254bf371c0fc7d4161426967be6b21bbed73e4d005524eabda955c6bcb9752ed

Sharing

Copy URL Twitter E-mail

General

Target

254bf371c0fc7d4161426967be6b21bbed73e4d005524eabda955c6bcb9752ed
Size

266KB
MD5

fd41380558a9b47758f19b3a7f87b504
SHA1

0581a3cb0a3cd211aea5563ec2f5917398f4d059
SHA256

254bf371c0fc7d4161426967be6b21bbed73e4d005524eabda955c6bcb9752ed
SHA512

b4aaa7b74b6522f2e19ae583cfe3dff1fbdfdd2008c8082d09b72b20e112e4a85bbe3356504ee697ed48893784bda2c49fed2468677472c9c73153cfcc9dad25
SSDEEP

6144:FFoOXSbQhP617spd7nM7Zp6uwww80s36:C0hCUd7nsZHzPq

Score

N/A

Malware Config

Signatures

Files

254bf371c0fc7d4161426967be6b21bbed73e4d005524eabda955c6bcb9752ed
.dll windows x86

3d90e0a5e3417b5321efb538a2963360

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

WOWShellExecute
SHLoadNonloadedIconOverlayIdentifiers
SHLoadInProc
SHGetSpecialFolderLocation
SHFreeNameMappings
SHExtractIconsW
SHBindToParent
DragAcceptFiles

ddraw

DSoundHelp
DDInternalUnlock
DDInternalLock
DirectDrawCreateEx

advapi32

RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey

oleaut32

VariantInit
VariantClear
VarUI4FromStr
VarDecFromCy
SysStringLen
SysStringByteLen
SysFreeString
SysAllocString
LoadTypeLi
LoadRegTypeLi

kernel32

FindResourceA
FlushInstructionCache
FreeLibrary
GetACP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
ExitProcess
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetVersionExA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LockResource
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
SetLastError
SizeofResource
VirtualAlloc
VirtualFree
VirtualProtect
WideCharToMultiByte
lstrcmpA
lstrcmpiA
lstrcpynA
EnterCriticalSection
lstrlenW
DisableThreadLibraryCalls
DeleteCriticalSection
GetLocaleInfoA
lstrlenA

comctl32

ord17

gdi32

SaveDC
SelectObject
SetBkMode
SetBrushOrgEx
SetGraphicsMode
SetTextColor
SetViewportOrgEx
RestoreDC
ModifyWorldTransform
GetObjectA
GetDIBColorTable
GetDCOrgEx
EnumMetaFile
EnumEnhMetaFile
DeleteObject
DeleteDC
CreateSolidBrush
CreateCompatibleDC
SetWindowOrgEx
CreateCompatibleBitmap
BitBlt

user32

AnimateWindow
BeginPaint
CallWindowProcA
CharNextA
CreateAcceleratorTableA
CreateWindowExA
DdeEnableCallback
DdeSetQualityOfService
DefWindowProcA
DestroyAcceleratorTable
DestroyWindow
DialogBoxIndirectParamA
DragObject
EnableWindow
EndDialog
EndPaint
EnumDisplayMonitors
EqualRect
FillRect
GetActiveWindow
GetClassInfoExA
GetClassNameA
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItem
GetFocus
GetParent
GetSysColor
GetWindow
GetWindowLongA
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
InvalidateRect
InvalidateRgn
IsChild
IsWindow
KillTimer
LoadCursorA
LoadStringA
MapDialogRect
MessageBoxA
MonitorFromPoint
PtInRect
RedrawWindow
RegisterClassExA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
SendMessageA
SetCapture
SetCursor
SetFocus
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
SwapMouseButton
wsprintfA

Exports

Exports

ComputeIMTFromTexture
CreateLine
LoadFileOffset
MatrixPerspectiveOffCenterRH
SHRotate
SaveBitmap
SaveData
Vec3Project
Vec3TransformNormal
VecFeedLoad
mpegInUpdateFiles

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d90e0a5e3417b5321efb538a2963360

Headers

File Characteristics

Imports

shell32

ddraw

advapi32

oleaut32

kernel32

comctl32

gdi32

user32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 124KB - Virtual size: 123KB

.data Size: 43KB - Virtual size: 43KB

.rsrc Size: 51KB - Virtual size: 51KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 124KB - Virtual size: 123KB

.data
Size: 43KB - Virtual size: 43KB

.rsrc
Size: 51KB - Virtual size: 51KB

.reloc
Size: 2KB - Virtual size: 1KB