82dcd9ffb65efae6baff4fa1583eaf62861b78185a819de931b5e8f28c1fe7a6

Sharing

Copy URL

Twitter E-mail

General

Target

82dcd9ffb65efae6baff4fa1583eaf62861b78185a819de931b5e8f28c1fe7a6
Size

1.6MB
MD5

828e6c761943cda23a9ceeb5c86f736a
SHA1

1dc5b3f4dec33fb6ba24ed8a42bc3799cb8095cf
SHA256

82dcd9ffb65efae6baff4fa1583eaf62861b78185a819de931b5e8f28c1fe7a6
SHA512

1ee0f5ad342a6f6711f88242d926d408d2ea3e82330fd95d02be2955dcf00995111a078434cc1d188894f28f9f5a26fb4cc8e8024a0c3a41cf1f1b8c1b7fce90
SSDEEP

12288:4m0ZY2ir1XqK0XhhmCL+Tsxm1it0qLeHSrn5ssYJjKC0spQPrOPFTGpnM:4m0ZY2ir1xjpwgE7LeQtsmPYTi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82dcd9ffb65efae6baff4fa1583eaf62861b78185a819de931b5e8f28c1fe7a6

Files

82dcd9ffb65efae6baff4fa1583eaf62861b78185a819de931b5e8f28c1fe7a6
.dll windows:4 windows x86 arch:x86

f254d66e25d6dba78021e103a96393b9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalFree
GlobalAlloc
SetPriorityClass
GetCurrentProcess
WideCharToMultiByte
CreateTimerQueueTimer
DeleteTimerQueueTimer
HeapFree
GetProcessHeap
HeapAlloc
InterlockedExchangeAdd
InterlockedExchange
SetThreadExecutionState
GetVersion
CreateThread
LCMapStringW
LCMapStringA
SetEndOfFile
GetOEMCP
GetACP
GetCPInfo
GetStringTypeA
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
TerminateProcess
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
RtlUnwind
ExitProcess
DeleteCriticalSection
HeapReAlloc
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
InitializeCriticalSection
GetLastError
LeaveCriticalSection
EnterCriticalSection
GetCommandLineA
GetModuleFileNameA
WriteFile
CreateFileA
SetFilePointer
GetFileSize
CloseHandle
ReadFile
VirtualAlloc
LoadLibraryA
VirtualFree
VirtualProtect
GetProcAddress
lstrcatA
GetModuleHandleA
GetStringTypeW

user32

GetCursorPos
GetSystemMetrics
SetWindowPos
GetClientRect
GetWindowRect
DestroyCursor
UnregisterClassA
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
SetWindowLongA
GetWindowLongA
CreateWindowExA
GetDesktopWindow
RegisterClassA
LoadCursorA
IsZoomed
SetMenu
GetMenu
wsprintfA
ClientToScreen
InvalidateRect
KillTimer
SetCapture
ReleaseCapture
ShowCursor
SetTimer
DefWindowProcA
PostMessageA
MessageBoxA
IsDlgButtonChecked
SetWindowTextA
LoadImageA
CheckDlgButton
DialogBoxParamA
GetDlgItemTextA
GetDlgItem
EnableWindow
SetDlgItemTextA
EndDialog
SendMessageA
SendMessageW

gdi32

SetBkColor
CreatePatternBrush
SetBkMode
SetTextColor
CreateSolidBrush
DeleteObject
GetStockObject

ole32

CreateStreamOnHGlobal
CoTaskMemFree
CLSIDFromString
CoCreateInstance

oleaut32

OleCreatePropertyFrame
SysFreeString

wsock32

gethostbyname

winmm

timeBeginPeriod
timeEndPeriod

gdiplus

GdipCloneImage
GdipDisposeImage
GdipFree
GdipAlloc
GdipLoadImageFromStreamICM
GdipLoadImageFromStream
GdipSaveImageToStream

wininet

HttpQueryInfoA
InternetSetOptionA
InternetOpenA
InternetConnectA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpSendRequestA
InternetReadFile
InternetCloseHandle

ddraw

DirectDrawCreate

d3d9

Direct3DCreate9

Exports

Exports

Main_VideoPlayBox
VideoPlayBox
Video_Notify_Func

Sections

.text
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 556KB - Virtual size: 567KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f254d66e25d6dba78021e103a96393b9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

wsock32

winmm

gdiplus

wininet

ddraw

d3d9

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 74KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 556KB - Virtual size: 567KB

.rsrc Size: 1.0MB - Virtual size: 1.0MB

.reloc Size: 12KB - Virtual size: 10KB

.text
Size: 76KB - Virtual size: 74KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 556KB - Virtual size: 567KB

.rsrc
Size: 1.0MB - Virtual size: 1.0MB

.reloc
Size: 12KB - Virtual size: 10KB