d83dd2cc214249975c77ccd6094e3501a73ab88bb3b91bc469e930ebe3348fea

Sharing

Copy URL Twitter E-mail

General

Target

d83dd2cc214249975c77ccd6094e3501a73ab88bb3b91bc469e930ebe3348fea
Size

187KB
MD5

744ab413b895d81dea8533cd3b3bb26b
SHA1

82449e94855d386b49008d458131c6bd9fe25743
SHA256

d83dd2cc214249975c77ccd6094e3501a73ab88bb3b91bc469e930ebe3348fea
SHA512

af6ce54b46258baff1ae28c84e97fd7ff91706a5c64622a97c57dbb8a97f9ea76ecfda6c30e687f8eaf488f951cab0ed485057f539d265441afcf343d3dd2b23
SSDEEP

3072:f6ady9Jkl6jyKm81Xgo85wtxgUJoS/O2:1+6P0Xgr5wUUJoY

Score

N/A

Malware Config

Signatures

Files

d83dd2cc214249975c77ccd6094e3501a73ab88bb3b91bc469e930ebe3348fea
.exe windows x86

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFile
GetPrivateProfileSectionNamesA
OpenEventA
GetThreadSelectorEntry
GetTimeFormatA
LZCopy
GetConsoleKeyboardLayoutNameA
OpenMutexA
GetTickCount
UnregisterWait
LZSeek
GetFullPathNameA
HeapLock
FindFirstFileExA
PulseEvent
GetFileAttributesA
GetThreadIOPendingFlag
BuildCommDCBAndTimeoutsW
IsBadWritePtr
GetEnvironmentStringsA
CreateEventA
EnumResourceNamesA
VirtualAlloc
FindFirstVolumeA

dpnet

DirectPlay8Create

user32

MessageBoxTimeoutA
RegisterClipboardFormatW
GetAppCompatFlags2
TranslateMDISysAccel
CharLowerBuffA
DisplayExitWindowsWarnings
CreateWindowExA
SetClassWord
LoadStringA
CallMsgFilterA
GetMonitorInfoA
GetClassNameA
OpenDesktopA
DefRawInputProc
MapWindowPoints
UnregisterClassA
DialogBoxIndirectParamAorW
GetMonitorInfoA
TranslateMessageEx
GetShellWindow
GetWindowLongA

advapi32

CredDeleteW

opengl32

glGetDoublev

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
Rqewian
BeginPnnhpgfq
WriteNagrmghagum
InitOyttaxem
Jkywppyrx
EndUiiqlkwlbk
Syainnedns
Uenglkmiso
CloseRgakamvws
Aetsdqd
Rfkjahx
SetLsbrprceht
Lbtasdn
InitMqrjminfyj
Yxtfbfmdgps
AddUguwohuug
Slbdjmmxat

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

Imports

kernel32

dpnet

user32

advapi32

opengl32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 98KB - Virtual size: 98KB

.idata Size: 81KB - Virtual size: 81KB

.rsrc Size: 1024B - Virtual size: 888B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 98KB - Virtual size: 98KB

.idata
Size: 81KB - Virtual size: 81KB

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 1KB - Virtual size: 1KB