d79dbefb48f04882566023ea6955e49ea7409088a868b7bbed7bccce4d4c318f

Sharing

Copy URL Twitter E-mail

General

Target

d79dbefb48f04882566023ea6955e49ea7409088a868b7bbed7bccce4d4c318f
Size

704KB
MD5

6d327936dae9e51a3db79ae05a247e75
SHA1

a6e66cb3c673d753b9303dab1c4ca3c03819dbd4
SHA256

d79dbefb48f04882566023ea6955e49ea7409088a868b7bbed7bccce4d4c318f
SHA512

8e2fa77b740e55c15a03ee3daf70b883176552820dbc275a8c603cb4993ed33c01cdfc5ab0511c23516e8b2bfbc519a99f35ce66ac8b6a7f8c35638ae1d00989
SSDEEP

6144:yQ3pT/VnfxuefG3hKIe/qSzl11KR9j0elDOop5N5nFLbBprfdxcpoi6ATZIa:ZZDVfxRG3hKIe/qSg/jVxcpd6ATua

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d79dbefb48f04882566023ea6955e49ea7409088a868b7bbed7bccce4d4c318f

Files

d79dbefb48f04882566023ea6955e49ea7409088a868b7bbed7bccce4d4c318f
.dll windows:4 windows x86 arch:x86

0ae01506db24b979cc4fee420ca495d5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcr71

_itoa
malloc
_ultoa
free
atol
atof
??2@YAPAXI@Z
sprintf
__CxxFrameHandler
??3@YAXPAX@Z
_CIacos
atoi
strncpy
srand
_local_unwind2
_except_handler3
rand
_CIpow
_CIasin

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

comctl32

ord16
ord17

ddraw

DirectDrawCreate

kernel32

CreateFileA
GetModuleFileNameA
WriteFile
GlobalLock
GlobalUnlock
GlobalAlloc
GlobalSize
GlobalHandle
GlobalFree
ReadFile
CloseHandle
LocalAlloc
FindResourceA
LoadResource
LockResource
TerminateThread
VirtualAlloc
VirtualFree
CreateThread

user32

LoadBitmapA
SetWindowTextA
DialogBoxParamA
IsWindowEnabled
EndDialog
UnregisterClassA
GetClassNameA
DefWindowProcA
GetClientRect
IsWindowVisible
ReleaseCapture
SetCapture
SetWindowRgn
PostMessageA
MoveWindow
SetFocus
UpdateWindow
InvalidateRect
SetTimer
GetWindowTextA
KillTimer
RegisterClassA
LoadCursorA
GetSystemMetrics
SendDlgItemMessageA
SetDlgItemInt
SetDlgItemTextA
FillRect
GetWindowDC
GetDesktopWindow
GetDialogBaseUnits
SetWindowLongA
SetRectEmpty
CopyRect
ShowWindow
CreateDialogIndirectParamA
IsDlgButtonChecked
GetParent
SetWindowPos
GetWindowLongA
CreateWindowExA
CheckDlgButton
ClientToScreen
BeginPaint
EndPaint
GetWindowRect
ScreenToClient
GetDlgItem
SendMessageA
EnableWindow
GetDC
ReleaseDC
RedrawWindow
MessageBoxA
GetDlgItemTextA
GetSysColor
OffsetRect

gdi32

CreateSolidBrush
CreateFontIndirectA
Rectangle
Polygon
CreatePen
MoveToEx
CreateEllipticRgn
CreateCompatibleBitmap
SetBkMode
SelectObject
GetPixel
DeleteObject
LineTo
CreateDIBitmap
BitBlt
CreateRoundRectRgn
CreateCompatibleDC
GetTextExtentPointA
SetPixel
SetTextColor
Ellipse
DeleteDC
TextOutA
GetStockObject

comdlg32

GetSaveFileNameA
ChooseColorA
GetOpenFileNameA

advapi32

RegOpenKeyA
RegCloseKey
RegSetValueExA
RegCreateKeyA
RegQueryValueExA

shell32

ShellExecuteA

Exports

Exports

DissolveProcGrad
ENTRYPOINT

Sections

.text
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 508KB - Virtual size: 506KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0ae01506db24b979cc4fee420ca495d5

Headers

File Characteristics

Imports

msvcr71

version

comctl32

ddraw

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Exports

Exports

Sections

.text Size: 156KB - Virtual size: 153KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 86KB

.rsrc Size: 508KB - Virtual size: 506KB

.reloc Size: 20KB - Virtual size: 17KB

.text
Size: 156KB - Virtual size: 153KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 86KB

.rsrc
Size: 508KB - Virtual size: 506KB

.reloc
Size: 20KB - Virtual size: 17KB