257543d0c07d06010ad55708c54f487fddba66b2bae62dd1a5cd7a2eeb248f89

Sharing

Copy URL

Twitter E-mail

General

Target

257543d0c07d06010ad55708c54f487fddba66b2bae62dd1a5cd7a2eeb248f89
Size

422KB
MD5

4e7c757dba48c202b77dabd5d3a13efb
SHA1

277913515838073f56456cd5a0477114f411af02
SHA256

257543d0c07d06010ad55708c54f487fddba66b2bae62dd1a5cd7a2eeb248f89
SHA512

81f626b526badfcba28c6683cc83571c812042fc192e4bf5155cd56d45b20b5afc173aa8c026a2764f4364c2d2e85ff20f587464a25284ca4a6cbd8f324aee60
SSDEEP

6144:yjjtNiL7cISgNU9LmTA9w/zfLCO0qnK+F/wgIHlAQ7OyepqqcR4FdXdl:yjINQLmTAGbLCO0ET/wgIROy2e4btl

Score

N/A

Malware Config

Signatures

Files

257543d0c07d06010ad55708c54f487fddba66b2bae62dd1a5cd7a2eeb248f89
.dll windows x86

d557fc4ec91442ffa3c3b023e438cf1e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyExA
RegOpenKeyExA
SystemFunction026
RegCloseKey

gdi32

CreateCompatibleDC
CreateDIBSection
CreateFontIndirectA
CreateFontIndirectW
DeleteDC
DeleteObject
ExtTextOutA
ExtTextOutW
GetAspectRatioFilterEx
GetCharacterPlacementA
GetCharacterPlacementW
GetDeviceCaps
GetFontLanguageInfo
GetGlyphOutlineA
GetTextMetricsW
IntersectClipRect
MoveToEx
SelectObject
SetBkColor
SetBkMode
SetICMMode
SetTextColor
StrokeAndFillPath
TranslateCharsetInfo

kernel32

CloseHandle
CreateFileA
CreateMutexA
CreateThread
DebugBreak
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FindResourceW
FreeLibrary
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileSize
GetFileSizeEx
GetFullPathNameW
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetProcessPriorityBoost
GetSystemTimeAsFileTime
GetTickCount
GetVersion
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadResource
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
ReleaseMutex
RtlUnwind
SetUnhandledExceptionFilter
SizeofResource
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
_lcreat

ole32

CreateStreamOnHGlobal

msvcrt

_lock
tolower
_CIacos
_CIasin
_CIatan2
_CIcos
_CIlog
_CIsin
_CIsqrt
_CxxThrowException
_Gettnames
__CxxFrameHandler
__dllonexit
__p__osver
_amsg_exit
_controlfp
_finite
_initterm
_isnan
_stricmp
_strncoll
_unlock
_vsnwprintf
_wtoi
floor
free
iswdigit
iswpunct
iswspace
malloc
memcpy
memmove
memset
qsort
sqrt
strxfrm

Exports

Exports

AbandonSearch
ComputeTangentFrame
EnumClasses
LoadBitmapResize
SetMarkers
SetObjectAttributes
WriteClassDefinition

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 238KB - Virtual size: 238KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d557fc4ec91442ffa3c3b023e438cf1e

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 63KB - Virtual size: 62KB

.rdata Size: 238KB - Virtual size: 238KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 47KB - Virtual size: 46KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 63KB - Virtual size: 62KB

.rdata
Size: 238KB - Virtual size: 238KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 47KB - Virtual size: 46KB

.reloc
Size: 3KB - Virtual size: 3KB