f03942c7926468be3ba65092a0d29007160860fef600c451e04d6319ffd718af

Sharing

Copy URL

Twitter E-mail

General

Target

f03942c7926468be3ba65092a0d29007160860fef600c451e04d6319ffd718af
Size

169KB
MD5

2467ac60948182d4e623a7e7d28e6120
SHA1

aae696cd83878c7e493606b5cac982b32ea35d8e
SHA256

f03942c7926468be3ba65092a0d29007160860fef600c451e04d6319ffd718af
SHA512

cd4003b713649a71dc8cac6349101ba0273c847f8a7b27b8422b5aa8adfb089be65cdd8541f6b782d3a4f2fad18351e15071958ef89b3a39f4067ff16ebd0d93
SSDEEP

3072:0GMYptl5GDYWw3Qi9P5SKXKRXufelMKUo228:0RywfM5VZAGoF

Score

N/A

Malware Config

Signatures

Files

f03942c7926468be3ba65092a0d29007160860fef600c451e04d6319ffd718af
.exe windows x86

5e74998a10c82b0b889f667fa5c6d61b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ReadConsoleOutputCharacterA
GlobalFix
OpenMutexA
VirtualAllocEx
GetModuleHandleA
GetPriorityClass
LZInit
GetFileSize
Module32Next
GetPrivateProfileStringA
IsProcessorFeaturePresent
GlobalMemoryStatusEx
lstrcmpi
GetStdHandle
GlobalFree
ReadConsoleOutputCharacterA
GetDefaultCommConfigA
SetFileAttributesA
HeapSetInformation
MoveFileExW
VirtualAllocEx
GetNativeSystemInfo
lstrcat
TermsrvAppInstallMode
GetTempPathA
LoadLibraryExW
GetConsoleCharType
GetProcessWorkingSetSize
DebugBreak
GetComputerNameExA
ExpandEnvironmentStringsA
ReadConsoleOutputAttribute
Toolhelp32ReadProcessMemory
GetEnvironmentStringsA
GetLogicalDrives
GetFileType
SetConsoleMenuClose
GetThreadIOPendingFlag
IsBadWritePtr
LocalCompact
IsBadWritePtr
SetLastError
GetCommandLineA
SetFirmwareEnvironmentVariableA
CancelWaitableTimer
GetLogicalDriveStringsA
GetStartupInfoA
GlobalFindAtomA
GetProcessVersion
WriteConsoleOutputAttribute
GetStringTypeExW
GetFileSizeEx
UpdateResourceA
lstrcpyA
SetCommBreak
lstrcmpA
Thread32First
ReadConsoleOutputAttribute
SetProcessPriorityBoost
GetTickCount
IsValidCodePage
RegisterWaitForInputIdle
SetConsoleOutputCP
GetWindowsDirectoryA
AllocConsole
GetSystemDefaultUILanguage
FindFirstFileExA
ClearCommBreak
GetWindowsDirectoryA
GetThreadContext
HeapQueryInformation
GetConsoleCommandHistoryLengthA
GetFileAttributesExA
SetHandleContext
SetThreadUILanguage
GetSystemTimeAsFileTime
GetCurrentDirectoryA
SetVolumeLabelA
HeapReAlloc
CloseConsoleHandle
lstrlen
IsBadCodePtr
SetEndOfFile
GetCommandLineA
ReadFile
GetTapeStatus
GetFileSize
GetDriveTypeA
WriteConsoleOutputCharacterA
VirtualLock
OpenFileMappingA
GetCurrencyFormatA
WaitNamedPipeA
GetFileSizeEx
FindAtomA
GetFileAttributesExA
GetVolumeInformationA
SetFileShortNameA
SetComputerNameA
WaitForMultipleObjects

user32

GetCapture
GetShellWindow
GetUpdateRgn
DialogBoxIndirectParamA
ChangeClipboardChain
GetMenuDefaultItem
GetRawInputDeviceInfoA
LoadStringA
GetActiveWindow
UpdateWindow
CopyImage
LoadCursorFromFileA
CharNextExA
GetWindowLongA
OemKeyScan
PostQuitMessage
IsCharAlphaNumericA
EnumPropsExA
FindWindowExA
DefMDIChildProcA
GetDlgItemTextA
SwapMouseButton
CallMsgFilterA
OemToCharBuffW
CountClipboardFormats
GetWindowRgn
SendMessageTimeoutA
ChangeDisplaySettingsExW
GrayStringA
PaintMenuBar
GetScrollInfo
BeginDeferWindowPos
LoadBitmapA
SetPropA
IsDialogMessage
ChangeMenuA
GetRawInputBuffer
FreeDDElParam
RealGetWindowClass
DrawFrame
LoadCursorA
GetReasonTitleFromReasonCode
GrayStringA
PostThreadMessageA
GetWindowInfo
IsDlgButtonChecked
CreateDesktopA
InvalidateRgn
RecordShutdownReason
MessageBoxTimeoutW
GetMenuBarInfo
GetWindowModuleFileNameA
GetMenuState
TranslateAcceleratorA
SetMenuContextHelpId
MessageBeep
GetClipboardFormatNameA
GetMenuItemID
GetShellWindow
IsCharAlphaNumericA
EnableScrollBar
ActivateKeyboardLayout
MessageBoxA
ChangeDisplaySettingsExA
GetClipboardData
GetMenuStringA
EnumChildWindows
GetPropA
AnimateWindow
LoadStringA
GetComboBoxInfo
GetWindowRgn
SetDoubleClickTime
MessageBoxExA
MessageBoxExA
GetTopWindow
UnhookWindowsHookEx

d3d8thk

OsThunkD3dContextCreate
OsThunkD3dContextCreate

crtdll

_CIcos

opengl32

glFogfv

advapi32

CredReadDomainCredentialsA

d3d8

Direct3DCreate8
Direct3DCreate8

dpnet

DirectPlay8Create

Exports

Exports

Atwqtgceryb
GetGqwsgjiyofy
Wjijxhthunp
Wygrkstkj
WriteMayfnes
Bxsgqxhpbv

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 652B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e74998a10c82b0b889f667fa5c6d61b

Headers

File Characteristics

Imports

kernel32

user32

d3d8thk

crtdll

opengl32

advapi32

d3d8

dpnet

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 16KB

DATA Size: 5KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 7KB

.edata Size: 512B - Virtual size: 196B

.data Size: 512B - Virtual size: 280B

.data Size: 512B - Virtual size: 80B

.data Size: 512B - Virtual size: 260B

.rsrc Size: 135KB - Virtual size: 135KB

.reloc Size: 1024B - Virtual size: 652B

.text
Size: 16KB - Virtual size: 16KB

DATA
Size: 5KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 7KB

.edata
Size: 512B - Virtual size: 196B

.data
Size: 512B - Virtual size: 280B

.data
Size: 512B - Virtual size: 80B

.data
Size: 512B - Virtual size: 260B

.rsrc
Size: 135KB - Virtual size: 135KB

.reloc
Size: 1024B - Virtual size: 652B