f73714c653ee929f7bead28045af3521c36d0c3a98cad13762c2cf0a779e48cb

Sharing

Copy URL

Twitter E-mail

General

Target

f73714c653ee929f7bead28045af3521c36d0c3a98cad13762c2cf0a779e48cb
Size

588KB
MD5

4ee90a273170abf5b9228aa8f46c9df0
SHA1

c691ff600bf38420e33d4cc11fb2efdbde95e929
SHA256

f73714c653ee929f7bead28045af3521c36d0c3a98cad13762c2cf0a779e48cb
SHA512

989a63bafd1b77828cf9bd829c231010e48f0810ec2a75e676314870594f1a51a773b22c1d893503e3ca169f4735a609673fe63c8e0e3b347ea9e3ed4232ae8f
SSDEEP

12288:jbILvJYGiVY9eyNCRO/575OjiK2vgjLs0Zkz:HILCyt/575jRgjHO

Score

N/A

Malware Config

Signatures

Files

f73714c653ee929f7bead28045af3521c36d0c3a98cad13762c2cf0a779e48cb
.dll windows x86

7d716a03e07ca46c024571579996a85e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetWindowRect
DestroyWindow
FillRect
GetParent
wsprintfA
ClientToScreen
GetDC
UnhookWindowsHookEx
GetClientRect
GetDesktopWindow
GetWindowThreadProcessId
WindowFromDC
ReleaseDC

ddraw

DirectDrawCreate

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

gdi32

GetObjectType
GetGlyphOutlineA
ExtEscape
BitBlt
CreateDIBSection
CreateSolidBrush
GetPixelFormat
SelectObject
DeleteDC
DescribePixelFormat
GetOutlineTextMetricsA
GetObjectA
GetDeviceCaps
CreateFontIndirectA
CreateCompatibleBitmap
CreateCompatibleDC
GetRasterizerCaps
GetPaletteEntries
DeleteObject
GetCurrentObject
SetDIBColorTable

kernel32

GetTickCount
VirtualAlloc
GetLastError
GetProcAddress
InitializeCriticalSection
WriteFile
GetTempPathA
GetDateFormatA
GetCurrentThreadId
GetModuleFileNameA
GlobalFree
LeaveCriticalSection
SetLastError
GetModuleHandleA
SetThreadPriority
TlsFree
LoadLibraryA
GlobalAlloc
Sleep
FreeLibrary
VirtualFree
TlsSetValue
GlobalSize
TlsGetValue
GetStartupInfoA
CreateFileA
TlsAlloc
GetVersionExA
GetCurrentThread
DeleteCriticalSection
EnterCriticalSection

msvcrt

fread
calloc
getenv
bsearch
fscanf
fseek
strcpy
memcmp
rand
strncmp
free
strstr
malloc
printf
floor
memcpy
fgets
_filbuf
ungetc
exit
strcmp
_iob
sscanf
sqrt
fflush
atoi
abort
sprintf
_ftol
fwrite
memmove
fopen
_CIpow
_stricmp
atol
_assert
memset
ftell
atof
qsort
strtok
realloc
fclose
fprintf

Exports

Exports

Init
SimpleString
_Fast
_Tuple
get_copyright
memset_check
set_packswap

Sections

.text
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d716a03e07ca46c024571579996a85e

Headers

File Characteristics

Imports

user32

ddraw

advapi32

gdi32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 188KB - Virtual size: 187KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 112KB - Virtual size: 112KB

.rsrc Size: 204KB - Virtual size: 203KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 188KB - Virtual size: 187KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 204KB - Virtual size: 203KB

.reloc
Size: 12KB - Virtual size: 9KB