CatCompanion[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

CatCompanion.exe
Size

894KB
MD5

c717760ce76f87c0be5aa6eb19e0b59b
SHA1

308bcb941c3c5c8c3c157787fde1f03ea5c7173f
SHA256

07884e6558206f5b841e3d3936b5638d6f964f67f441670d8839c71327277bcf
SHA512

cbeb4e6010d7337ab39f591245eb16f96b696e43c321a35944da4b8a588f1b1bb5ecf0c4c4a044650ef86f8ea13d28ec1ecf09fda28c99a15f231de22cea68cf
SSDEEP

12288:T6rOBEuSMbqvQCPzmf9BlKlw2sshcc/1udCDDz:T6ikaR21h3

Score

1^/10

Malware Config

Signatures

Files

CatCompanion.exe
.exe windows x86

4475ae446fed54f1350f0c6c6dd7fc81

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

opengl32

wglMakeCurrent
wglDeleteContext
wglCreateContext
glViewport
glPushMatrix
glPopMatrix
glMatrixMode
glLoadIdentity
glFlush
glFinish
glEnable
glClearColor
glClear
glBlendFunc
glPixelStorei
glDeleteTextures
glDrawElements
glTexParameteri
glTexImage2D
glGenTextures
glBindTexture

glew32

__glewBufferData
__glewGenBuffers
__glewEnableVertexAttribArray
__glewVertexAttribPointer
__glewGenVertexArrays
__glewShaderSource
__glewLinkProgram
__glewGetShaderiv
__glewGetShaderInfoLog
__glewGetProgramiv
__glewGetProgramInfoLog
__glewBufferSubData
__glewCreateShader
__glewGetUniformLocation
__glewUniform1f
__glewUniform2f
__glewUniform2i
__glewUniform3f
__glewUniform3fv
__glewUniform3i
__glewUniformMatrix3fv
__glewBindBuffer
_glewInit@0
__glewBindVertexArray
__glewUseProgram
__glewUniformMatrix4fv
__glewUniform4i
__glewUniform4f
__glewUniform1i
__glewActiveTexture
__glewGenerateMipmap
__glewAttachShader
__glewCreateProgram
__glewCompileShader

kernel32

CreateFileW
FormatMessageA
LocalFree
OutputDebugStringA
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
Sleep
GetCurrentDirectoryW
IsProcessorFeaturePresent
WideCharToMultiByte
MultiByteToWideChar
GetProcAddress
GetModuleHandleW
SetLastError
GetLastError
CloseHandle
AreFileApisANSI
GetFileInformationByHandle
GetFileAttributesExW
FindNextFileW
FindFirstFileExW
FindClose

user32

GetKeyState
GetKeyboardState
GetCursorPos
GetDC
ReleaseDC
GetWindowLongW
SetWindowLongW
SetRectEmpty
UnionRect
GetMonitorInfoW
EnumDisplayMonitors
SetCursor
LoadCursorW
IntersectRect
SetClassLongW
LoadCursorFromFileW
TranslateMessage
DispatchMessageW
PeekMessageW
DefWindowProcW
PostQuitMessage
RegisterClassExW
CreateWindowExW
MessageBoxW
LoadIconW
SetProcessDpiAwarenessContext
IsIconic
GetWindowTextW
GetWindowTextLengthW
EnumWindows

gdi32

ChoosePixelFormat
SwapBuffers
SetPixelFormat
CreateSolidBrush
CreateRectRgn

freetype6

FT_Load_Char
FT_Set_Pixel_Sizes
FT_Done_Face
FT_New_Face
FT_Done_FreeType
FT_Init_FreeType

fmod

?release@Sound@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?release@SoundGroup@FMOD@@QAG?AW4FMOD_RESULT@@XZ
?setSoundGroup@Sound@FMOD@@QAG?AW4FMOD_RESULT@@PAVSoundGroup@2@@Z
FMOD_System_Create
?createSoundGroup@System@FMOD@@QAG?AW4FMOD_RESULT@@PBDPAPAVSoundGroup@2@@Z
?createSound@System@FMOD@@QAG?AW4FMOD_RESULT@@PBDIPAUFMOD_CREATESOUNDEXINFO@@PAPAVSound@2@@Z
?init@System@FMOD@@QAG?AW4FMOD_RESULT@@HIPAX@Z
?release@System@FMOD@@QAG?AW4FMOD_RESULT@@XZ

msvcp140

?_Getcat@?$codecvt@DDU_Mbstatet@@@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?unshift@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PAD1AAPAD@Z
?out@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDU_Mbstatet@@@std@@QBEHAAU_Mbstatet@@PBD1AAPBDPAD3AAPAD@Z
?always_noconv@codecvt_base@std@@QBE_NXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Throw_C_error@std@@YAXH@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
??Bid@locale@std@@QAEIXZ
?tellg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@U_Mbstatet@@@2@XZ
?seekg@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@_JH@Z
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAM@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?_Throw_Cpp_error@std@@YAXH@Z
_Thrd_id
_Thrd_join
_Xtime_get_ticks
?_Xinvalid_argument@std@@YAXPBD@Z
_Mtx_unlock
_Mtx_lock
_Mtx_destroy_in_situ
_Mtx_init_in_situ
?_Xbad_function_call@std@@YAXXZ
?_Random_device@std@@YAIXZ
?id@?$codecvt@DDU_Mbstatet@@@std@@2V0locale@2@A
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
_Query_perf_counter
_Query_perf_frequency
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAHH@Z
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
?uncaught_exception@std@@YA_NXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

dwmapi

DwmEnableBlurBehindWindow
DwmGetWindowAttribute

vcruntime140

_except_handler4_common
__current_exception_context
__current_exception
_purecall
__std_terminate
__std_exception_copy
__std_exception_destroy
_CxxThrowException
__CxxFrameHandler3
memcpy
memmove
memset
memchr

api-ms-win-crt-runtime-l1-1-0

_exit
_c_exit
_initterm_e
terminate
_initterm
_get_narrow_winmain_command_line
exit
_set_app_type
_seh_filter_exe
_cexit
_controlfp_s
_crt_atexit
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
_errno
_invalid_parameter_noinfo_noreturn
_register_thread_local_exe_atexit_callback

api-ms-win-crt-math-l1-1-0

_libm_sse2_cos_precise
_CIatan2
_libm_sse2_sin_precise
_CIfmod
ldexp
__setusermatherr
roundf
floor
ceil
_libm_sse2_sqrt_precise
_libm_sse2_pow_precise
fminf
fmaxf

api-ms-win-crt-heap-l1-1-0

malloc
realloc
_callnewh
free
_set_new_mode

api-ms-win-crt-convert-l1-1-0

strtof
strtol

api-ms-win-crt-stdio-l1-1-0

_get_stream_buffer_pointers
fflush
__stdio_common_vsprintf_s
fgetc
fgetpos
fputc
__stdio_common_vsscanf
fclose
fsetpos
_fseeki64
feof
fwrite
setvbuf
ftell
fseek
fopen
fread
ungetc
_set_fmode
__stdio_common_vsprintf
__p__commode

api-ms-win-crt-filesystem-l1-1-0

_lock_file
_unlock_file
remove

api-ms-win-crt-utility-l1-1-0

rand
srand

api-ms-win-crt-string-l1-1-0

toupper
strncmp

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-locale-l1-1-0

___lc_codepage_func
_configthreadlocale

Sections

.text
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 530KB - Virtual size: 529KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4475ae446fed54f1350f0c6c6dd7fc81

Headers

DLL Characteristics

File Characteristics

Imports

opengl32

glew32

kernel32

user32

gdi32

freetype6

fmod

msvcp140

dwmapi

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-filesystem-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-locale-l1-1-0

Sections

.text Size: 259KB - Virtual size: 258KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 6KB - Virtual size: 10KB

_RDATA Size: 49KB - Virtual size: 48KB

.rsrc Size: 530KB - Virtual size: 529KB

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 259KB - Virtual size: 258KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 6KB - Virtual size: 10KB

_RDATA
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 530KB - Virtual size: 529KB

.reloc
Size: 11KB - Virtual size: 11KB