827e327904116cd36810c1b6c10df19bf343ad81f844f623423e84a44ee9a4cc

Sharing

Copy URL Twitter E-mail

General

Target

827e327904116cd36810c1b6c10df19bf343ad81f844f623423e84a44ee9a4cc
Size

348KB
MD5

6af549e369fdd6619ced501a838950b3
SHA1

cf68dda6cc505aef5eefc0dba579ee41b0b9bdf6
SHA256

827e327904116cd36810c1b6c10df19bf343ad81f844f623423e84a44ee9a4cc
SHA512

1e3beff7c3f4397fd8bba0664dda48974d517abea8c9fc6a3d56b9d0ecf02875f0f04ebc247519e4cf8c4e74eee8d3a17069d645ff79f3ad7ee42daaaa225bc1
SSDEEP

6144:IDZt3bV2VKWQzw7majkgcZN2YARkp3H7V3TMBjA0Skj5:ID7rvznokiYARYpgNA765

Score

N/A

Malware Config

Signatures

Files

827e327904116cd36810c1b6c10df19bf343ad81f844f623423e84a44ee9a4cc
.dll windows x86

3e55671e4d808232a39a15f91496c4da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
LoadLibraryA
InitializeCriticalSection
Sleep
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize
GetLocaleInfoA
WideCharToMultiByte
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
CompareStringA
MultiByteToWideChar
SetEnvironmentVariableA
DeviceIoControl
CloseHandle
CreateFileW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
ReadFile
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
CreateFileA
FreeEnvironmentStringsA
GetModuleFileNameW
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
GetProcessHeap
HeapAlloc
GetVersionExA
CompareStringW
RaiseException
VirtualQuery
GetFileAttributesA
CreateFileMappingA
OutputDebugStringW
UnmapViewOfFile
MapViewOfFile
HeapFree

advapi32

InitializeSecurityDescriptor
SetSecurityDescriptorDacl

Exports

Exports

AddPicture
CloseDevice
D3D10GetDevice
D3D9SetDirect3DDevice
EnumMCCustomSetNumberNext
FreeHost
GLUnmapBufferObject
GetChannelDesc
GetDeviceCount
GetExposureCompCount
GetImageDataInfo
GetMCCustomCapCount
ThreadExit

Sections

.text
Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 107KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 161KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e55671e4d808232a39a15f91496c4da

Headers

File Characteristics

Imports

kernel32

advapi32

Exports

Exports

Sections

.text Size: 73KB - Virtual size: 76KB

.rdata Size: 107KB - Virtual size: 108KB

.data Size: 161KB - Virtual size: 164KB

.rsrc Size: 4KB - Virtual size: 8KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 73KB - Virtual size: 76KB

.rdata
Size: 107KB - Virtual size: 108KB

.data
Size: 161KB - Virtual size: 164KB

.rsrc
Size: 4KB - Virtual size: 8KB

.reloc
Size: 1024B - Virtual size: 4KB