetDC
ReleaseDC
wsprintfA
GetActiveWindow
SetWindowsHookExA
ClientToScreen
DestroyWindow
CallNextHookEx
WindowFromDC
GetWindowLongA
GetDesktopWindow
GetWindowRect
UnhookWindowsHookEx
GetParent
FillRect
GetWindowThreadProcessId

Exports

Exports

Compare
Encoder
Format
ImportModule
Keys
Number_ToBase
StringADecode
TabError
_Concat

Sections

.text
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04334118f7f781ed8a8532825bbbfeba

Headers

File Characteristics

Imports

ddraw

advapi32

kernel32

msvcrt

gdi32

user32

Exports

Exports

Sections

.text Size: 92KB - Virtual size: 89KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 44KB - Virtual size: 44KB

.rsrc Size: 84KB - Virtual size: 83KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 92KB - Virtual size: 89KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 44KB - Virtual size: 44KB

.rsrc
Size: 84KB - Virtual size: 83KB

.reloc
Size: 8KB - Virtual size: 7KB