dfb7361ae60dd2f3aa90f96f0265051323a64aaead4f39517a989dbdb51b3955

Sharing

Copy URL

Twitter E-mail

General

Target

dfb7361ae60dd2f3aa90f96f0265051323a64aaead4f39517a989dbdb51b3955
Size

813KB
MD5

66403a32bef181a713074f1b8d3f74e3
SHA1

5859c37c1126cc0ebaadfb508a58d39f40023bb5
SHA256

dfb7361ae60dd2f3aa90f96f0265051323a64aaead4f39517a989dbdb51b3955
SHA512

19c4bf3df8d5c8c256768514f737ab81d21b01a9283b591ed60cca636ca1823b660c316b82ec219e2a230693b55bb1ceb4e92b0bd5a0ec5c802123deba146295
SSDEEP

24576:G1XHsFsbCSxWTVwejhDebkRMihC7cTWaNkqg24:hVeVsWaa124

Score

N/A

Malware Config

Signatures

Files

dfb7361ae60dd2f3aa90f96f0265051323a64aaead4f39517a989dbdb51b3955
.exe windows x86

e09f65722aa92283066f4facf97dbc96

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSACleanup
WSAStartup

kernel32

GetEnvironmentVariableA
LocalFree
FormatMessageA
GetLastError
TerminateProcess
GetCurrentProcess
OutputDebugStringA
WaitForSingleObject
CreateProcessA
Sleep
HeapAlloc
GetProcessHeap
CreateDirectoryA
FindNextFileA
FindFirstFileA
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetModuleHandleA
GetModuleFileNameA
GetCPInfo
VirtualQuery
ReadFile
GetLocaleInfoW
FlushFileBuffers
GetExitCodeProcess
CompareStringW
CompareStringA
LoadLibraryA
GetTimeZoneInformation
SetEndOfFile
InitializeCriticalSection
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RtlUnwind
ExitProcess
SetEnvironmentVariableW
RaiseException
IsValidCodePage
GetOEMCP
MultiByteToWideChar
WideCharToMultiByte
GetCurrentThreadId
GetProcAddress
LoadLibraryExA
FreeLibrary
GetCommandLineA
CloseHandle
CreateFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
WriteFile
GetConsoleCP
GetConsoleMode
GetFileAttributesA
GetFullPathNameA
SetEnvironmentVariableA
GetCurrentDirectoryA
SetCurrentDirectoryA
DeleteFileA
SetFileAttributesA
HeapFree
GetVersionExA
GetStartupInfoA
InterlockedIncrement
InterlockedDecrement
SetStdHandle
EnterCriticalSection
LeaveCriticalSection
GetFileType
SetHandleCount
GetStdHandle
DeleteCriticalSection
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetFilePointer
GetACP

user32

SendMessageTimeoutA
wsprintfA
MessageBoxA
DestroyWindow
UnregisterClassA
RegisterClassA
CreateWindowExA
DefWindowProcA

advapi32

RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

tier0

??0CThreadSpinRWLock@@QAE@XZ
?LockForWrite@CThreadSpinRWLock@@QAEXXZ
?UnlockWrite@CThreadSpinRWLock@@QAEXXZ
?LockForRead@CThreadSpinRWLock@@QAEXXZ
?UnlockRead@CThreadSpinRWLock@@QAEXXZ
GetThreadedLoadLibraryFunc
CreateSimpleThread
ReleaseThreadHandle
Plat_IsInDebugSession
ThreadWaitForObjects
?DevMsg@@YAXPBDZZ
DevMsg
_AssertValidReadPtr
_AssertValidWritePtr
AssertValidStringPtr
Msg
g_pVCR
SpewOutputFunc
Warning
CommandLine_Tier0
Error
g_pMemAlloc
Plat_DebugString

steam_api

SteamAPI_InitSafe
SteamAPI_SetTryCatchCallbacks
SteamClient
SteamAPI_GetHSteamUser
SteamAPI_GetHSteamPipe

vstdlib

VStdLib_GetICVarFactory
KeyValuesSystem

Exports

Exports

CreateInterface
cvar

Sections

.text
Size: 528KB - Virtual size: 524KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 132KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e09f65722aa92283066f4facf97dbc96

Headers

File Characteristics

Imports

ws2_32

kernel32

user32

advapi32

tier0

steam_api

vstdlib

Exports

Exports

Sections

.text Size: 528KB - Virtual size: 524KB

.rdata Size: 132KB - Virtual size: 130KB

.data Size: 28KB - Virtual size: 70KB

.rsrc Size: 116KB - Virtual size: 116KB

.text
Size: 528KB - Virtual size: 524KB

.rdata
Size: 132KB - Virtual size: 130KB

.data
Size: 28KB - Virtual size: 70KB

.rsrc
Size: 116KB - Virtual size: 116KB