b9881acd78da1e6f4c32e5c0b2027d6844138335422b0b84d04cd99970bdd0cc

Sharing

Copy URL Twitter E-mail

General

Target

b9881acd78da1e6f4c32e5c0b2027d6844138335422b0b84d04cd99970bdd0cc
Size

206KB
MD5

5035408a91acd28e76aa305bf5cd508e
SHA1

24c7502636a3f1664971e6953954cc57ed66be7c
SHA256

b9881acd78da1e6f4c32e5c0b2027d6844138335422b0b84d04cd99970bdd0cc
SHA512

ad9c19d12814710584fd96c80e6bddb8c058429221f842724f2405b35793c6977f99392fe518a383a9d0267aeb3563e7a0c0a704e045302b3efbebc638437930
SSDEEP

3072:gLeMyf2/VaTWOwRKlP28qsS8O20nKJDMvoNBDR4/l2eE+Dd4:gHmQExwElP288O0KyvEBCx9

Score

N/A

Malware Config

Signatures

Files

b9881acd78da1e6f4c32e5c0b2027d6844138335422b0b84d04cd99970bdd0cc
.exe windows x86

2bf2641148dbb9b97091af3133df731c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetLogicalDriveStringsA
GetPrivateProfileIntA
GetCurrentThreadId
VirtualUnlock
GetDiskFreeSpaceExA
EnumSystemCodePagesA
Heap32ListNext
GetThreadPriority
SizeofResource
HeapReAlloc
ExpungeConsoleCommandHistoryA
GetFileInformationByHandle
VirtualLock
HeapUnlock
GetBinaryType
GetConsoleAliasA
SetInformationJobObject
GetVolumePathNameA
GetVersion
VirtualAlloc
ProcessIdToSessionId
GetDefaultCommConfigA
GetSystemTime
SetVolumeMountPointA
IsBadWritePtr
RequestWakeupLatency
LoadLibraryExA
CreatePipe
VirtualAllocEx
GetFileSizeEx
UpdateResourceA
GetProfileStringA
GetEnvironmentVariableA
GetConsoleCommandHistoryLengthW
OpenMutexA
ExpandEnvironmentStringsA
WritePrivateProfileStructA
GetTickCount
PeekConsoleInputA
QueryDosDeviceA
GetSystemTime
GetShortPathNameA
OpenSemaphoreA
SearchPathA
FindVolumeMountPointClose
GetProcessTimes
GetPriorityClass
SetFileTime
SetCurrentDirectoryA
GetConsoleKeyboardLayoutNameA
SetThreadIdealProcessor
FlushInstructionCache
SetProcessWorkingSetSize
UnregisterConsoleIME
ReadConsoleOutputCharacterA
CreateDirectoryA
ExpungeConsoleCommandHistoryA
LZSeek
GetDiskFreeSpaceA
GetCurrencyFormatA
WinExec
WritePrivateProfileSectionA
GetFileInformationByHandle
IsBadStringPtrA
GetModuleFileNameA
FindClose
SetSystemPowerState
CancelWaitableTimer
GetVolumeNameForVolumeMountPointA
CreateFileMappingA
GetOEMCP
LZCopy
WriteConsoleA
SetUserGeoID
BuildCommDCBAndTimeoutsA
GetCommState
GetNamedPipeHandleStateA
GetFileTime
SetCommTimeouts
CommConfigDialogA
FileTimeToLocalFileTime
GetCommTimeouts
DisconnectNamedPipe
GetFileTime
ConvertDefaultLocale
GetConsoleOutputCP
SetConsoleCP
RegisterWaitForInputIdle
GetModuleHandleA
GlobalAddAtomA
Module32First
EnumTimeFormatsA
SetProcessPriorityBoost
SetLocaleInfoA
GetProcessId
GetLogicalDrives
ReleaseSemaphore
VirtualQueryEx
HeapQueryInformation
AddConsoleAliasA
PeekConsoleInputA
IsDebuggerPresent
MoveFileWithProgressA
GetThreadLocale
GetPrivateProfileStringA
GetSystemTime
SetCurrentDirectoryA
SetThreadAffinityMask
LZInit
PeekConsoleInputA
GlobalSize
GetEnvironmentVariableA
WriteConsoleOutputA
ReleaseMutex
UpdateResourceA
IsBadReadPtr
FindNextFileA
GetProcessTimes
CreateDirectoryExA
GetLastError
DisconnectNamedPipe
GetDriveTypeA
GetSystemDefaultLCID
GetFileAttributesExA
lstrcmpA
GetOverlappedResult
GlobalHandle
GetTempPathA
UpdateResourceA
GetNamedPipeInfo
GetModuleFileNameA
_lopen
GetConsoleSelectionInfo
GetThreadTimes
GetProcessWorkingSetSize
OpenSemaphoreA
DeleteTimerQueueTimer
OutputDebugStringA
GetProcessTimes
SetHandleInformation
PrepareTape
GetVDMCurrentDirectories
IsBadStringPtrA
TransmitCommChar
GetCompressedFileSizeA
IsBadCodePtr
GetNamedPipeHandleStateA
GetThreadPriority
WriteConsoleOutputCharacterW
QueueUserAPC
SetComputerNameA
WaitForMultipleObjects

user32

GetWindowModuleFileNameA
IsCharUpperA
DefFrameProcA
MonitorFromPoint
EnableWindow
DrawIcon
DrawCaption
DlgDirSelectComboBoxExA
SetClassLongA
DrawTextExA
GetDlgItemInt
DestroyReasons
CascadeWindows
CallNextHookEx
InflateRect
CreateIcon
DeferWindowPos
GetClassLongA
RegisterClipboardFormatA
MessageBoxIndirectA
LoadMenuA
MapDialogRect
SetSystemMenu
GetClipCursor
GetMessageTime
LoadBitmapA
GetMessageTime
DlgDirSelectComboBoxExA
SetRectEmpty
ShowOwnedPopups
UnhookWinEvent
GetClassNameA
GetDialogBaseUnits
ClipCursor
GetReasonTitleFromReasonCode
EnumPropsA
SubtractRect
DialogBoxIndirectParamA
EndTask
SetCursorContents
SetClassLongA
GetWindowPlacement
DragObject
MessageBoxTimeoutA
SetDlgItemTextA
IsDialogMessageA
InSendMessageEx
EndDeferWindowPos
SetCursor
RegisterClipboardFormatW
IsWindowVisible
OpenDesktopA
GetNextDlgGroupItem
LoadImageA
CreateCaret
UnregisterUserApiHook
SetCursorPos
SetMenuInfo
CharNextExA
GrayStringA
MapVirtualKeyExW
CheckRadioButton
SetPropA
CreateWindowStationW
LoadKeyboardLayoutA
InvalidateRgn
CloseClipboard
GetWindowTextLengthW
CharToOemBuffW
LoadCursorA
SendIMEMessageExA
MessageBoxTimeoutA
EnumDisplaySettingsExA
SendMessageA
GetPropA
CharNextExA
GetMessageTime
SetMenuDefaultItem
SetDoubleClickTime
GetMenuItemRect
SwitchDesktop
AppendMenuA
IsCharAlphaNumericA
DrawTextExA
CharUpperBuffA
SendMessageTimeoutA
GetWindowRgnBox
SetCapture
CharLowerA
ChangeDisplaySettingsExW
GetWindowPlacement

d3d8thk

OsThunkD3dContextCreate
OsThunkD3dContextCreate

opengl32

glFogfv

advapi32

CredReadDomainCredentialsA

d3d8

Direct3DCreate8

dpnet

DirectPlay8Create

Exports

Exports

Hponpsjpr
Jutygshflu
Llqelivg
AddYmyeqlgs
Rjosohq
IsXqhxiqyj

Sections

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 660B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2bf2641148dbb9b97091af3133df731c

Headers

File Characteristics

Imports

kernel32

user32

d3d8thk

opengl32

advapi32

d3d8

dpnet

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 8KB - Virtual size: 7KB

.rsrc Size: 167KB - Virtual size: 167KB

.reloc Size: 1024B - Virtual size: 660B

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 167KB - Virtual size: 167KB

.reloc
Size: 1024B - Virtual size: 660B