9596192cea1dda31ee5742fda705839d1727dda6689892dbd08bada86afdec65

Sharing

Copy URL Twitter E-mail

General

Target

9596192cea1dda31ee5742fda705839d1727dda6689892dbd08bada86afdec65
Size

187KB
MD5

0ede1986afa58c401ec1997f15cec099
SHA1

86fce05f5c24eddc41bf71effc9feafc21666b18
SHA256

9596192cea1dda31ee5742fda705839d1727dda6689892dbd08bada86afdec65
SHA512

515d279ea536f9f5a88105a15e1efc569abc527790096adb0e4751ab7cc9799c7b3f0615092dff9190f02291ffedf5ebb923684cf3b824facd76bc4d4afce814
SSDEEP

3072:VcJ8kTCux0ZfaL/ZErg0KyWQVQLUdvVLDH4tM8D:qPGXlaOrKQVQL2D4

Score

N/A

Malware Config

Signatures

Files

9596192cea1dda31ee5742fda705839d1727dda6689892dbd08bada86afdec65
.exe windows x86

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFile
GetPrivateProfileSectionNamesA
OpenEventA
GetThreadSelectorEntry
GetTimeFormatA
LZCopy
GetConsoleKeyboardLayoutNameA
OpenMutexA
GetTickCount
UnregisterWait
LZSeek
GetFullPathNameA
HeapLock
FindFirstFileExA
PulseEvent
GetFileAttributesA
GetThreadIOPendingFlag
BuildCommDCBAndTimeoutsW
IsBadWritePtr
GetEnvironmentStringsA
CreateEventA
EnumResourceNamesA
VirtualAlloc
FindFirstVolumeA

dpnet

DirectPlay8Create

user32

MessageBoxTimeoutA
RegisterClipboardFormatW
GetAppCompatFlags2
TranslateMDISysAccel
CharLowerBuffA
DisplayExitWindowsWarnings
CreateWindowExA
SetClassWord
LoadStringA
CallMsgFilterA
GetMonitorInfoA
GetClassNameA
OpenDesktopA
DefRawInputProc
MapWindowPoints
UnregisterClassA
DialogBoxIndirectParamAorW
GetMonitorInfoA
TranslateMessageEx
GetShellWindow
GetWindowLongA

advapi32

CredDeleteW

opengl32

glGetDoublev

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
Rqewian
BeginPnnhpgfq
WriteNagrmghagum
InitOyttaxem
Jkywppyrx
EndUiiqlkwlbk
Syainnedns
Uenglkmiso
CloseRgakamvws
Aetsdqd
Rfkjahx
SetLsbrprceht
Lbtasdn
InitMqrjminfyj
Yxtfbfmdgps
AddUguwohuug
Slbdjmmxat

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

Imports

kernel32

dpnet

user32

advapi32

opengl32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 98KB - Virtual size: 98KB

.idata Size: 81KB - Virtual size: 81KB

.rsrc Size: 1024B - Virtual size: 888B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 98KB - Virtual size: 98KB

.idata
Size: 81KB - Virtual size: 81KB

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 1KB - Virtual size: 1KB