67c4e975be9d24abaa7747cefdc2f0f2

Sharing

Copy URL Twitter E-mail

General

Target

67c4e975be9d24abaa7747cefdc2f0f2
Size

234KB
MD5

67c4e975be9d24abaa7747cefdc2f0f2
SHA1

c688521c5cd91695c177c8e1b0dfdbc43019a3d4
SHA256

7b7e96ed0ddb367b6def9ee6f11ebe2a9ca645511f23906a8a69852f904c5d09
SHA512

518a5cffb31c7ccdc5756f19cba485842b253098ed6044c935f90b9c43f1cf970f09fbb7d410951199322a72fa65579ba2f62b7d40a843136d44db7f88515803
SSDEEP

3072:SgqJanTpDvfrCNaPMylDxPcXUY0BNf0O3DeqLb22QCnit9N9YsCHhsh:FnTp7TCgEylDxhCO3DtboC09/CHG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67c4e975be9d24abaa7747cefdc2f0f2

Files

67c4e975be9d24abaa7747cefdc2f0f2
.exe windows:4 windows x86 arch:x86

7f8119166419b38e4580dcf17ca5215a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc71u

ord5222
ord3942
ord4562
ord5226
ord5209
ord5562
ord2832
ord4475
ord4255
ord3327
ord1118
ord2311
ord1049
ord1096
ord1121
ord3824
ord2239
ord1176
ord266
ord265
ord1079
ord1086
ord3249
ord5911
ord1393
ord5210
ord3331
ord4100
ord774
ord4101
ord2260
ord291
ord3642
ord2237
ord1904
ord2609
ord5003
ord5006
ord4303
ord4129
ord2933
ord5220
ord940
ord5352
ord2986
ord2419
ord2418
ord4013
ord1548
ord3939
ord5144
ord2164
ord1297
ord5161
ord4259
ord3201
ord635
ord5201
ord4902
ord4271
ord4921
ord4112
ord4293
ord395
ord280
ord3678
ord1479
ord6111
ord282
ord2926
ord3157
ord1545
ord3189
ord572
ord620
ord2366
ord896
ord860
ord2121
ord894
ord2925
ord1911
ord3826
ord5378
ord6215
ord5096
ord1007
ord3800
ord5579
ord2009
ord2054
ord4320
ord6274
ord3795
ord6272
ord4008
ord4032
ord283
ord4119
ord1386
ord2895
ord501
ord709
ord347
ord5727
ord5638
ord6031
ord6033
ord1920
ord602
ord4109
ord6279
ord6061
ord1006
ord354
ord563
ord3176
ord5199
ord4574
ord4729
ord4206
ord1785
ord753
ord605
ord4256
ord4480
ord3943
ord2638
ord3703
ord3713
ord3712
ord2527
ord2640
ord2534
ord2856
ord2708
ord4301
ord2829
ord2725
ord2531
ord5196
ord1590
ord1646
ord1647
ord1955
ord5171
ord1353
ord4961
ord3339
ord6275
ord3796
ord6273
ord1513
ord3635
ord2163
ord2169
ord2399
ord2381
ord2379
ord2397
ord2409
ord2386
ord2402
ord2407
ord2390
ord2392
ord2394
ord2388
ord2404
ord2384
ord931
ord927
ord929
ord925
ord920
ord5229
ord5231
ord5956
ord1591
ord4276
ord4716
ord3397
ord4179
ord6271
ord5067
ord1899
ord5148
ord4238
ord1392
ord3940
ord1608
ord1611
ord5908
ord1542
ord1661
ord1662
ord2011
ord4884
ord5178
ord1894
ord5633
ord1270
ord3296
ord3155
ord1271
ord3198
ord1925
ord3204
ord762
ord764
ord6086
ord5829
ord293
ord3756
ord6167
ord6173
ord3927
ord870
ord6063
ord577
ord4314
ord3435
ord4898
ord1198

msvcr71

??0exception@@QAE@ABV0@@Z
memset
??0exception@@QAE@XZ
memcpy
_strcmpi
_c_exit
_exit
_CxxThrowException
_snwprintf
__CxxFrameHandler
_purecall
rand
memmove
_wtoi
_except_handler3
free
_wtoi64
isdigit
_XcptFilter
_cexit
exit
_wcmdln
_amsg_exit
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
__security_error_handler
??1type_info@@UAE@XZ
__dllonexit
_onexit
?terminate@@YAXXZ
_controlfp
??1exception@@UAE@XZ

kernel32

InterlockedExchange
GetModuleHandleW
lstrlenW
LoadLibraryW
FreeLibrary
CreateThread
lstrcpynW
InitializeCriticalSection
DeleteCriticalSection
SetLastError
VirtualProtect
FlushInstructionCache
GetCurrentProcess
GetModuleHandleA
MulDiv
LocalFree
LocalAlloc
GetStartupInfoW
ExitProcess
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
Sleep
GetCurrentThreadId
GetVersionExA
GetCurrentProcessId

user32

SetScrollInfo
GetScrollInfo
SetScrollPos
GetScrollPos
GetScrollRange
SetScrollRange
ShowScrollBar
EnableScrollBar
LoadIconW
PtInRect
SetRect
PostMessageW
IsZoomed
ScreenToClient
SetTimer
mouse_event
GetCursorPos
LoadImageW
SetCursor
LoadCursorW
InvalidateRect
EndDeferWindowPos
DeferWindowPos
SystemParametersInfoW
BeginDeferWindowPos
CopyRect
SetWindowPos
SetWindowLongA
GetWindowLongA
ShowWindow
GetPropA
ClientToScreen
SetRectEmpty
OffsetRect
IsRectEmpty
SendMessageA
CallWindowProcA
GetMessagePos
EnableWindow
SendMessageW
GetClientRect
GetWindowRect
IsWindow
KillTimer
ReleaseDC
GetWindowDC
SetWindowRgn
GetCursor
RemovePropA
SetCapture
IsWindowVisible
ReleaseCapture
SetPropA
GetClassNameA

gdi32

SaveDC
ExcludeClipRect
RestoreDC
SetBkColor
ExtTextOutA
DeleteObject
SetStretchBltMode
CreateFontW
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
DeleteDC
SelectObject
GetObjectW
CreatePolygonRgn
PtInRegion
CreateSolidBrush
StretchBlt

shell32

ShellExecuteW

comctl32

_TrackMouseEvent
ord17

winmm

timeGetTime

msvcp71

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

imageaide

?CreateImageRegion@CBitImage@@QAE_NAAVCRgn@@K@Z
??0CBitImage@@QAE@XZ
??1CBitImage@@UAE@XZ

gameframe

?OnEventUserScore@CGameFrameEngine@@UAAXPAUIClientUserItem@@_N@Z
?OnEventUserLeave@CGameFrameEngine@@UAAXPAUIClientUserItem@@_N@Z
?OnEventUserEnter@CGameFrameEngine@@UAAXPAUIClientUserItem@@_N@Z
?PostEngineMessage@CGameFrameEngine@@UAAJIIJ@Z
?SendEngineMessage@CGameFrameEngine@@UAAJIIJ@Z
?CollocateParameter@CGameFrameEngine@@UAA_NQAPAUIUnknownEx@@G@Z
?CreateGameEngine@CGameFrameEngine@@UAA_NXZ
?Release@CGameFrameEngine@@UAAXXZ
?PostNcDestroy@CGameFrameEngine@@MAEXXZ
??1CGameFrameEngine@@UAE@XZ
??0CGameFrameEngine@@QAE@XZ
?GetThisMessageMap@CGameFrameEngine@@KGPBUAFX_MSGMAP@@XZ
?OnCreate@CGameFrameViewGL@@QAEHPAUtagCREATESTRUCTW@@@Z
?OnRButtonUp@CGameFrameView@@IAEXIVCPoint@@@Z
?UpdateGameView@CGameFrameView@@UAA_NPAVCRect@@@Z
?UpdateGameView@CGameFrameView@@UAA_NHHHH@Z
?SetViewScreenInfo@CGameFrameView@@UAA_NAAVCSize@@0@Z
?GetLevelDescribe@CGameFrameView@@UAAPB_WPAUIClientUserItem@@@Z
?SetClientUserItem@CGameFrameView@@UAA_NGPAUIClientUserItem@@@Z
?GetClientUserItem@CGameFrameView@@UAAPAUIClientUserItem@@G@Z
?SetUserTimer@CGameFrameView@@UAA_NGG@Z
?GetUserTimer@CGameFrameView@@UAAGG@Z
?InvalidGameView@CGameFrameViewGL@@UAEXHHHH@Z
?Release@CGameFrameView@@UAAXXZ
?OnEventUserStatus@CGameFrameEngine@@UAAXPAUIClientUserItem@@_N@Z
?QueryInterface@CGameFrameView@@UAAPAXABU_GUID@@K@Z
?GetGlobalOption@CGlobalGameOption@@SAPAV1@XZ
?GetServiceStatus@CGlobalGameUnits@@QAE?AW4enServiceStatus@@XZ
?GetGlobalUnits@CGlobalGameUnits@@SAPAV1@XZ
?RegisterGlobalModule@CGlobalGameUnits@@QAE_NGPAUIUnknownEx@@@Z
?QueryGlobalModule@CGlobalGameUnits@@QAEPAXGABU_GUID@@K@Z
?GetGameFrameWnd@CGameFrameApp@@UAEPAVCGameFrameWnd@@XZ
?GetMessageMap@CGameFrameApp@@MBEPBUAFX_MSGMAP@@XZ
??0CGameFrameApp@@QAE@XZ
??1CGameFrameApp@@UAE@XZ
?InitGlobalUnits@CGlobalGameUnits@@QAE_NXZ
?LoadParameter@CGlobalGameOption@@QAEXXZ
?QueryInterface@CGameFrameEngine@@UAAPAXABU_GUID@@K@Z
?SendSocketData@CGameFrameEngine@@QAE_NGPAXG@Z
?SaveParameter@CGlobalGameOption@@QAEXXZ
?GetTableUserItem@CGameFrameEngine@@QAEPAUIClientUserItem@@G@Z
?GetMeChairID@CGameFrameEngine@@QAEGXZ
?OnEventCustomFace@CGameFrameEngine@@UAAXPAUIClientUserItem@@_N@Z
?OnEventUserSegment@CGameFrameEngine@@UAAXPAUIClientUserItem@@_N@Z
?GetGameFrameEngine@CGameFrameEngine@@SAPAV1@XZ
?GetWindowHandle@CGameFrameView@@UAAPAUHWND__@@XZ
?GetThisMessageMap@CGameFrameViewGL@@KGPBUAFX_MSGMAP@@XZ
?OnTimer@CGameFrameViewGL@@QAEXI@Z
?PreTranslateMessage@CGameFrameViewGL@@MAEHPAUtagMSG@@@Z
?OnLButtonDown@CGameFrameView@@IAEXIVCPoint@@@Z
?StartRenderThread@CGameFrameViewGL@@QAEXXZ
?SwitchViewChairID@CGameFrameEngine@@QAEGG@Z
??0CGameFrameViewGL@@QAE@XZ
??1CGameFrameViewGL@@UAE@XZ
?CreateGameWindow@CGameFrameView@@UAA_NPAVCWnd@@I@Z
?DefWindowProcW@CGameFrameViewGL@@MAEJIIJ@Z

skincontrols

??0CSkinButton@@QAE@XZ
??1CSkinButton@@UAE@XZ
?SetNoFocusColor@CSkinEditEx@@QAEXKK@Z
?SetDisFocusColor@CSkinEditEx@@QAEXKK@Z
?SetFocusColor@CSkinEditEx@@QAEXKK@Z
?SetButtonImage@CSkinButton@@QAE_NIPAUHINSTANCE__@@_N1@Z
??1CSkinEditEx@@UAE@XZ
??0CSkinEditEx@@QAE@XZ

clientcontrols

??1CRichEditMessage@@UAE@XZ
??1CExpressionManager@@UAE@XZ
?GetMessageMap@CExpressionControl@@MBEPBUAFX_MSGMAP@@XZ
?ShowExpression@CExpressionControl@@QAEXPAVCWnd@@HHPAUIExpressionSink@@@Z
??0CExpressionControl@@QAE@XZ
??0CInformation@@QAE@PAVCWnd@@@Z
??0CExpressionManager@@QAE@XZ
??0CRichEditMessage@@QAE@XZ
?SetExpressionManager@CRichEditMessage@@QAE_NPAVCExpressionManager@@K@Z
?SetRichEditMessageSink@CRichEditMessage@@QAE_NPAUIUnknownEx@@@Z
?LoadExpression@CExpressionManager@@QAE_NXZ
?ShowMessageBox@CInformation@@QAEHPB_WII@Z
??1CExpressionControl@@UAE@XZ
??1CInformation@@UAE@XZ

openglengine

?IsChildWindow@CGLVirtualWindow@@UAE_NPAV1@@Z
?OnWindowMovie@CGLVirtualButton@@MAEXXZ
?OnWindowCreate@CGLVirtualButton@@MAEXPAVCGLDevice@@@Z
?OnWindowDestory@CGLVirtualButton@@MAEXXZ
?OnWindowPosition@CGLVirtualWindow@@MAEXXZ
?OnEventMouse@CGLVirtualButton@@MAEXIIHH@Z
?OnEventButton@CGLVirtualButton@@MAEXIIHH@Z
?GetParentWindow@CGLVirtualWindow@@UAEPAV1@XZ
?SetWindowID@CGLVirtualWindow@@UAEXI@Z
?GetWindowID@CGLVirtualWindow@@UAEIXZ
?DrawImage@CGLTexture@@QAEEPAVCGLDevice@@HHHHHHE@Z
?m_uFocusID@CGLVirtualWindow@@1IA
?LoadImageIndex@CGLTexture@@QAEEPAVCGLDevice@@PAUHINSTANCE__@@PB_W2KHH@Z
?GetTextSize@CGLFont@@QAE?AVCSize@@PB_W@Z
?SetButtonFocus@CGLVirtualButton@@QAEX_N@Z
?OnWindowDestory@CGLVirtualWindow@@MAEXXZ
??1CGLVirtualWindow@@UAE@XZ
?SetWindowPos@CGLVirtualWindow@@UAEXHHHHI@Z
?OnWindowCreate@CGLVirtualWindow@@MAEXPAVCGLDevice@@@Z
?GetHWND@CGLDevice@@QAEQAUHWND__@@XZ
?TextOutW@CGLFont@@QAE_NPAVCGLDevice@@PB_WHHK@Z
?DeleteFont@CGLFont@@QAE_NXZ
?IsNull@CGLTexture@@QAEEXZ
?ResetWindow@CGLVirtualWindow@@EAEXXZ
?OnEventDrawChildWindow@CGLVirtualWindow@@EAEXPAVCGLDevice@@HH@Z
?KillThreadRC@CGLDevice@@QAEEH@Z
?Destory@CGLTexture@@QAEEXZ
?SetCursorPos@CGLDevice@@SAXVCPoint@@@Z
?m_WindowArray@CGLVirtualWindow@@2V?$vector@PAVCGLVirtualWindow@@V?$allocator@PAVCGLVirtualWindow@@@std@@@std@@A
?SetCursor@CGLDevice@@SAXPAX@Z
?SetCursorOffset@CGLDevice@@SAXVCSize@@@Z
?GetLapseCount@CGLLapseCount@@QAEKK@Z
?OnWindowMovie@CGLVirtualWindow@@MAEXXZ
?DrawImage@CGLTexture@@QAEEPAVCGLDevice@@HHK@Z
?GetWindowRect@CGLVirtualWindow@@UAEXAAVCRect@@@Z
?GetClientRect@CGLVirtualWindow@@UAEXAAVCRect@@@Z
?OnOK@CGLVirtualWindow@@UAEXXZ
?SetFocus@CGLVirtualWindow@@UAEX_N@Z
?EnableWindow@CGLVirtualWindow@@UAEX_N@Z
?DeleteWindow@CGLVirtualWindow@@UAEXXZ
?IsWindowVisible@CGLVirtualWindow@@UAE_NXZ
?IsWindowEnable@CGLVirtualWindow@@UAE_NXZ
?IsWindowActive@CGLVirtualWindow@@UAE_NXZ
??0CGLVirtualWindow@@QAE@XZ
?ActiveWindow@CGLVirtualWindow@@UAE_NAAVCRect@@KIPAVCGLDevice@@PAV1@@Z
?ShowWindow@CGLVirtualWindow@@UAEX_N@Z
?Start@CGLPlaySound@@QAE_NPB_W@Z
?_Object@CGLPlaySound@@SAPAV1@XZ
?ListRun@CGLPlaySound@@QAEXXZ
?ListPause@CGLPlaySound@@QAEXXZ
?ListStart@CGLPlaySound@@QAEXXZ
?ListAdd@CGLPlaySound@@QAEXPB_W@Z
?ListClear@CGLPlaySound@@QAEXXZ
?ListVolume@CGLPlaySound@@QAEXH@Z
?ControlVolume@CGLPlaySound@@QAEXH@Z
?Delete@CGLPlaySound@@SAXXZ
??1CGLLapseCount@@UAE@XZ
?DrawImage@CGLTexture@@QAEEPAVCGLDevice@@HHHHHHHHE@Z
?GetWidth@CGLTexture@@QAEHXZ
?GetHeight@CGLTexture@@QAEHXZ
?Initialization@CGLLapseCount@@QAEXXZ
??0CGLLapseCount@@QAE@XZ
??1CGLFont@@UAE@XZ
??1CGLTexture@@QAE@XZ
??0CGLFont@@QAE@XZ
??1CGLVirtualButton@@UAE@XZ
??0CGLVirtualButton@@QAE@XZ
??0CGLTexture@@QAE@XZ
?SetThreadRC@CGLDevice@@QAEEH_N@Z
?DrawImageIndex@CGLTexture@@QAEEPAVCGLDevice@@HHHHHHHHKH@Z
?DrawImage@CGLTexture@@QAEEPAVCGLDevice@@HH@Z
?DrawColourFilterImage@CGLTexture@@QAEEPAVCGLDevice@@HHHHHHHHE@Z
?DrawImage@CGLTexture@@QAEEPAVCGLDevice@@HHHHHHHH@Z
?DrawTextW@CGLFont@@QAE_NPAVCGLDevice@@PB_WVCRect@@IK@Z
?DrawColourFilterImage@CGLTexture@@QAEEPAVCGLDevice@@HH@Z
?SetSymmetrical@CGLTexture@@QAEXH@Z
?SetRotation@CGLTexture@@QAEXMMM@Z
?CreateThreadRC@CGLDevice@@QAEEAAH@Z
?DrawImage@CGLTexture@@QAEEPAVCGLDevice@@HHE@Z
?DrawImageIndex@CGLTexture@@QAEEPAVCGLDevice@@HHH@Z
?GetWidthIndex@CGLTexture@@QAEHXZ
?GetHeightIndex@CGLTexture@@QAEHXZ
?DrawColourFilterImageIndex@CGLTexture@@QAEEPAVCGLDevice@@HHH@Z
?DrawColourFilterImageIndex@CGLTexture@@QAEEPAVCGLDevice@@HHHE@Z
?DrawImageIndex@CGLTexture@@QAEEPAVCGLDevice@@HHHE@Z
?DrawColourFilterImage@CGLTexture@@QAEEPAVCGLDevice@@HHE@Z
?DrawImage@CGLTexture@@QAEEPAVCGLDevice@@HHHHHH@Z
?DrawImage@CGLTexture@@QAEEPAVCGLDevice@@HHHHHHHHK@Z
?CreateFontW@CGLFont@@QAE_NHHPB_W@Z
?SetButtonImage@CGLVirtualButton@@QAEXPAVCGLDevice@@PAUHINSTANCE__@@PB_W2K@Z
?LoadImageW@CGLTexture@@QAEEPAVCGLDevice@@PAUHINSTANCE__@@PB_W2K@Z
?GetCursor@CGLDevice@@SAPAXXZ
?DrawLine@CGLDevice@@QAEXHHHHK@Z

commonservice

?GetBinary@CRegKeyAide@@QAEKPB_WPAXK@Z
??1CRegKeyAide@@UAE@XZ
?OpenRegKey@CRegKeyAide@@QAE_NPB_W0_N@Z
?GetValue@CRegKeyAide@@QAEKPB_WK@Z
?WriteValue@CRegKeyAide@@QAE_NPB_WK@Z
?WriteBinary@CRegKeyAide@@QAE_NPB_WPBXK@Z
??0CRegKeyAide@@QAE@XZ

platformdata

?GetInstance@CParameterGlobal@@SAPAV1@XZ
?GetInstance@CGlobalStation@@SAPAV1@XZ
?GetNavigationLink@CGlobalStation@@QAEPB_WKQA_WI@Z

opengl32

glColor3f
glVertex3f
glEnd
glEnable
glBegin
glLoadIdentity
glGetString
glDisable

Sections

.text
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7f8119166419b38e4580dcf17ca5215a

Headers

File Characteristics

Imports

mfc71u

msvcr71

kernel32

user32

gdi32

shell32

comctl32

winmm

msvcp71

imageaide

gameframe

skincontrols

clientcontrols

openglengine

commonservice

platformdata

opengl32

Sections

.text Size: 140KB - Virtual size: 137KB

.rdata Size: 44KB - Virtual size: 42KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 140KB - Virtual size: 137KB

.rdata
Size: 44KB - Virtual size: 42KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 40KB - Virtual size: 36KB