312c2dd9ec9e7f037995e1aaee2ab45515fc201cf3046cd0f64664db540db57e

Sharing

Copy URL Twitter E-mail

General

Target

312c2dd9ec9e7f037995e1aaee2ab45515fc201cf3046cd0f64664db540db57e
Size

2.0MB
MD5

5cd714656d686175d36a5b542851224e
SHA1

6579fe8d56ce8bc13ae647c15440231a50b5d75c
SHA256

312c2dd9ec9e7f037995e1aaee2ab45515fc201cf3046cd0f64664db540db57e
SHA512

3f3f2520d27fa8b5c8eda7b8d8aef452f5cff2b834c48af7e346665545161ee960ea1df106d42c3bcbf911bef1dc64a7b65b6558f48397da58f2295483d9eab7
SSDEEP

6144:2mXU5HAJWKg/fRMwJrQnxqlemf8yJN/XD1OZU7iD6W+iag+dEzB1luE:2p5HA0KgwUl2YNfDvY5BDzBzu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
312c2dd9ec9e7f037995e1aaee2ab45515fc201cf3046cd0f64664db540db57e

Files

312c2dd9ec9e7f037995e1aaee2ab45515fc201cf3046cd0f64664db540db57e
.dll windows:5 windows x86 arch:x86

aeb8de01ad806bca4cd270295998e8aa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Leonard\Desktop\Main_EX301 Fenrir New\Main\DevGamesX\Main.pdb

Imports

kernel32

OpenMutexA
ReleaseMutex
CreateMutexA
GetModuleFileNameA
GetCurrentThread
GetCurrentProcessId
VirtualProtect
GetLastError
WritePrivateProfileStringA
GetCurrentThreadId
DisableThreadLibraryCalls
LoadLibraryA
ReadFile
GetFileSize
CreateFileA
QueryPerformanceCounter
GetModuleHandleA
GetProcAddress
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
InterlockedExchange
DecodePointer
EncodePointer
CreateFileMappingA
MapViewOfFile
LocalAlloc
LocalFree
UnmapViewOfFile
CreateFileW
SetLastError
SuspendThread
SetThreadContext
GetThreadContext
FlushInstructionCache
ResumeThread
InterlockedCompareExchange
VirtualAlloc
VirtualQuery
IsProcessorFeaturePresent
CloseHandle
TerminateProcess
SetThreadPriority
SetProcessWorkingSetSize
GetCurrentProcess
DeleteCriticalSection
InitializeCriticalSection
SetConsoleTextAttribute
WriteFile
GetStdHandle
GetLocalTime
GetPrivateProfileStringA
GetPrivateProfileIntA
CreateThread
ExitProcess
Sleep
GetTickCount

user32

LoadImageA
GetWindowLongA
ShowWindow
CreateWindowExA
DefWindowProcA
SetTimer
MoveWindow
SetWindowPos
AdjustWindowRect
SetWindowLongA
GetSystemMetrics
ChangeDisplaySettingsA
EnumDisplaySettingsA
PostMessageA
SetWindowsHookExA
GetAsyncKeyState
LoadIconA
SetWindowTextA
GetFocus
SendMessageA
MessageBoxA
wsprintfA
FindWindowA
CallNextHookEx
GetForegroundWindow
IsWindowVisible
CallWindowProcA

gdi32

CreateCompatibleDC
CreateFontA
DeleteDC
GetTextExtentPointA
GetTextExtentPoint32A
ExtTextOutA
GetObjectA
DeleteObject
SetMapMode
CreateDIBSection
SetTextColor
SetBkColor
SelectObject
GdiFlush
SetDIBits
SetTextAlign

advapi32

RegOpenKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA

shell32

Shell_NotifyIconA

msvcp100

?gbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
?_Orphan_all@_Container_base0@std@@QAEXXZ
?_Xlength_error@std@@YAXPBD@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Decref@facet@locale@std@@QAEPAV123@XZ
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?pptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?gptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?_Xout_of_range@std@@YAXPBD@Z
?_BADOFF@std@@3_JB
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Incref@facet@locale@std@@QAEXXZ
??Bid@locale@std@@QAEIXZ
?width@ios_base@std@@QBE_JXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEPAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flags@ios_base@std@@QBEHXZ
?uncaught_exception@std@@YA_NXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?width@ios_base@std@@QAE_J_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?setp@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD0@Z
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?epptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?egptr@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
?eback@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IBEPADXZ
??0facet@locale@std@@IAE@I@Z
??1facet@locale@std@@UAE@XZ
_Strcoll
_Strxfrm
?_Getcat@?$ctype@D@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
??1_Locinfo@std@@QAE@XZ
??0_Locinfo@std@@QAE@PBD@Z
?id@?$ctype@D@std@@2V0locale@2@A
?is@?$ctype@D@std@@QBE_NFD@Z
?_Xbad@tr1@std@@YAXW4error_type@regex_constants@12@@Z
?_Init@locale@std@@CAPAV_Locimp@12@XZ
?id@?$collate@D@std@@2V0locale@2@A
?_Getcoll@_Locinfo@std@@QBE?AU_Collvec@@XZ
?tolower@?$ctype@D@std@@QBEPBDPADPBD@Z
?tolower@?$ctype@D@std@@QBEDD@Z
?_Xmem@tr1@std@@YAXXZ
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?pbump@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXH@Z
?getloc@ios_base@std@@QBE?AVlocale@2@XZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z

ws2_32

ntohs
getpeername

winmm

timeGetTime

opengl32

glEnd
glVertex3d
glTexCoord2f
glBegin
glColor3d
glTexImage2D
glPixelStorei
glBindTexture
glGenTextures
glGetDoublev
glColor3f
glColor3fv
glDisable
glShadeModel
glClearColor
glFogfv
glFogf
glHint
glFogi
glEnable
glTexParameterf
glColor4f
glTexParameteri

psapi

EmptyWorkingSet

msvcr100

_amsg_exit
__CppXcptFilter
_except_handler4_common
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__clean_type_info_names_internal
_CxxThrowException
floor
_CIsin
_CIcos
_initterm_e
_initterm
_encoded_null
_malloc_crt
_onexit
memcpy
memset
__CxxFrameHandler3
ceil
srand
_stricmp
strncmp
printf
realloc
strchr
strtok
ldiv
sprintf_s
sscanf
_ctime64
sprintf
_lock
__dllonexit
fopen_s
malloc
fclose
fread
free
??3@YAXPAX@Z
vsprintf_s
strcpy_s
??2@YAPAXI@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABQBD@Z
??0exception@std@@QAE@ABV01@@Z
rand
_time64
_localtime64
memmove
??0bad_cast@std@@QAE@ABV01@@Z
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
fseek
ftell
rewind
fopen
??_V@YAXPAX@Z
_unlock

Exports

Exports

EntryProc

Sections

.text
Size: 225KB - Virtual size: 224KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.6MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aeb8de01ad806bca4cd270295998e8aa

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

advapi32

shell32

msvcp100

ws2_32

winmm

opengl32

psapi

msvcr100

Exports

Exports

Sections

.text Size: 225KB - Virtual size: 224KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 1.6MB - Virtual size: 1.7MB

.rsrc Size: 157KB - Virtual size: 156KB

.reloc Size: 38KB - Virtual size: 37KB

.text
Size: 225KB - Virtual size: 224KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 1.6MB - Virtual size: 1.7MB

.rsrc
Size: 157KB - Virtual size: 156KB

.reloc
Size: 38KB - Virtual size: 37KB