bd7bfbf3a45fe8ca522fb62acfe8a5e362115725bad5db3fe752f2a5e8409b5d

Sharing

Copy URL Twitter E-mail

General

Target

bd7bfbf3a45fe8ca522fb62acfe8a5e362115725bad5db3fe752f2a5e8409b5d
Size

840KB
MD5

cc08e7c9d339e6d0ac06d5c77e485085
SHA1

08ebe147c7864ccbd5a0cb434b8ee6c910b5159b
SHA256

bd7bfbf3a45fe8ca522fb62acfe8a5e362115725bad5db3fe752f2a5e8409b5d
SHA512

b2e50e82c527ff7265fd305e0bf451b3db8b316deb164c86c1ef98848a225c07d6887d9561bd4c4d1969eafade152f38d69591db97474329822b16d6d24e8c0a
SSDEEP

12288:lUyAwSiewwI3bS4AWiIOpcnWFzNsym+NBlPMSlXxyGdryK33flNXuGq5vSWzL6El:lDqWhKieEYBPhKSDau29MCxjmxK

Score

1^/10

Malware Config

Signatures

Files

bd7bfbf3a45fe8ca522fb62acfe8a5e362115725bad5db3fe752f2a5e8409b5d
.exe windows x86

3a798179d895e1d4360262cc66bce844

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime
mmioClose
mmioAscend
mmioSeek
mmioDescend
mmioOpenA

msacm32

acmStreamClose
acmStreamConvert
acmStreamPrepareHeader
acmStreamSize
acmStreamOpen
acmFormatSuggest
acmStreamUnprepareHeader

imm32

ImmGetDefaultIMEWnd

d3d9

Direct3DCreate9

dsound

ord1

kernel32

GetConsoleMode
LCMapStringA
GlobalFree
GlobalHandle
GlobalAlloc
Sleep
GlobalUnlock
GlobalLock
lstrcmpA
lstrlenA
lstrcpyA
GetLocalTime
lstrcmpiA
OutputDebugStringA
GlobalSize
CloseHandle
ReadFile
CreateFileA
GetTickCount
UnhandledExceptionFilter
WaitForSingleObject
CreateProcessA
GetModuleFileNameA
FindClose
FindNextFileA
FindFirstFileA
InitializeCriticalSection
DeleteCriticalSection
SetFilePointer
GetFileSize
WriteFile
DeleteFileA
MoveFileA
LeaveCriticalSection
EnterCriticalSection
MulDiv
lstrcatA
SetCurrentDirectoryA
GetVersionExA
SetPriorityClass
GetCurrentProcess
GetLastError
CreateMutexA
MultiByteToWideChar
GetProcAddress
LoadLibraryA
FreeLibrary
TerminateThread
ExitThread
SetThreadPriority
CreateThread
SetEvent
CreateEventA
ResetEvent
CompareFileTime
GetFileTime
LCMapStringW
FileTimeToLocalFileTime
CopyFileA
LocalFree
FormatMessageA
GetFullPathNameA
WideCharToMultiByte
GetModuleHandleA
MapViewOfFile
CreateFileMappingA
CreateFileW
UnmapViewOfFile
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
InterlockedDecrement
InterlockedIncrement
GetStartupInfoA
GetProcessHeap
HeapAlloc
HeapFree
GetCommandLineA
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
TerminateProcess
GetEnvironmentStringsW
RaiseException
RtlUnwind
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
VirtualAlloc
HeapReAlloc
GetLocaleInfoW
GetConsoleCP
HeapSize
ExitProcess
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
FileTimeToSystemTime

user32

ChangeDisplaySettingsA
PostThreadMessageA
FindWindowExA
LoadIconA
LoadImageA
RegisterClassExA
CreateWindowExA
UpdateWindow
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
UnregisterClassA
DestroyIcon
SetFocus
BeginPaint
EndPaint
PostQuitMessage
DestroyWindow
SetCapture
ReleaseCapture
DefWindowProcA
ShowCursor
GetClientRect
DialogBoxParamA
SendMessageA
EnableWindow
EndDialog
GetDlgItem
GetDesktopWindow
SendDlgItemMessageA
GetSystemMetrics
LoadCursorA
SetClassLongA
SetCursor
SetCursorPos
ScreenToClient
PtInRect
ClientToScreen
SetRect
CharUpperA
PostMessageA
GetWindow
ShowWindow
SetWindowTextA
MessageBoxA
SetWindowLongA
AdjustWindowRectEx
SetWindowPos
GetDC
FillRect
ReleaseDC
SetForegroundWindow
ClipCursor
CloseWindow
GetAsyncKeyState
wsprintfA
GetWindowRect
MsgWaitForMultipleObjects
EnumDisplayMonitors
EnumDisplayDevicesA
GetMonitorInfoA
GetWindowTextA
GetCursorPos

gdi32

SetMapMode
SelectObject
CreateDIBSection
CreateCompatibleDC
DeleteDC
DeleteObject
SetBkMode
GetDeviceCaps
CreateFontIndirectA
GetTextMetricsA
GetGlyphOutlineA
SetPolyFillMode
BitBlt
GetStockObject

ole32

CoInitialize
CoUninitialize

steam_api

SteamInternal_CreateInterface
SteamInternal_ContextInit
SteamAPI_GetHSteamUser
SteamAPI_RunCallbacks
SteamAPI_RegisterCallback
SteamAPI_Init
SteamAPI_GetHSteamPipe
SteamAPI_Shutdown
SteamAPI_UnregisterCallback

vorbisfile

ov_read
ov_pcm_seek
ov_time_total
ov_open_callbacks
ov_test_callbacks
ov_clear

Sections

.text
Size: 640KB - Virtual size: 639KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a798179d895e1d4360262cc66bce844

Headers

File Characteristics

Imports

winmm

msacm32

imm32

d3d9

dsound

kernel32

user32

gdi32

ole32

steam_api

vorbisfile

Sections

.text Size: 640KB - Virtual size: 639KB

.rdata Size: 112KB - Virtual size: 109KB

.data Size: 52KB - Virtual size: 2.6MB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 640KB - Virtual size: 639KB

.rdata
Size: 112KB - Virtual size: 109KB

.data
Size: 52KB - Virtual size: 2.6MB

.rsrc
Size: 32KB - Virtual size: 28KB