bd194707f5cb2fa58bbcf5d74e1964a73ab5f83caac320b3b493e10a2eb21f61

Sharing

Copy URL Twitter E-mail

General

Target

bd194707f5cb2fa58bbcf5d74e1964a73ab5f83caac320b3b493e10a2eb21f61
Size

187KB
MD5

d226676e30519bf066dbbc9650657918
SHA1

0b814ae171448fba8f8224ba2630ce3e38edf4b9
SHA256

bd194707f5cb2fa58bbcf5d74e1964a73ab5f83caac320b3b493e10a2eb21f61
SHA512

113de41633a79e5f14a058351756309a3fd1ac3703d25e4be7d9c0d5b700344e013a921c492f5f5f71625977ad4ddf6ca43e7129d4e420ee454ea3fb33addb6a
SSDEEP

3072:OpQwMHXTA0L7mAHSvKVALcYYM3IE88usY0knHqb/bk7fjByV699:+EE0LKAHSyVp5jtZHekDjBg6

Score

N/A

Malware Config

Signatures

Files

bd194707f5cb2fa58bbcf5d74e1964a73ab5f83caac320b3b493e10a2eb21f61
.exe windows x86

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFile
GetPrivateProfileSectionNamesA
OpenEventA
GetThreadSelectorEntry
GetTimeFormatA
LZCopy
GetConsoleKeyboardLayoutNameA
OpenMutexA
GetTickCount
UnregisterWait
LZSeek
GetFullPathNameA
HeapLock
FindFirstFileExA
PulseEvent
GetFileAttributesA
GetThreadIOPendingFlag
BuildCommDCBAndTimeoutsW
IsBadWritePtr
GetEnvironmentStringsA
CreateEventA
EnumResourceNamesA
VirtualAlloc
FindFirstVolumeA

dpnet

DirectPlay8Create

user32

MessageBoxTimeoutA
RegisterClipboardFormatW
GetAppCompatFlags2
TranslateMDISysAccel
CharLowerBuffA
DisplayExitWindowsWarnings
CreateWindowExA
SetClassWord
LoadStringA
CallMsgFilterA
GetMonitorInfoA
GetClassNameA
OpenDesktopA
DefRawInputProc
MapWindowPoints
UnregisterClassA
DialogBoxIndirectParamAorW
GetMonitorInfoA
TranslateMessageEx
GetShellWindow
GetWindowLongA

advapi32

CredDeleteW

opengl32

glGetDoublev

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
Rqewian
BeginPnnhpgfq
WriteNagrmghagum
InitOyttaxem
Jkywppyrx
EndUiiqlkwlbk
Syainnedns
Uenglkmiso
CloseRgakamvws
Aetsdqd
Rfkjahx
SetLsbrprceht
Lbtasdn
InitMqrjminfyj
Yxtfbfmdgps
AddUguwohuug
Slbdjmmxat

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2b76e0e7e412799d73633d0b64a46b83

Headers

File Characteristics

Imports

kernel32

dpnet

user32

advapi32

opengl32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 98KB - Virtual size: 98KB

.idata Size: 81KB - Virtual size: 81KB

.rsrc Size: 1024B - Virtual size: 888B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 98KB - Virtual size: 98KB

.idata
Size: 81KB - Virtual size: 81KB

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 1KB - Virtual size: 1KB