d69d63f1db5d53ce053fba781e6a809c621a37a000d9f62a6712b9afeb35b26e

Sharing

Copy URL

Twitter E-mail

General

Target

d69d63f1db5d53ce053fba781e6a809c621a37a000d9f62a6712b9afeb35b26e
Size

378KB
MD5

91c56b9a09b1b02cfc52d16bc87cf17d
SHA1

af0b597a31fcfab56a9935a0ecd17a465b21c431
SHA256

d69d63f1db5d53ce053fba781e6a809c621a37a000d9f62a6712b9afeb35b26e
SHA512

2bb0391950d4efe8f71e86752e3cc4623ddbcc384738a028e5663f467b71b50a0bb587d7e8be7e84120750a2d31882f030684d0bb16048f24b69e3d020569e45
SSDEEP

6144:LfRFkSERVbky7KFEecAl56jRKZ7TGQ8VDx9SNu9gYoFh6c1xAYt1Et6:LfQRVkFEvAl52KZ7yHd9Y62Fhd1xAYtL

Score

N/A

Malware Config

Signatures

Files

d69d63f1db5d53ce053fba781e6a809c621a37a000d9f62a6712b9afeb35b26e
.dll windows x86

c8c21b03999052720470b8ab2c8a7c3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dbghelp

SymSetSearchPath
SymSetOptions
SymRegisterCallback64
SymCleanup
SymFindFileInPath
SymInitialize
MakeSureDirectoryPathExists

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

WriteFile
VirtualAlloc
UnmapViewOfFile
UnlockFile
UnhandledExceptionFilter
SleepEx
SetUnhandledExceptionFilter
CloseHandle
CreateFileA
CreateRemoteThread
CreateTimerQueue
DeleteFileA
ExitProcess
ExpandEnvironmentStringsA
FindClose
FindFirstFileA
FindFirstFileExA
FindNextFileA
FlushViewOfFile
FreeLibrary
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileAttributesA
GetFileAttributesExA
GetFileSize
GetFullPathNameA
GetLastError
GetLogicalDrives
GetModuleHandleA
GetPrivateProfileSectionA
GetPrivateProfileStringA
GetProcAddress
GetProcessAffinityMask
GetProcessHeap
GetProcessPriorityBoost
GetSystemTime
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTickCount
HeapAlloc
HeapFree
InterlockedCompareExchange
InterlockedExchange
LoadLibraryA
LocalFree
MapViewOfFile
OpenProcess
OutputDebugStringA
QueryPerformanceCounter
ReadFile
ReleaseMutex
RemoveDirectoryA
RtlUnwind
SetCurrentDirectoryA
SetEndOfFile
SetErrorMode
SetFileAttributesA
SetFilePointer
SetLastError

msvcrt

_amsg_exit
_cexit
_controlfp
_ctime64
_errno
_exit
_futime64
_getmbcp
_initterm
_iob
_ismbblead
_msize
_wstat
atoi
cos
__p__fmode
fgets
fopen
fprintf
free
fseek
getenv
isdigit
isspace
memcpy
memset
printf
puts
rand
realloc
srand
strchr
strcmp
strncmp
strstr
time
tolower
__p__commode
__getmainargs
_XcptFilter
fclose

advapi32

OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges

Exports

Exports

CreateAdapterConfigurationPort
CreateSphere
CreateVolumeTextureFromFileA
FrameFind
GetLDAPTypeName
GetRTFOptions
PlaneIntersectLine
Vec3TransformArray

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8c21b03999052720470b8ab2c8a7c3d

Headers

File Characteristics

Imports

dbghelp

version

kernel32

msvcrt

advapi32

Exports

Exports

Sections

.text Size: 69KB - Virtual size: 68KB

.rdata Size: 171KB - Virtual size: 170KB

.data Size: 69KB - Virtual size: 69KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 69KB - Virtual size: 68KB

.rdata
Size: 171KB - Virtual size: 170KB

.data
Size: 69KB - Virtual size: 69KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 3KB - Virtual size: 3KB