DanEroplus_ver2[.]07[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

DanEroplus_ver2.07.exe
Size

4.8MB
MD5

11ec32635d985729271bd6ee878e2599
SHA1

1f603adcb3c841cda7f97407e3cec0c42ae3878a
SHA256

eaeda5c6742f74facc81d9ab4d349ea3e9b965bf198e459810822bc139aff5be
SHA512

e81f15b5f38826a4386c81f25b2439d69973243d4d401e53c66223110a5b9cfcd7be83eb6854ad4b21cd99f788133188dddbbbb845c7a687d9fd13eda59f3132
SSDEEP

98304:Vm7a1TFo4SbyNBdjDrTt5cEAxhNa8vEoVHK3P7Xe6VcgwB:s+TFWcBd3rT83NaccXnqT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DanEroplus_ver2.07.exe

Files

DanEroplus_ver2.07.exe
.exe windows:6 windows x86 arch:x86

Password: 1092109229012901

00e8d1389fac10afe958bd41e86b7460

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetProcAddress
WakeAllConditionVariable
SleepConditionVariableSRW
GetCurrentProcessId
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetCurrentProcess
TerminateProcess
RaiseException
RtlUnwind
InterlockedPushEntrySList
GetLastError
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
GetStdHandle
WriteFile
GetModuleFileNameW
ExitProcess
GetModuleHandleExW
GetCurrentThread
DecodePointer
HeapFree
HeapAlloc
GetFileType
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetFileSizeEx
SetFilePointerEx
OutputDebugStringW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
GetStringTypeW
GetProcessHeap
FlushFileBuffers
GetConsoleOutputCP
HeapSize
CloseHandle
ReadFile
ReadConsoleW
CreateFileW
WriteConsoleW
GetFullPathNameW
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
DeleteFileW
FindFirstFileW
GetFileSize
GetFileTime
OutputDebugStringA
Sleep
OpenProcess
SetThreadAffinityMask
CopyFileW
AllocConsole
GetModuleHandleA
EnumResourceNamesA
GetLocalTime
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
SetConsoleTitleA
GlobalMemoryStatusEx
GetUserDefaultUILanguage
ReleaseMutex
CreateMutexA
GetTickCount
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
WaitForSingleObject
LoadResource
LockResource
SizeofResource
FindResourceW
EnumResourceNamesW
EnumResourceTypesW
LoadLibraryA
GetModuleFileNameA
LoadLibraryExA
InitializeCriticalSectionEx
SetEndOfFile
ReleaseSRWLockExclusive
MoveFileExW
CreatePipe
GetFileAttributesExW
GetExitCodeProcess
GetTimeZoneInformation
GetDriveTypeW
CreateProcessW
DuplicateHandle
FreeLibraryAndExitThread
ExitThread
CreateThread
lstrcmpiA
VirtualAlloc
VirtualFree
GetSystemInfo
UnmapViewOfFile
GetVersionExA
CreateFileA
CreateFileMappingA
MapViewOfFile
GetFullPathNameA
InterlockedCompareExchange
InitializeCriticalSection
InterlockedExchange
GetTempPathW
GetSystemTimeAsFileTime
HeapReAlloc
FormatMessageA
QueryPerformanceFrequency
QueryPerformanceCounter
GetCurrentThreadId
TryAcquireSRWLockExclusive
AcquireSRWLockExclusive
GetConsoleMode

user32

SetClipboardData
GetClipboardData
EmptyClipboard
IsChild
GetKeyState
GetCapture
SetCapture
ReleaseCapture
SetCursorPos
CloseClipboard
IsWindowVisible
SetWindowPlacement
GetWindowPlacement
MoveWindow
OpenClipboard
InvalidateRect
IsWindow
GetMonitorInfoA
MonitorFromRect
LoadCursorA
ClientToScreen
MessageBoxW
TranslateMessage
UnregisterHotKey
RegisterHotKey
TrackMouseEvent
PeekMessageW
SendMessageW
DefWindowProcW
PostQuitMessage
RegisterClassExW
CreateWindowExW
DestroyWindow
ShowWindow
SetWindowPos
DispatchMessageW
GetDlgItem
GetActiveWindow
SystemParametersInfoA
FindWindowA
SetWindowLongA
GetAsyncKeyState
GetCursorPos
SetCursor
ShowCursor
GetClientRect
SetMenu
GetMenu
IsZoomed
IsIconic
GetSystemMetrics
DrawTextW
LoadIconA
LoadCursorW
FindWindowExW
GetDesktopWindow
SetWindowLongW
GetWindowLongW
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetWindowTextW
SetWindowTextW
ReleaseDC
GetDC
SetForegroundWindow
GetForegroundWindow
UpdateWindow

gdi32

DeleteObject
SelectObject
GetStockObject

shell32

ShellExecuteW
DragAcceptFiles
SHGetFolderPathW
DragQueryFileW
SHGetFolderPathA
DragFinish

ole32

CoUninitialize
CoInitialize

advapi32

RegOpenKeyA
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegQueryValueExA

winmm

joyGetDevCapsW
timeGetDevCaps
mmioAscend
mmioDescend
mmioRead
mmioClose
mmioOpenA
mmioStringToFOURCCA
mmioSeek
joyGetPosEx
timeEndPeriod
timeBeginPeriod

imm32

ImmGetContext
ImmReleaseContext
ImmSetCompositionWindow
ImmDisableIME

shlwapi

PathAppendW
PathFileExistsW
PathAppendA
PathFindFileNameW
PathIsDirectoryW
PathRemoveFileSpecW
PathIsRelativeW

d3d9

Direct3DCreate9

dsound

ord11

Sections

.text
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 759KB - Virtual size: 759KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 564KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: 1092109229012901

00e8d1389fac10afe958bd41e86b7460

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

advapi32

winmm

imm32

shlwapi

d3d9

dsound

Sections

.text Size: 3.8MB - Virtual size: 3.8MB

.rdata Size: 759KB - Virtual size: 759KB

.data Size: 95KB - Virtual size: 564KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 173KB - Virtual size: 172KB

.text
Size: 3.8MB - Virtual size: 3.8MB

.rdata
Size: 759KB - Virtual size: 759KB

.data
Size: 95KB - Virtual size: 564KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 173KB - Virtual size: 172KB