down2[.]zip | Triage

Sharing

Copy URL Twitter E-mail

General

Target

down2.zip
Size

1.9MB
MD5

5bb65af0a305d722d2ac9102fd60515b
SHA1

26cd06cf1ffaa36faf4e427b37b03d91cea4a7aa
SHA256

17f2959a84b249cf18da8b12fbed08e315fa6b3360c438f3c83c53162699647d
SHA512

984bfb6e41ec2b47ae7fae59e93826d87f8810a32c4cd5af4b45c6a6d0a1f6deedc1315629974f9e960abc1dd9eab3dd9b3353de51f1397efe238c5e9f5b604d
SSDEEP

49152:fdshCcPdqXWP0YrP/Vyb4M0DKAKUMFLmkyngsXqYQ01r:OCcPUWhnVQ44ASFikygsX+Wr

Score

1^/10

Malware Config

Signatures

Files

down2.zip
.zip
44d50df9763a94e113d6807ef7ea6cb1f867b041b035afcd8551a2ee1a6e7014.bin
.exe windows x86

2df00240d246f12310e262f686ac27bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

joyGetNumDevs
joyGetPosEx
timeGetTime
timeEndPeriod
timeBeginPeriod
joyGetDevCapsA

imm32

ImmAssociateContext

kernel32

SetConsoleTextAttribute
WriteConsoleA
CreateProcessA
SetConsoleScreenBufferSize
SetConsoleWindowInfo
GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
GetProcAddress
LoadLibraryA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetConsoleCtrlHandler
SetLastError
GetModuleHandleW
TlsFree
DecodePointer
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
GetPrivateProfileStringA
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoW
FillConsoleOutputAttribute
GetCommandLineA
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
FreeConsole
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
LCMapStringW
HeapCreate
ExitProcess
GetModuleFileNameW
SetFilePointer
ReadFile
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetConsoleMode
IsProcessorFeaturePresent
FlushFileBuffers
GetProcessHeap
CreateFileW
LocalAlloc
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
HeapSize
InterlockedExchange
LoadLibraryW
HeapReAlloc
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
Sleep
GetVersionExA
DeleteFileA
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
HeapSetInformation
CloseHandle
IsValidCodePage
SetStdHandle
WriteConsoleW

user32

LoadIconA
RegisterClassA
CreateWindowExA
UpdateWindow
LoadAcceleratorsA
CopyAcceleratorTableA
CreateAcceleratorTableA
TranslateAcceleratorA
DestroyAcceleratorTable
DestroyWindow
IsIconic
MapVirtualKeyA
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SendInput
IsDlgButtonChecked
SetWindowTextA
GetDlgItem
SetFocus
CallWindowProcA
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
SetCursorPos
MoveWindow
EnumDisplaySettingsA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetMenuItemCount
GetSubMenu
GetMenuItemID
DrawMenuBar
ModifyMenuA
InsertMenuA
DeleteMenu
AppendMenuA
SetMenuItemInfoA
CheckMenuRadioItem
CheckMenuItem
PostQuitMessage
LoadCursorA
SetCursor
IsWindow
CharLowerA
SetRect
GetDC
ReleaseDC
GetSystemMenu
RemoveMenu
SetForegroundWindow
SetWindowPos
GetAsyncKeyState
GetForegroundWindow
FindWindowA
PeekMessageA
TranslateMessage
GetMessageA
DispatchMessageA
GetMenu
EnableMenuItem
GetWindowLongA
SetWindowLongA
DefWindowProcA
BeginPaint
EndPaint
PostMessageA
SetTimer

gdi32

TextOutA
CreateCompatibleDC
CreateDIBSection
SetStretchBltMode
SetBkMode
GetStockObject
StretchBlt
SelectObject
DeleteObject
DeleteDC
GetTextMetricsA
SetTextColor
BitBlt
GetDeviceCaps

comdlg32

GetOpenFileNameA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles

ole32

CoUninitialize
CoInitialize

wsock32

recv
WSACleanup
closesocket
shutdown
send
inet_ntoa
WSAStartup
socket
htonl
htons
bind
setsockopt
listen
accept

comctl32

ord17
ord6

gdiplus

GdipDisposeImage
GdipSaveImageToFile
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVIFileExit
AVIFileRelease
AVIStreamRelease
AVIStreamWrite
AVIMakeCompressedStream
AVISaveOptionsFree
AVISaveOptions

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 357KB - Virtual size: 357KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 341KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
763acbdddb056a1b7c8b443a1f81a835ed8104c73574f3c91ce72bde66f198b0.bin
.exe windows x86

763a6c242616919e88c4b498df736a9e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

imm32

ImmAssociateContext

kernel32

GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
GetProcAddress
LoadLibraryA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
WriteConsoleW
SetStdHandle
HeapReAlloc
LoadLibraryW
InterlockedExchange
HeapSize
GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
CreateProcessA
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlushFileBuffers
GetConsoleMode
GetFileType
SetHandleCount
InitializeCriticalSectionAndSpinCount
ReadFile
SetFilePointer
GetModuleFileNameW
ExitProcess
HeapCreate
LCMapStringW
IsProcessorFeaturePresent
SetConsoleWindowInfo
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError
GetModuleHandleW
TlsFree
DecodePointer
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
WriteConsoleA
SetConsoleTextAttribute
SetConsoleCtrlHandler
FreeConsole
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
Sleep
GetVersionExA
DeleteFileA
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
GetCurrentProcess
SetConsoleScreenBufferSize
GetProcessHeap
CreateFileW
LocalAlloc
QueryPerformanceCounter

user32

BeginPaint
DefWindowProcA
SetWindowLongA
GetWindowLongA
EnableMenuItem
GetMenu
DispatchMessageA
GetMessageA
TranslateMessage
PeekMessageA
FindWindowA
SetMenuItemInfoA
CheckMenuRadioItem
EndPaint
PostMessageA
GetAsyncKeyState
SetWindowPos
SetForegroundWindow
RemoveMenu
GetSystemMenu
ReleaseDC
GetDC
SetRect
CharLowerA
IsWindow
SetCursor
LoadCursorA
CheckMenuItem
GetForegroundWindow
OpenClipboard
LoadIconA
RegisterClassA
CreateWindowExA
UpdateWindow
LoadAcceleratorsA
CopyAcceleratorTableA
CreateAcceleratorTableA
TranslateAcceleratorA
DestroyAcceleratorTable
DestroyWindow
IsIconic
MapVirtualKeyA
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SetWindowTextA
SendInput
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
AppendMenuA
GetClipboardData
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
SetCursorPos
MoveWindow
EnumDisplaySettingsA
LoadBitmapA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetSubMenu
DrawMenuBar
ModifyMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
DeleteMenu
PostQuitMessage

gdi32

StretchBlt
SelectObject
DeleteObject
CreateDIBSection
CreateCompatibleDC
GetStockObject
TextOutA
GetObjectA
SetBkMode
SetTextColor
GetTextMetricsA
GetDeviceCaps
GetTextExtentPoint32A
BitBlt
SetStretchBltMode
DeleteDC

comdlg32

GetOpenFileNameA

shell32

DragAcceptFiles
DragFinish
DragQueryFileA

ole32

CoUninitialize
CoInitialize

wsock32

socket
recv
WSACleanup
closesocket
shutdown
send
inet_ntoa
accept
listen
setsockopt
bind
htons
htonl
WSAStartup

comctl32

ord17
ord6

msimg32

TransparentBlt

gdiplus

GdipSaveImageToFile
GdiplusStartup
GdiplusShutdown
GdipDisposeImage
GdipGetImageEncoders
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIMakeCompressedStream
AVIFileExit
AVIFileRelease
AVIStreamRelease
AVISaveOptionsFree
AVISaveOptions
AVIFileCreateStreamA
AVIStreamWrite
AVIFileInit
AVIFileOpenA

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 645KB - Virtual size: 645KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
b9d5d2b7889e30f6369d3087a4b357e082305ed5d0109fcf69ae3e6bab01856b.bin
.exe windows x86

763a6c242616919e88c4b498df736a9e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

imm32

ImmAssociateContext

kernel32

GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
GetProcAddress
LoadLibraryA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
SetEndOfFile
SetEnvironmentVariableA
CompareStringW
WriteConsoleW
SetStdHandle
HeapReAlloc
LoadLibraryW
InterlockedExchange
HeapSize
GetStringTypeW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
CreateProcessA
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlushFileBuffers
GetConsoleMode
GetFileType
SetHandleCount
InitializeCriticalSectionAndSpinCount
ReadFile
SetFilePointer
GetModuleFileNameW
ExitProcess
HeapCreate
LCMapStringW
IsProcessorFeaturePresent
SetConsoleWindowInfo
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError
GetModuleHandleW
TlsFree
DecodePointer
TlsSetValue
TlsGetValue
TlsAlloc
EncodePointer
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
WriteConsoleA
SetConsoleTextAttribute
SetConsoleCtrlHandler
FreeConsole
FillConsoleOutputAttribute
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
Sleep
GetVersionExA
DeleteFileA
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
GetCurrentProcess
SetConsoleScreenBufferSize
GetProcessHeap
CreateFileW
LocalAlloc
QueryPerformanceCounter

user32

BeginPaint
DefWindowProcA
SetWindowLongA
GetWindowLongA
EnableMenuItem
GetMenu
DispatchMessageA
GetMessageA
TranslateMessage
PeekMessageA
FindWindowA
SetMenuItemInfoA
CheckMenuRadioItem
EndPaint
PostMessageA
GetAsyncKeyState
SetWindowPos
SetForegroundWindow
RemoveMenu
GetSystemMenu
ReleaseDC
GetDC
SetRect
CharLowerA
IsWindow
SetCursor
LoadCursorA
CheckMenuItem
GetForegroundWindow
OpenClipboard
LoadIconA
RegisterClassA
CreateWindowExA
UpdateWindow
LoadAcceleratorsA
CopyAcceleratorTableA
CreateAcceleratorTableA
TranslateAcceleratorA
DestroyAcceleratorTable
DestroyWindow
IsIconic
MapVirtualKeyA
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SetWindowTextA
SendInput
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
AppendMenuA
GetClipboardData
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
SetCursorPos
MoveWindow
EnumDisplaySettingsA
LoadBitmapA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetSubMenu
DrawMenuBar
ModifyMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
DeleteMenu
PostQuitMessage

gdi32

StretchBlt
SelectObject
DeleteObject
CreateDIBSection
CreateCompatibleDC
GetStockObject
TextOutA
GetObjectA
SetBkMode
SetTextColor
GetTextMetricsA
GetDeviceCaps
GetTextExtentPoint32A
BitBlt
SetStretchBltMode
DeleteDC

comdlg32

GetOpenFileNameA

shell32

DragAcceptFiles
DragFinish
DragQueryFileA

ole32

CoUninitialize
CoInitialize

wsock32

socket
recv
WSACleanup
closesocket
shutdown
send
inet_ntoa
accept
listen
setsockopt
bind
htons
htonl
WSAStartup

comctl32

ord17
ord6

msimg32

TransparentBlt

gdiplus

GdipSaveImageToFile
GdiplusStartup
GdiplusShutdown
GdipDisposeImage
GdipGetImageEncoders
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIMakeCompressedStream
AVIFileExit
AVIFileRelease
AVIStreamRelease
AVISaveOptionsFree
AVISaveOptions
AVIFileCreateStreamA
AVIStreamWrite
AVIFileInit
AVIFileOpenA

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 385KB - Virtual size: 385KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
bd878fd9d61988244f629959692a335373d280b5f02d17c0718ed53e20f41bd2.bin
.exe windows x86

928b37567dbc08d22c7ffc67a945c5a1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeEndPeriod
timeBeginPeriod
timeGetTime

imm32

ImmAssociateContext

kernel32

SetConsoleWindowInfo
GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
GetProcAddress
LoadLibraryA
FreeLibrary
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
HeapCreate
LCMapStringW
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetConsoleScreenBufferSize
GetModuleHandleW
TlsFree
DecodePointer
TlsSetValue
InitializeCriticalSection
TlsAlloc
EncodePointer
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
WriteConsoleA
GetCPInfo
GetStartupInfoW
HeapSetInformation
GetCommandLineA
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
SetConsoleTextAttribute
SetConsoleCtrlHandler
FreeConsole
FillConsoleOutputAttribute
WaitForSingleObject
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
SetLastError
CreateProcessA
ExitProcess
GetModuleFileNameW
SetFilePointer
ReadFile
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetConsoleMode
FlushFileBuffers
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetProcessHeap
CreateFileW
LocalAlloc
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
HeapSize
InterlockedExchange
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
Sleep
GetVersionExA
DeleteFileA
GetFileAttributesA
lstrcpyA
InterlockedIncrement
DeleteCriticalSection
TlsGetValue
LoadLibraryW
HeapReAlloc
SetStdHandle
WriteConsoleW
SetEndOfFile
SetEnvironmentVariableA
CompareStringW

user32

LoadIconA
RegisterClassA
CreateWindowExA
UpdateWindow
LoadAcceleratorsA
CopyAcceleratorTableA
CreateAcceleratorTableA
TranslateAcceleratorA
DestroyAcceleratorTable
DestroyWindow
IsIconic
MapVirtualKeyA
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SetWindowTextA
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
OpenClipboard
GetClipboardData
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
SetCursorPos
MoveWindow
EnumDisplaySettingsA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetMenuItemCount
GetSubMenu
GetMenuItemID
DrawMenuBar
ModifyMenuA
InsertMenuA
DeleteMenu
AppendMenuA
SetMenuItemInfoA
CheckMenuRadioItem
CheckMenuItem
PostQuitMessage
LoadCursorA
SetCursor
IsWindow
CharLowerA
SetRect
GetDC
ReleaseDC
GetSystemMenu
RemoveMenu
SetForegroundWindow
SetWindowPos
GetAsyncKeyState
GetForegroundWindow
FindWindowA
PeekMessageA
TranslateMessage
GetMessageA
DispatchMessageA
GetMenu
EnableMenuItem
GetWindowLongA
SetWindowLongA
DefWindowProcA
BeginPaint
EndPaint
PostMessageA
SendInput

gdi32

TextOutA
GetTextExtentPoint32A
CreateCompatibleDC
CreateDIBSection
SetStretchBltMode
SetBkMode
GetStockObject
StretchBlt
SelectObject
DeleteObject
DeleteDC
GetTextMetricsA
SetTextColor
BitBlt
GetDeviceCaps

comdlg32

GetOpenFileNameA

shell32

DragQueryFileA
DragAcceptFiles
DragFinish

ole32

CoInitialize
CoUninitialize

wsock32

recv
WSACleanup
closesocket
shutdown
send
inet_ntoa
accept
listen
setsockopt
WSAStartup
socket
htonl
htons
bind

comctl32

ord17
ord6

gdiplus

GdipDisposeImage
GdiplusShutdown
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipSaveImageToFile
GdiplusStartup

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVIFileExit
AVIFileRelease
AVIStreamRelease
AVIStreamWrite
AVIMakeCompressedStream
AVISaveOptionsFree
AVISaveOptions

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 321KB - Virtual size: 321KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
da2104389a96570530643578b95957f24ca03e05e9bfefa671067cd8c19d4ed8.bin
.exe windows x86

3a0c29a562513ae077b3f8b11d7c3216

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

joyGetDevCapsA
joyGetNumDevs
joyGetPosEx
midiOutClose
midiOutShortMsg
midiOutUnprepareHeader
midiOutLongMsg
midiOutPrepareHeader
midiOutOpen
timeGetTime
timeEndPeriod
timeBeginPeriod

imm32

ImmAssociateContext

kernel32

FreeConsole
SetConsoleCtrlHandler
SetConsoleTextAttribute
WriteConsoleA
CreateProcessA
SetConsoleScreenBufferSize
SetConsoleWindowInfo
GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
LeaveCriticalSection
EnterCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
FlushConsoleInputBuffer
GetStartupInfoW
HeapSetInformation
GetCommandLineA
EncodePointer
DecodePointer
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
FillConsoleOutputAttribute
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
GetVersionExA
Sleep
LoadLibraryA
GetProcAddress
FreeLibrary
DeleteFileA
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
IsProcessorFeaturePresent
LCMapStringW
HeapCreate
ExitProcess
GetModuleFileNameW
SetFilePointer
ReadFile
InitializeCriticalSection
WaitForSingleObject
CloseHandle
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetConsoleMode
FlushFileBuffers
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
PeekConsoleInputA
FillConsoleOutputCharacterA
HeapSize
InterlockedExchange
LoadLibraryW
HeapReAlloc
SetStdHandle
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetProcessHeap
CreateFileW
LocalAlloc
GetCPInfo

user32

TranslateAcceleratorA
DestroyAcceleratorTable
DestroyWindow
IsIconic
CreateAcceleratorTableA
CopyAcceleratorTableA
LoadAcceleratorsA
UpdateWindow
MapVirtualKeyA
DialogBoxParamA
CloseWindow
CreateWindowExA
RegisterClassA
SystemParametersInfoA
MessageBoxA
SendInput
IsDlgButtonChecked
SetWindowTextA
GetDlgItem
SetTimer
SetFocus
CallWindowProcA
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
OpenClipboard
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
MoveWindow
LoadIconA
EnumDisplaySettingsA
LoadBitmapA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetSubMenu
DrawMenuBar
ModifyMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
DeleteMenu
AppendMenuA
SetMenuItemInfoA
CheckMenuRadioItem
CheckMenuItem
PostQuitMessage
LoadCursorA
SetCursor
IsWindow
CharLowerA
SetRect
GetDC
ReleaseDC
GetCursorPos
ScreenToClient
ShowCursor
ClientToScreen
SetCursorPos
GetSystemMenu
RemoveMenu
SetForegroundWindow
SetWindowPos
GetAsyncKeyState
GetForegroundWindow
FindWindowA
PeekMessageA
TranslateMessage
GetMessageA
DispatchMessageA
GetMenu
EnableMenuItem
GetWindowLongA
SetWindowLongA
DefWindowProcA
BeginPaint
EndPaint
PostMessageA
GetClipboardData

gdi32

GetTextMetricsA
GetObjectA
TextOutA
CreateCompatibleDC
CreateDIBSection
SetStretchBltMode
GetStockObject
BitBlt
DeleteObject
SelectObject
StretchBlt
GetTextExtentPoint32A
SetTextColor
DeleteDC
GetDeviceCaps
SetBkMode

comdlg32

GetOpenFileNameA

shell32

DragQueryFileA
DragAcceptFiles
DragFinish

ole32

CoInitialize
CoUninitialize

wsock32

WSAStartup
socket
htonl
htons
bind
setsockopt
listen
accept
inet_ntoa
send
shutdown
closesocket
WSACleanup
recv

comctl32

ord6
ord17

msimg32

TransparentBlt

gdiplus

GdiplusStartup
GdiplusShutdown
GdipDisposeImage
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIFileExit
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVISaveOptions
AVISaveOptionsFree
AVIMakeCompressedStream
AVIFileRelease
AVIStreamWrite
AVIStreamRelease

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 834KB - Virtual size: 833KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 3.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
f2dfae712b7f1248f7dc28f6e388fb701dc86b721a947797f8c808c89077ed1c.bin
.exe windows x86

060338c0affa2cb9e52d55be0932b284

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

joyGetNumDevs
joyGetPosEx
timeGetTime
timeEndPeriod
timeBeginPeriod
joyGetDevCapsA

imm32

ImmAssociateContext

kernel32

SetConsoleWindowInfo
GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
WriteConsoleA
GetStartupInfoW
HeapSetInformation
GetCommandLineA
EncodePointer
DecodePointer
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
SetConsoleTextAttribute
SetConsoleCtrlHandler
FreeConsole
SetConsoleScreenBufferSize
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
GetVersionExA
Sleep
LoadLibraryA
GetProcAddress
LCMapStringW
HeapCreate
ExitProcess
GetModuleFileNameW
SetFilePointer
ReadFile
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetConsoleMode
FlushFileBuffers
FreeLibrary
DeleteFileA
FreeEnvironmentStringsW
IsProcessorFeaturePresent
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
HeapSize
InterlockedExchange
LoadLibraryW
HeapReAlloc
SetStdHandle
WriteConsoleW
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
FillConsoleOutputAttribute
CreateProcessA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetProcessHeap
CreateFileW
LocalAlloc
GetCPInfo

user32

UpdateWindow
CopyAcceleratorTableA
CreateAcceleratorTableA
TranslateAcceleratorA
CreateWindowExA
RegisterClassA
LoadAcceleratorsA
DestroyAcceleratorTable
DestroyWindow
LoadIconA
MapVirtualKeyA
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SendInput
IsDlgButtonChecked
SetWindowTextA
GetDlgItem
SetTimer
CallWindowProcA
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
OpenClipboard
IsIconic
GetClipboardData
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
MoveWindow
EnumDisplaySettingsA
LoadBitmapA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetSubMenu
DrawMenuBar
ModifyMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
DeleteMenu
AppendMenuA
SetMenuItemInfoA
CheckMenuRadioItem
CheckMenuItem
PostQuitMessage
LoadCursorA
SetCursor
IsWindow
CharLowerA
SetRect
GetDC
ReleaseDC
GetCursorPos
ScreenToClient
ShowCursor
ClientToScreen
SetCursorPos
GetSystemMenu
RemoveMenu
SetForegroundWindow
SetWindowPos
GetAsyncKeyState
GetForegroundWindow
FindWindowA
PeekMessageA
TranslateMessage
GetMessageA
DispatchMessageA
GetMenu
EnableMenuItem
GetWindowLongA
SetWindowLongA
DefWindowProcA
BeginPaint
EndPaint
PostMessageA
SetFocus

gdi32

GetTextMetricsA
GetObjectA
DeleteDC
DeleteObject
SelectObject
StretchBlt
SetTextColor
SetBkMode
BitBlt
GetStockObject
SetStretchBltMode
GetTextExtentPoint32A
GetDeviceCaps
CreateDIBSection
TextOutA
CreateCompatibleDC

comdlg32

GetOpenFileNameA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles

ole32

CoUninitialize
CoInitialize

wsock32

recv
WSACleanup
closesocket
shutdown
send
inet_ntoa
WSAStartup
socket
htonl
htons
bind
setsockopt
listen
accept

comctl32

ord6
ord17

msimg32

TransparentBlt

gdiplus

GdipDisposeImage
GdipSaveImageToFile
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIFileExit
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVISaveOptions
AVISaveOptionsFree
AVIMakeCompressedStream
AVIFileRelease
AVIStreamWrite
AVIStreamRelease

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 487KB - Virtual size: 486KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
f973bf4ef104f0f969b9979d2b43c0a7bcb86da31dccff1f6d7dcc6011d1196a.bin
.exe windows x86

060338c0affa2cb9e52d55be0932b284

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

joyGetNumDevs
joyGetPosEx
timeGetTime
timeEndPeriod
timeBeginPeriod
joyGetDevCapsA

imm32

ImmAssociateContext

kernel32

SetConsoleWindowInfo
GetStdHandle
GetConsoleWindow
SetConsoleTitleA
AllocConsole
EnterCriticalSection
LeaveCriticalSection
GlobalFree
MultiByteToWideChar
WriteFile
CreateFileA
GlobalAlloc
WaitForMultipleObjects
CreateEventA
ReleaseMutex
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
GetModuleHandleA
GlobalUnlock
GlobalLock
SetThreadExecutionState
SetThreadPriority
CreateMutexA
SearchPathA
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SetLastError
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
WriteConsoleA
GetStartupInfoW
HeapSetInformation
GetCommandLineA
EncodePointer
DecodePointer
HeapAlloc
RtlUnwind
CreateThread
GetCurrentThreadId
ExitThread
RaiseException
HeapFree
WideCharToMultiByte
GetLastError
SetConsoleTextAttribute
SetConsoleCtrlHandler
FreeConsole
SetConsoleScreenBufferSize
FillConsoleOutputCharacterA
FlushConsoleInputBuffer
PeekConsoleInputA
SetConsoleCursorInfo
SetConsoleCursorPosition
GetConsoleScreenBufferInfo
ReadConsoleInputA
GetConsoleCP
GetVersionExA
Sleep
LoadLibraryA
GetProcAddress
LCMapStringW
HeapCreate
ExitProcess
GetModuleFileNameW
SetFilePointer
ReadFile
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetFileType
GetConsoleMode
FlushFileBuffers
FreeLibrary
DeleteFileA
FreeEnvironmentStringsW
IsProcessorFeaturePresent
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeW
HeapSize
InterlockedExchange
LoadLibraryW
HeapReAlloc
SetStdHandle
WriteConsoleW
GetFileAttributesA
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
WaitForSingleObject
CloseHandle
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetLocalTime
GetLongPathNameA
GetCurrentDirectoryA
GetModuleFileNameA
GetFullPathNameA
FillConsoleOutputAttribute
CreateProcessA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetProcessHeap
CreateFileW
LocalAlloc
GetCPInfo

user32

UpdateWindow
CopyAcceleratorTableA
CreateAcceleratorTableA
TranslateAcceleratorA
CreateWindowExA
RegisterClassA
LoadAcceleratorsA
DestroyAcceleratorTable
DestroyWindow
LoadIconA
MapVirtualKeyA
DialogBoxParamA
CloseWindow
SystemParametersInfoA
MessageBoxA
SendInput
IsDlgButtonChecked
SetWindowTextA
GetDlgItem
SetTimer
CallWindowProcA
SendDlgItemMessageA
EndDialog
SetDlgItemTextA
OpenClipboard
IsIconic
GetClipboardData
CloseClipboard
AdjustWindowRect
ChangeDisplaySettingsA
GetClientRect
MoveWindow
EnumDisplaySettingsA
LoadBitmapA
GetWindowRect
SendMessageA
ShowWindow
IsMenu
LoadMenuA
DestroyMenu
CreatePopupMenu
SetMenu
GetMenuItemInfoA
GetSubMenu
DrawMenuBar
ModifyMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
DeleteMenu
AppendMenuA
SetMenuItemInfoA
CheckMenuRadioItem
CheckMenuItem
PostQuitMessage
LoadCursorA
SetCursor
IsWindow
CharLowerA
SetRect
GetDC
ReleaseDC
GetCursorPos
ScreenToClient
ShowCursor
ClientToScreen
SetCursorPos
GetSystemMenu
RemoveMenu
SetForegroundWindow
SetWindowPos
GetAsyncKeyState
GetForegroundWindow
FindWindowA
PeekMessageA
TranslateMessage
GetMessageA
DispatchMessageA
GetMenu
EnableMenuItem
GetWindowLongA
SetWindowLongA
DefWindowProcA
BeginPaint
EndPaint
PostMessageA
SetFocus

gdi32

GetTextMetricsA
GetObjectA
DeleteDC
DeleteObject
SelectObject
StretchBlt
SetTextColor
SetBkMode
BitBlt
GetStockObject
SetStretchBltMode
GetTextExtentPoint32A
GetDeviceCaps
CreateDIBSection
TextOutA
CreateCompatibleDC

comdlg32

GetOpenFileNameA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles

ole32

CoUninitialize
CoInitialize

wsock32

recv
WSACleanup
closesocket
shutdown
send
inet_ntoa
WSAStartup
socket
htonl
htons
bind
setsockopt
listen
accept

comctl32

ord6
ord17

msimg32

TransparentBlt

gdiplus

GdipDisposeImage
GdipSaveImageToFile
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize
GdipGetImageEncoders

d3d9

Direct3DCreate9

avifil32

AVIStreamSetFormat
AVIFileExit
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVISaveOptions
AVISaveOptionsFree
AVIMakeCompressedStream
AVIFileRelease
AVIStreamWrite
AVIStreamRelease

dsound

ord1

dinput8

DirectInput8Create

Sections

.text
Size: 494KB - Virtual size: 493KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2df00240d246f12310e262f686ac27bc

Headers

DLL Characteristics

File Characteristics

Imports

winmm

imm32

kernel32

user32

gdi32

comdlg32

shell32

ole32

wsock32

comctl32

gdiplus

d3d9

avifil32

dsound

dinput8

Sections

.text Size: 357KB - Virtual size: 357KB

.rdata Size: 89KB - Virtual size: 89KB

.data Size: 11KB - Virtual size: 341KB

.rsrc Size: 7KB - Virtual size: 7KB

763a6c242616919e88c4b498df736a9e

Headers

DLL Characteristics

File Characteristics

Imports

winmm

imm32

kernel32

user32

gdi32

comdlg32

shell32

ole32

wsock32

comctl32

msimg32

gdiplus

d3d9

avifil32

dsound

dinput8

Sections

.text Size: 645KB - Virtual size: 645KB

.rdata Size: 143KB - Virtual size: 142KB

.data Size: 24KB - Virtual size: 3.7MB

.rsrc Size: 11KB - Virtual size: 10KB

763a6c242616919e88c4b498df736a9e

Headers

DLL Characteristics

File Characteristics

Imports

winmm

imm32

kernel32

user32

gdi32

comdlg32

shell32

ole32

wsock32

comctl32

msimg32

gdiplus

d3d9

avifil32

dsound

dinput8

Sections

.text Size: 385KB - Virtual size: 385KB

.rdata Size: 132KB - Virtual size: 132KB

.text
Size: 357KB - Virtual size: 357KB

.rdata
Size: 89KB - Virtual size: 89KB

.data
Size: 11KB - Virtual size: 341KB

.rsrc
Size: 7KB - Virtual size: 7KB

.text
Size: 645KB - Virtual size: 645KB

.rdata
Size: 143KB - Virtual size: 142KB

.data
Size: 24KB - Virtual size: 3.7MB

.rsrc
Size: 11KB - Virtual size: 10KB

.text
Size: 385KB - Virtual size: 385KB

.rdata
Size: 132KB - Virtual size: 132KB

.data
Size: 12KB - Virtual size: 3.6MB

.rsrc
Size: 9KB - Virtual size: 9KB

.text
Size: 321KB - Virtual size: 321KB

.rdata
Size: 81KB - Virtual size: 80KB

.data
Size: 13KB - Virtual size: 87KB

.rsrc
Size: 7KB - Virtual size: 7KB

.text
Size: 834KB - Virtual size: 833KB

.rdata
Size: 208KB - Virtual size: 207KB

.data
Size: 28KB - Virtual size: 3.9MB

.rsrc
Size: 14KB - Virtual size: 13KB