9daa268281f38f2998d192b0aa1739a130f0de234d78964abeaff80a0c141ef4

Sharing

Copy URL Twitter E-mail

General

Target

9daa268281f38f2998d192b0aa1739a130f0de234d78964abeaff80a0c141ef4
Size

1.7MB
MD5

f0c809b9b1f0cf689546422d1a04997a
SHA1

9749735e8530f1cb1f59680f269ef28c66af4c80
SHA256

9daa268281f38f2998d192b0aa1739a130f0de234d78964abeaff80a0c141ef4
SHA512

538ac68ac4a99afb457cea666db88b21abd75b633db8679e14b75ecae2f8b9a590aaa769eba37c4839bfa6e8f9c463ca0e8d746c6ba03d4a8a4fa776d10f99c4
SSDEEP

12288:negZY2ir1XqK0XhhmCL+Tsxm1it0qLeHSrn5ssYJjKC0spQPrOPFTGpnM:ntZY2ir1xjpwgE7LeQtsmPYTi

Score

N/A

Malware Config

Signatures

Files

9daa268281f38f2998d192b0aa1739a130f0de234d78964abeaff80a0c141ef4
.dll windows x86

f833ff2a2d17d26d0084cf51f837fd35

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
SetPriorityClass
GetCurrentProcess
WideCharToMultiByte
CreateTimerQueueTimer
DeleteTimerQueueTimer
HeapFree
GetProcessHeap
HeapAlloc
GetLocalTime
Sleep
WaitForMultipleObjects
SetEvent
CreateEventA
InterlockedExchangeAdd
InterlockedExchange
CreateThread
MultiByteToWideChar
SetThreadExecutionState
GetVersion
lstrlenA
LCMapStringW
LCMapStringA
SetEndOfFile
GetOEMCP
GlobalFree
GetCPInfo
GetStringTypeW
GetStringTypeA
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
TerminateProcess
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
RtlUnwind
ExitProcess
DeleteCriticalSection
HeapReAlloc
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
InitializeCriticalSection
GetLastError
LeaveCriticalSection
EnterCriticalSection
GetCommandLineA
WaitForSingleObject
GetModuleFileNameA
WriteFile
CreateFileA
SetFilePointer
GetFileSize
CloseHandle
ReadFile
LoadLibraryA
VirtualAlloc
VirtualFree
VirtualProtect
GetProcAddress
lstrcatA
GetModuleHandleA
GetACP

user32

KillTimer
EndPaint
BeginPaint
GetCursorPos
GetSystemMetrics
SetWindowPos
GetClientRect
GetWindowRect
DestroyCursor
UnregisterClassA
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
SetWindowLongA
GetWindowLongA
CreateWindowExA
GetDesktopWindow
RegisterClassA
LoadCursorA
IsZoomed
SetMenu
GetMenu
wsprintfA
MessageBoxA
ClientToScreen
InvalidateRect
SetCapture
ReleaseCapture
SendMessageW
SendMessageA
ShowCursor
SetTimer
DefWindowProcA
PostMessageA
EnumDisplaySettingsW
IsDlgButtonChecked
SetWindowTextA
LoadImageA
CheckDlgButton
DialogBoxParamA
GetDlgItemTextA
GetDlgItem
EnableWindow
SetDlgItemTextA
EndDialog

gdi32

GetStockObject
CreateSolidBrush
SetTextColor
CreatePatternBrush
SetBkColor
TextOutA
DeleteObject
SetBkMode

ole32

CoTaskMemFree
CLSIDFromString
CoCreateInstance
CreateStreamOnHGlobal

oleaut32

OleCreatePropertyFrame
SysFreeString

wsock32

gethostbyname

winmm

timeBeginPeriod
timeEndPeriod
timeSetEvent
timeKillEvent

gdiplus

GdipAlloc
GdipLoadImageFromStream
GdipFree
GdipDisposeImage
GdipCloneImage
GdipSaveImageToStream
GdipLoadImageFromStreamICM

wininet

InternetCloseHandle
InternetConnectA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpSendRequestA
HttpQueryInfoA
InternetReadFile
InternetOpenA
InternetSetOptionA

ddraw

DirectDrawCreate

d3d9

Direct3DCreate9

Exports

Exports

Main_VideoPlayBox
VideoPlayBox
Video_Notify_Func

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 556KB - Virtual size: 571KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f833ff2a2d17d26d0084cf51f837fd35

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

wsock32

winmm

gdiplus

wininet

ddraw

d3d9

Exports

Exports

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 556KB - Virtual size: 571KB

.rsrc Size: 1.0MB - Virtual size: 1.0MB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 556KB - Virtual size: 571KB

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

.reloc
Size: 12KB - Virtual size: 11KB