bab82fe2c26a361288d58a6cb59cf20ceef18cc4f85809563f33bd60060da350

Sharing

Copy URL Twitter E-mail

General

Target

bab82fe2c26a361288d58a6cb59cf20ceef18cc4f85809563f33bd60060da350
Size

153KB
MD5

201e48c3a31e1b0003b9c2f070c11e79
SHA1

9c85cfd09748ba3ce333119746568750b1fbabcc
SHA256

bab82fe2c26a361288d58a6cb59cf20ceef18cc4f85809563f33bd60060da350
SHA512

a4871befa8cef885d1a463e54152509d2fea80cd6ec1e0bbdfcf76cf85c7c959fde603ed48e4bbf71629dae0295bc5fa718f22ac34222d7b1af6e8919298a3cc
SSDEEP

3072:9aDLPpJ0q0h2GBgexXSP23QQ68LyvSvfk4VYfG1wQKjiQ6JyZ3Yc:9yo/AYxXSuyD3BhjgJyZ3/

Score

N/A

Malware Config

Signatures

Files

bab82fe2c26a361288d58a6cb59cf20ceef18cc4f85809563f33bd60060da350
.exe windows x86

bf576f66329263984ccaf6e0f0b433e7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

WriteConsoleOutputA
lstrlenA
GetTempPathA
SetProcessPriorityBoost
VirtualAllocEx
HeapQueryInformation
SetCalendarInfoA
EndUpdateResourceA
FlushInstructionCache
GetDiskFreeSpaceExA
GetConsoleTitleA
EnumSystemCodePagesA
DeleteTimerQueueEx
GetThreadTimes
ProcessIdToSessionId
SetFirmwareEnvironmentVariableA
GetStringTypeExW
GetConsoleWindow
SetDllDirectoryA
PurgeComm
OpenProcess
ClearCommError
GetCalendarInfoA
GetDiskFreeSpaceA
DeleteFileA
GetStartupInfoA
EnumUILanguagesA
LocalAlloc
GetVolumePathNameA
GetFileAttributesExA
RegisterWaitForInputIdle
LoadModule
GlobalGetAtomNameA
GetProcessPriorityBoost
OpenProfileUserMapping
CloseHandle
GetModuleHandleA
CommConfigDialogA
Heap32ListFirst
OpenEventA
CompareStringA
GetConsoleHardwareState
GetConsoleFontInfo
GlobalSize
CreateThread
FlushConsoleInputBuffer
SetConsolePalette
GetDefaultCommConfigA
GetFileAttributesExA
GetSystemPowerStatus
VirtualLock
OpenJobObjectA
ReadConsoleOutputCharacterA
GetFileAttributesA
GetLogicalDrives
GetSystemDefaultLCID
GetProcessHeaps
RaiseException
PeekNamedPipe
GetComputerNameA
HeapReAlloc
WaitForDebugEvent
GetConsoleTitleA
SetConsoleMenuClose
_lread
PurgeComm
FindFirstFileA
SetSystemPowerState
GetPriorityClass
WriteProcessMemory
LZDone
ReadConsoleA
WriteConsoleOutputCharacterA
OpenFile
GetCPInfoExA
GetFileSize
OpenThread
CopyFileExA
GetFileAttributesExA
ProcessIdToSessionId
BuildCommDCBAndTimeoutsA
SetComputerNameExW
SetConsoleDisplayMode
FlushConsoleInputBuffer
GetFileSize
GetVersion
GetFileSizeEx
SetDefaultCommConfigA
GetSystemTimes
GetLogicalDriveStringsA
SetHandleInformation
GetLocalTime
SetConsoleActiveScreenBuffer
FileTimeToSystemTime
GetConsoleWindow
ReadConsoleA
GetFileAttributesA
GetConsoleTitleA
GetModuleFileNameA
QueryMemoryResourceNotification
GetProcessId
CreateSocketHandle
GetDefaultCommConfigA
ChangeTimerQueueTimer
ProcessIdToSessionId
DisconnectNamedPipe
IsBadStringPtrA
AddConsoleAliasA
GetPrivateProfileStructA
GetCurrentThread
MultiByteToWideChar
GlobalUnlock
GetCommModemStatus
OpenProcess
SetSystemTime
SetThreadContext
SetFileAttributesA
GetUserDefaultUILanguage
GetCurrentDirectoryA
WriteConsoleA
GetFileSizeEx
FindResourceExA
Module32Next
SetFileApisToANSI
GetProcessHeaps
ReadConsoleA
LoadLibraryExA
Heap32ListFirst
HeapSetInformation
PeekConsoleInputA
WaitForMultipleObjects
GetFileAttributesExA
DeleteTimerQueueTimer
GetThreadSelectorEntry
GlobalSize
CloseHandle
SetInformationJobObject
ReadConsoleInputA
GetLastError
SearchPathA
FindNextFileA
GetExitCodeThread
GetFullPathNameA
GetTapeStatus
CreateTimerQueue
FatalExit
SetLocaleInfoA
SignalObjectAndWait
GetLocalTime
SystemTimeToFileTime

d3d8

Direct3DCreate8

dpnet

DirectPlay8Create

user32

GetDC
UnregisterDeviceNotification
RegisterClassExA
SetSystemCursor
CreateAcceleratorTableA
DefMDIChildProcA
RegisterServicesProcess
GetWindowRect
SetLastErrorEx
TranslateMessageEx
IsWindowVisible
GetClassLongA
DialogBoxIndirectParamA
LoadKeyboardLayoutEx
SetCaretPos
LoadAcceleratorsA
LoadAcceleratorsA
GetMenuItemInfoA
SetSystemMenu
EnumDesktopsA
InternalGetWindowText
LoadKeyboardLayoutEx
FlashWindowEx
DisableProcessWindowsGhosting
TabbedTextOutA
ChildWindowFromPointEx
EnumPropsExA
CreateWindowStationW
AdjustWindowRect
IsCharAlphaA
RegisterClassA
GetLastActivePopup
GetSubMenu
SetDlgItemTextA
SetMenuContextHelpId
GetCapture
GetClassInfoExA
MonitorFromRect
IsZoomed
LoadRemoteFonts
CallWindowProcA
FillRect
SetWindowLongA
CallWindowProcA
ChangeMenuA
CreateIcon

opengl32

glFogiv

Exports

Exports

BeginIvefcaterj
SetQmqntekwb
CloseVvjngnf
Phwawsqtcf
CreateAjpisormkdh
BeginPftrjrlghd
Msyuvskskgr
WriteYgfxuunfji

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 800B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf576f66329263984ccaf6e0f0b433e7

Headers

File Characteristics

Imports

kernel32

d3d8

dpnet

user32

opengl32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.edata Size: 512B - Virtual size: 260B

.data Size: 5KB - Virtual size: 5KB

.rdata Size: 1KB - Virtual size: 1KB

.rdata Size: 1024B - Virtual size: 800B

.data Size: 512B - Virtual size: 512B

.reloc Size: 1024B - Virtual size: 592B

.rsrc Size: 122KB - Virtual size: 121KB

.text
Size: 20KB - Virtual size: 20KB

.edata
Size: 512B - Virtual size: 260B

.data
Size: 5KB - Virtual size: 5KB

.rdata
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1024B - Virtual size: 800B

.data
Size: 512B - Virtual size: 512B

.reloc
Size: 1024B - Virtual size: 592B

.rsrc
Size: 122KB - Virtual size: 121KB