be03cfd341e715dbc27628e38e137392036c3500ecdf16dc22f4fbac7fee47b2

Sharing

Copy URL Twitter E-mail

General

Target

be03cfd341e715dbc27628e38e137392036c3500ecdf16dc22f4fbac7fee47b2
Size

169KB
MD5

0836a6b67fb6400ae6211a0c85378d50
SHA1

c18d84f9c6d71bcb6e7a467338c424e421d9e620
SHA256

be03cfd341e715dbc27628e38e137392036c3500ecdf16dc22f4fbac7fee47b2
SHA512

92fd8539ed1179e5c21dbe0b57c776a6d5f9060d143d5c47b144c17e414537a92f34ec30bac2255556045592e69553d77859d3e715a5b3c002ba189a206a433b
SSDEEP

3072:nGf5ptl5n+kLhMFuE/DTvSUnXPtlMKUo22Iam8:niNn3hMkE/PScGoFIf8

Score

N/A

Malware Config

Signatures

Files

be03cfd341e715dbc27628e38e137392036c3500ecdf16dc22f4fbac7fee47b2
.exe windows x86

5e74998a10c82b0b889f667fa5c6d61b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

ReadConsoleOutputCharacterA
GlobalFix
OpenMutexA
VirtualAllocEx
GetModuleHandleA
GetPriorityClass
LZInit
GetFileSize
Module32Next
GetPrivateProfileStringA
IsProcessorFeaturePresent
GlobalMemoryStatusEx
lstrcmpi
GetStdHandle
GlobalFree
ReadConsoleOutputCharacterA
GetDefaultCommConfigA
SetFileAttributesA
HeapSetInformation
MoveFileExW
VirtualAllocEx
GetNativeSystemInfo
lstrcat
TermsrvAppInstallMode
GetTempPathA
LoadLibraryExW
GetConsoleCharType
GetProcessWorkingSetSize
DebugBreak
GetComputerNameExA
ExpandEnvironmentStringsA
ReadConsoleOutputAttribute
Toolhelp32ReadProcessMemory
GetEnvironmentStringsA
GetLogicalDrives
GetFileType
SetConsoleMenuClose
GetThreadIOPendingFlag
IsBadWritePtr
LocalCompact
IsBadWritePtr
SetLastError
GetCommandLineA
SetFirmwareEnvironmentVariableA
CancelWaitableTimer
GetLogicalDriveStringsA
GetStartupInfoA
GlobalFindAtomA
GetProcessVersion
WriteConsoleOutputAttribute
GetStringTypeExW
GetFileSizeEx
UpdateResourceA
lstrcpyA
SetCommBreak
lstrcmpA
Thread32First
ReadConsoleOutputAttribute
SetProcessPriorityBoost
GetTickCount
IsValidCodePage
RegisterWaitForInputIdle
SetConsoleOutputCP
GetWindowsDirectoryA
AllocConsole
GetSystemDefaultUILanguage
FindFirstFileExA
ClearCommBreak
GetWindowsDirectoryA
GetThreadContext
HeapQueryInformation
GetConsoleCommandHistoryLengthA
GetFileAttributesExA
SetHandleContext
SetThreadUILanguage
GetSystemTimeAsFileTime
GetCurrentDirectoryA
SetVolumeLabelA
HeapReAlloc
CloseConsoleHandle
lstrlen
IsBadCodePtr
SetEndOfFile
GetCommandLineA
ReadFile
GetTapeStatus
GetFileSize
GetDriveTypeA
WriteConsoleOutputCharacterA
VirtualLock
OpenFileMappingA
GetCurrencyFormatA
WaitNamedPipeA
GetFileSizeEx
FindAtomA
GetFileAttributesExA
GetVolumeInformationA
SetFileShortNameA
SetComputerNameA
WaitForMultipleObjects

user32

GetCapture
GetShellWindow
GetUpdateRgn
DialogBoxIndirectParamA
ChangeClipboardChain
GetMenuDefaultItem
GetRawInputDeviceInfoA
LoadStringA
GetActiveWindow
UpdateWindow
CopyImage
LoadCursorFromFileA
CharNextExA
GetWindowLongA
OemKeyScan
PostQuitMessage
IsCharAlphaNumericA
EnumPropsExA
FindWindowExA
DefMDIChildProcA
GetDlgItemTextA
SwapMouseButton
CallMsgFilterA
OemToCharBuffW
CountClipboardFormats
GetWindowRgn
SendMessageTimeoutA
ChangeDisplaySettingsExW
GrayStringA
PaintMenuBar
GetScrollInfo
BeginDeferWindowPos
LoadBitmapA
SetPropA
IsDialogMessage
ChangeMenuA
GetRawInputBuffer
FreeDDElParam
RealGetWindowClass
DrawFrame
LoadCursorA
GetReasonTitleFromReasonCode
GrayStringA
PostThreadMessageA
GetWindowInfo
IsDlgButtonChecked
CreateDesktopA
InvalidateRgn
RecordShutdownReason
MessageBoxTimeoutW
GetMenuBarInfo
GetWindowModuleFileNameA
GetMenuState
TranslateAcceleratorA
SetMenuContextHelpId
MessageBeep
GetClipboardFormatNameA
GetMenuItemID
GetShellWindow
IsCharAlphaNumericA
EnableScrollBar
ActivateKeyboardLayout
MessageBoxA
ChangeDisplaySettingsExA
GetClipboardData
GetMenuStringA
EnumChildWindows
GetPropA
AnimateWindow
LoadStringA
GetComboBoxInfo
GetWindowRgn
SetDoubleClickTime
MessageBoxExA
MessageBoxExA
GetTopWindow
UnhookWindowsHookEx

d3d8thk

OsThunkD3dContextCreate
OsThunkD3dContextCreate

crtdll

_CIcos

opengl32

glFogfv

advapi32

CredReadDomainCredentialsA

d3d8

Direct3DCreate8
Direct3DCreate8

dpnet

DirectPlay8Create

Exports

Exports

Atwqtgceryb
GetGqwsgjiyofy
Wjijxhthunp
Wygrkstkj
WriteMayfnes
Bxsgqxhpbv

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 196B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 280B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 652B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5e74998a10c82b0b889f667fa5c6d61b

Headers

File Characteristics

Imports

kernel32

user32

d3d8thk

crtdll

opengl32

advapi32

d3d8

dpnet

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 16KB

DATA Size: 5KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 7KB

.edata Size: 512B - Virtual size: 196B

.data Size: 512B - Virtual size: 280B

.data Size: 512B - Virtual size: 80B

.data Size: 512B - Virtual size: 260B

.rsrc Size: 135KB - Virtual size: 135KB

.reloc Size: 1024B - Virtual size: 652B

.text
Size: 16KB - Virtual size: 16KB

DATA
Size: 5KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 7KB

.edata
Size: 512B - Virtual size: 196B

.data
Size: 512B - Virtual size: 280B

.data
Size: 512B - Virtual size: 80B

.data
Size: 512B - Virtual size: 260B

.rsrc
Size: 135KB - Virtual size: 135KB

.reloc
Size: 1024B - Virtual size: 652B