b15fb90175b2e28bd54ce2213ddd5efbdfc3c927f31de56dd0df205db8db6235

Sharing

Copy URL Twitter E-mail

General

Target

b15fb90175b2e28bd54ce2213ddd5efbdfc3c927f31de56dd0df205db8db6235
Size

369KB
MD5

a20a7a5c9a4717faa549cab5aad671b9
SHA1

4978cc91d50b72e41a98665f8a827aaf22a58cb5
SHA256

b15fb90175b2e28bd54ce2213ddd5efbdfc3c927f31de56dd0df205db8db6235
SHA512

4b749e4fb0612252bfda93d4ae108f39e0d0a452c335cc58d64c01724c25a0fce70316dcfe2854234009ad4d7565c1af2ac7e9fa91107bbeb2134a6757efb5b0
SSDEEP

6144:kPO/DwZnyGnWJZRK1oHHnipP5e6YL3bzxr2xmNCfZlRg5BmpCImRbOxrWbtoT:kPO/D0nTnWfRK1/pP5SLrzR2xmNCRQKN

Score

N/A

Malware Config

Signatures

Files

b15fb90175b2e28bd54ce2213ddd5efbdfc3c927f31de56dd0df205db8db6235
.dll windows x86

2e27804bb011e21afecf47c4058d05d3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dbghelp

SymSetSearchPath
SymSetOptions
SymRegisterCallback64
SymInitialize
SymFindFileInPath
SymCleanup
MakeSureDirectoryPathExists

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken

kernel32

UnhandledExceptionFilter
TerminateProcess
Sleep
UnmapViewOfFile
SetLastError
SetFilePointer
SetFileAttributesA
SetErrorMode
VirtualAlloc
WriteFile
SetUnhandledExceptionFilter
ReadFile
CloseHandle
CopyFileA
CreateFileA
CreateFileMappingA
DeleteFileA
ExitProcess
ExpandEnvironmentStringsA
FindClose
FindFirstFileA
FindFirstFileExA
FindNextFileA
FlushViewOfFile
FreeLibrary
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileAttributesA
GetFileAttributesExA
GetFileInformationByHandle
GetFileSize
GetFullPathNameA
GetLastError
GetModuleHandleA
GetPrivateProfileSectionA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetSystemTimeAsFileTime
GetTempFileNameA
GetTempPathA
GetTickCount
HeapAlloc
HeapFree
InterlockedCompareExchange
InterlockedExchange
LoadLibraryA
LocalAlloc
LocalFree
MapViewOfFile
OpenProcess
OutputDebugStringA
QueryPerformanceCounter
SetEndOfFile
RemoveDirectoryA
RtlUnwind
SetCurrentDirectoryA

msvcrt

_XcptFilter
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_cexit
_controlfp
_errno
_exit
_initterm
_iob
_ismbblead
_msize
_stricmp
_vsnprintf
atoi
exit
fclose
fgets
fopen
fprintf
free
fseek
getenv
isdigit
isspace
malloc
memcpy
memset
printf
puts
rand
realloc
srand
strchr
strncmp
strrchr
strstr
time
tolower

Exports

Exports

ComputeTangentFrameEx
CreateTraceInstanceId
LoadBitmapMemory
TypeToAdsTypeGeneralizedTime
Vec2TransformCoord

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e27804bb011e21afecf47c4058d05d3

Headers

File Characteristics

Imports

dbghelp

version

advapi32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 64KB

.rdata Size: 169KB - Virtual size: 169KB

.data Size: 68KB - Virtual size: 68KB

.rsrc Size: 63KB - Virtual size: 62KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 64KB - Virtual size: 64KB

.rdata
Size: 169KB - Virtual size: 169KB

.data
Size: 68KB - Virtual size: 68KB

.rsrc
Size: 63KB - Virtual size: 62KB

.reloc
Size: 3KB - Virtual size: 3KB