0579fd372a2c45553da7e0d6d5fd8351db87a75c39ddf4f8ed6dd2b2928731c6

Sharing

Copy URL Twitter E-mail

General

Target

0579fd372a2c45553da7e0d6d5fd8351db87a75c39ddf4f8ed6dd2b2928731c6
Size

1016KB
MD5

42bc06e7dbdf91d82b41c21b40009170
SHA1

bdae97826a633faebe292d3e968e3d5b048b3453
SHA256

0579fd372a2c45553da7e0d6d5fd8351db87a75c39ddf4f8ed6dd2b2928731c6
SHA512

0932ddea279ee891ba61c0117ab2c6d2012907aba4aa14c5ed63ab0e74bd2c049f9e6b777ccc80bda163b1294e98fd1ef396a1773c89f05ea63fb073106286ca
SSDEEP

12288:qB+e3zS1M4XPtY5IUXToS7jWpzUcJFy17Lx0oimNLvb+HE8SHs3dv/T58kr5XP3L:qB++S1vE7jWpzvy17LLTMy8N82EM

Score

N/A

Malware Config

Signatures

Files

0579fd372a2c45553da7e0d6d5fd8351db87a75c39ddf4f8ed6dd2b2928731c6
.dll windows x86

bc46cd4481d14b29e9b080ff91d2f879

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GlobalMemoryStatus
GetCurrentThreadId
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
RaiseException
GetLastError
lstrlenA
InterlockedDecrement
OutputDebugStringA
GetModuleFileNameA
GetStdHandle
WriteFile
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
ExitProcess
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
GetCommandLineA
VirtualQuery
IsProcessorFeaturePresent
CreateThread
GetThreadLocale
ResumeThread
WaitForMultipleObjects
GetExitCodeThread
GetSystemInfo
CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
SetFilePointer
GetLocaleInfoA
ReadFile
InitializeCriticalSection
LoadLibraryA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
DeleteCriticalSection
GetStartupInfoA
GetFileType
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
CloseHandle
GetCurrentProcessId
GetModuleHandleA
GetProcAddress
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
TlsGetValue

user32

GetClientRect
GetParent
SendMessageA
GetWindowLongA
EnumChildWindows
DefWindowProcA
SetWindowLongA
CreateWindowExA
RegisterClassA
UnregisterClassA
DestroyWindow
EnumWindows
IsIconic
GetMonitorInfoA

ole32

CoCreateInstance
CoUninitialize
CoInitializeSecurity
CoInitialize
CoSetProxyBlanket

oleaut32

SysAllocString
SysFreeString
VariantClear
VariantInit

vstdlib

KeyValuesSystem

tier0

_AssertValidReadPtr
_AssertValidWritePtr
AssertValidStringPtr
LoggingSystem_LogAssert
CallAssertFailedNotifyFunc
ShouldUseNewAssertDialog
DoNewAssertDialog
_ExitOnFatalAssert
LoggingSystem_RegisterLoggingChannel
?DevWarning@@YAXPBDZZ
?UnlockRead@CThreadSpinRWLock@@QAEXXZ
GetCPUInformation
LoggingSystem_IsChannelEnabled
LoggingSystem_Log
?Lock@CThreadFastMutex@@ACEXII@Z
?DevMsg@@YAXPBDZZ
ThreadInMainThread
Plat_FloatTime
Plat_DebugString
Plat_GetPagedPoolInfo
Error
?ExitScope@CVProfile@@QAEXXZ
?EnterScope@CVProfile@@QAEXPBDH0_NH@Z
g_VProfCurrentProfile
?FindOrCreateCounter@CVProfile@@QAEPAHPBDW4CounterGroup_t@@@Z
Msg
g_pMemAlloc
CommandLine
Warning
?LockForRead@CThreadSpinRWLock@@QAEXXZ
?UnlockWrite@CThreadSpinRWLock@@QAEXXZ
?LockForWrite@CThreadSpinRWLock@@QAEXXZ
??0CThreadSpinRWLock@@QAE@XZ
DevMsg

d3d10

D3D10CreateDeviceAndSwapChain
D3D10ReflectShader

d3d9

Direct3DCreate9
D3DPERF_SetOptions

d3dx10_33

D3DX10CompileFromMemory
D3DXPlaneTransform
D3DXMatrixPerspectiveOffCenterRH
D3DXVec4Transform
D3DXMatrixPerspectiveRH
D3DXMatrixOrthoOffCenterRH
D3DXPlaneNormalize
D3DXMatrixInverse
D3DXMatrixMultiply
D3DXVec3TransformCoord
D3DXCreateMatrixStack
D3DXMatrixTranspose
D3DXMatrixTranslation
D3DXVec4Normalize

d3dx9_33

D3DXCompileShader
D3DXGetShaderVersion

dxgi

CreateDXGIFactory

Exports

Exports

CreateInterface

Sections

.text
Size: 488KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 396KB - Virtual size: 395KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bc46cd4481d14b29e9b080ff91d2f879

Headers

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

vstdlib

tier0

d3d10

d3d9

d3dx10_33

d3dx9_33

dxgi

Exports

Exports

Sections

.text Size: 488KB - Virtual size: 484KB

.rdata Size: 396KB - Virtual size: 395KB

.data Size: 24KB - Virtual size: 243KB

.reloc Size: 44KB - Virtual size: 40KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 488KB - Virtual size: 484KB

.rdata
Size: 396KB - Virtual size: 395KB

.data
Size: 24KB - Virtual size: 243KB

.reloc
Size: 44KB - Virtual size: 40KB

.rmnet
Size: 60KB - Virtual size: 60KB