PPanther[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

PPanther.exe
Size

284KB
MD5

635a4de83b9770154e07df81e4c42a78
SHA1

4b5d17aeb7476de6d693ad851b6323e4cac243d7
SHA256

ac52596494f04129a149d17f3ba655242281734c57e8b64ee8a95d2351bfae85
SHA512

a99d0f29d263b0ad00b5bd86263234949f9e36a5f930b10cab9da62d458751d2bf6129360180b336db3a8bf976b056c6be20b238855f3cf6975a51725ae000fb
SSDEEP

6144:1+Jkixxhl6N2VnvvTvG5h3qwRF2+70rf:Mj9o2Jvr3U0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PPanther.exe

Files

PPanther.exe
.exe windows:4 windows x86 arch:x86

a028593129ba229b6717e36bf231aa1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
GetLastError
MultiByteToWideChar
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
GetUserDefaultLCID
GetCommandLineA
SetErrorMode
GetVolumeInformationA
VirtualAlloc
HeapReAlloc
CloseHandle
FlushFileBuffers
SetStdHandle
LoadLibraryA
GetOEMCP
GetACP
SetFilePointer
GetCPInfo
GetStringTypeW
WriteFile
RtlUnwind
GetStringTypeA
GetStdHandle
SetHandleCount
HeapAlloc
HeapFree
InterlockedDecrement
InterlockedIncrement
GetModuleHandleA
GetStartupInfoA
GetVersion
ExitProcess
GetProcAddress
HeapDestroy
HeapCreate
VirtualFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
TlsGetValue
GetFileType
LCMapStringA
LCMapStringW
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
GetModuleFileNameA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW

user32

GetClientRect
AdjustWindowRectEx
CreateWindowExA
LoadIconA
ShowCursor
RegisterClassA
LoadCursorA
UnregisterClassA
DestroyWindow
SendMessageA
MessageBoxA
DefWindowProcA
EndPaint
BeginPaint
PostQuitMessage
DispatchMessageA
PeekMessageA
WaitMessage

ole32

CoCreateInstance
CoInitialize
CoUninitialize

dinput8

DirectInput8Create

agl7

?PauseCDAudio@AGLSCREEN@@QAEJXZ
?AGLSqrt@@YAMM@Z
?SetVolume@AGLSOUNDBUFFER@@QAEJJ@Z
?DisableSoundManager@AGLSCREEN@@QAEJXZ
?Read@AGLFILE@@QAEJPAXKPAK@Z
?AGLOpenFile@@YAPAVAGLFILE@@PADKK@Z
?Close@AGLFILE@@QAEJXZ
?GetSurface@AGLIMAGE@@QAEPAEXZ
?ReleaseSurface@AGLIMAGE@@QAEJXZ
?GetBackImage@AGLSCREEN@@QAEPAVAGLIMAGE@@XZ
?AGLCreateScreen@@YAPAVAGLSCREEN@@PAUHWND__@@E@Z
?AGLGetLastError@@YAJXZ
?SetDisplayMode@AGLSCREEN@@QAEJKKEE@Z
?CreateImage@AGLSCREEN@@QAEPAVAGLIMAGE@@KKEG@Z
?Normalize@AGLVECTOR@@QAEMXZ
?CrossProduct@AGLVECTOR@@QAEXPAU1@0@Z
?SetViewport@AGLSCREEN@@QAEJKKKK@Z
?Stop@AGLSOUNDBUFFER@@QAEJXZ
?IsPlaying@AGLSOUNDBUFFER@@QAEEXZ
?Play@AGLSOUNDBUFFER@@QAEJE@Z
?SetCDAudioVolume@AGLSCREEN@@QAEJJ@Z
?CreateSoundBuffer@AGLSCREEN@@QAEPAVAGLSOUNDBUFFER@@EKK@Z
?SetData@AGLSOUNDBUFFER@@QAEJPAEK@Z
?SetPan@AGLSOUNDBUFFER@@QAEJJ@Z
?Stop@AGLTIMER@@QAEJXZ
?Flip@AGLSCREEN@@QAEJJJ@Z
?EnableSoundManager@AGLSCREEN@@QAEJKPAD@Z
?AGLCreateFile@@YAPAVAGLFILE@@PADK@Z
?RestoreAllImages@AGLSCREEN@@QAEJP6AJPAV1@PAVAGLIMAGE@@@Z@Z
?StopCDAudio@AGLSCREEN@@QAEJXZ
?PlayCDAudioTrack@AGLSCREEN@@QAEJE@Z
?Delete@AGLTIMER@@QAEJXZ
?AGLCreateTimer@@YAPAVAGLTIMER@@XZ
?Start@AGLTIMER@@QAEJP6GXIIKKK@Z@Z
?SetDelay@AGLTIMER@@QAEJH@Z
?GetSize@AGLFILE@@QAEKXZ
?Write@AGLFILE@@QAEJPAXKPAK@Z

Sections

.text
Size: 240KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a028593129ba229b6717e36bf231aa1a

Headers

File Characteristics

Imports

kernel32

user32

ole32

dinput8

agl7

Sections

.text Size: 240KB - Virtual size: 238KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 16KB - Virtual size: 92KB

.rsrc Size: 12KB - Virtual size: 8KB

.text
Size: 240KB - Virtual size: 238KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 16KB - Virtual size: 92KB

.rsrc
Size: 12KB - Virtual size: 8KB