3e1ec3786d1c2ed8e5cd483463b6a5eab819733473597178ecbbb58ca65328db

Sharing

Copy URL

Twitter E-mail

General

Target

3e1ec3786d1c2ed8e5cd483463b6a5eab819733473597178ecbbb58ca65328db
Size

219KB
MD5

f15bd0bbefb981f5156278229de01f0e
SHA1

48a9049df918049a8efe18c19d4244d73037df02
SHA256

3e1ec3786d1c2ed8e5cd483463b6a5eab819733473597178ecbbb58ca65328db
SHA512

5e496ff96b6a6a05d737886a8c4e8a13981fffdae2e5ed6d89bc40626182f825b4c61e4b5e1ad79d0107a6adffa761186c75030a7db7fd6c811929b6473537b1
SSDEEP

3072:SFEVPRXOtcsq7+yidtPgZOAro8M+LyRujeG+9zLBa:SFQPRXNsTQZFk7PFhLBa

Score

N/A

Malware Config

Signatures

Files

3e1ec3786d1c2ed8e5cd483463b6a5eab819733473597178ecbbb58ca65328db
.dll windows x86

55d75bbee912011c7d610b1c96fb5863

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

d3dx9_43

D3DXMatrixMultiply
D3DXCreateFontA
D3DXLoadSurfaceFromSurface
D3DXCreateSprite
D3DXVec3Project
D3DXMatrixRotationYawPitchRoll
D3DXCreateLine

kernel32

LoadLibraryW
OutputDebugStringW
VirtualQuery
GetCurrentProcess
Process32First
GetTickCount
IsBadReadPtr
OpenProcess
Sleep
FreeConsole
ReadProcessMemory
K32GetModuleInformation
SetConsoleTitleA
Module32First
GetStdHandle
FreeLibraryAndExitThread
ReadConsoleW
GetLocalTime
WriteConsoleA
Process32Next
GetModuleFileNameA
GetModuleHandleA
VirtualProtect
CreateToolhelp32Snapshot
CloseHandle
WriteProcessMemory
CreateThread
LoadLibraryExW
SetStdHandle
WriteConsoleW
CreateFileW
VirtualProtectEx
GetLastError
InterlockedIncrement
InterlockedDecrement
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
WideCharToMultiByte
GetLocaleInfoEx
MultiByteToWideChar
GetStringTypeW
SetLastError
FlushInstructionCache
GetProcAddress
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetCurrentThreadId
RaiseException
RtlUnwind
InitializeCriticalSectionAndSpinCount
GetCPInfo
IsProcessorFeaturePresent
IsDebuggerPresent
GetFileType
InitOnceExecuteOnce
GetStartupInfoW
GetProcessHeap
ExitProcess
GetModuleHandleExW
WriteFile
GetModuleFileNameW
ReadFile
SetFilePointerEx
FlushFileBuffers
GetConsoleCP
GetConsoleMode
HeapSize
IsValidCodePage
GetACP
GetOEMCP
QueryPerformanceCounter
GetTickCount64
GetEnvironmentStringsW
FreeEnvironmentStringsW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
TerminateProcess
GetModuleHandleW
GetUserDefaultLocaleName
LCMapStringEx
IsValidLocaleName
EnumSystemLocalesEx
HeapReAlloc

user32

GetAsyncKeyState
MessageBoxA

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55d75bbee912011c7d610b1c96fb5863

Headers

DLL Characteristics

File Characteristics

Imports

d3dx9_43

kernel32

user32

Sections

.text Size: 131KB - Virtual size: 131KB

.rdata Size: 43KB - Virtual size: 43KB

.data Size: 7KB - Virtual size: 16KB

.reloc Size: 36KB - Virtual size: 35KB

.text
Size: 131KB - Virtual size: 131KB

.rdata
Size: 43KB - Virtual size: 43KB

.data
Size: 7KB - Virtual size: 16KB

.reloc
Size: 36KB - Virtual size: 35KB