f2abe6f94c33fd3b59942f34011e239daddf4a140a81b704cf2e3a71cbcd654f

Sharing

Copy URL

Twitter E-mail

General

Target

f2abe6f94c33fd3b59942f34011e239daddf4a140a81b704cf2e3a71cbcd654f
Size

307KB
MD5

a1d6a5c2a26896bbc4c0f45f10375e8b
SHA1

b2be29a8dc9e3a02c4e596602e1eebde282a0680
SHA256

f2abe6f94c33fd3b59942f34011e239daddf4a140a81b704cf2e3a71cbcd654f
SHA512

91012de22c64d91aefcbda9881504f0bff54e9fe94d1e2a87d3200fd7663409330aeee92a2be610af458fb3ace96cb284034bf5fb11e7e507cce0fc12a7362e3
SSDEEP

6144:JfzkgNzzV95cAr8YViFa4R/q4YL6x/eUIvCbdHyq3MGhPfGOuzAO/v7bd:5LNzR/5kRyCEic6PfvuzpPd

Score

N/A

Malware Config

Signatures

Files

f2abe6f94c33fd3b59942f34011e239daddf4a140a81b704cf2e3a71cbcd654f
.dll windows x86

cb51c6a219e45581ee5e473c9b370e3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantInit
VariantClear
VarUI4FromStr
SysStringLen
SysStringByteLen
SysFreeString
SysAllocStringLen
SysAllocString
OleCreateFontIndirect
LoadTypeLi
LoadRegTypeLi

kernel32

GlobalHandle
GlobalLock
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
GlobalFree
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
SetLastError
SizeofResource
VirtualAlloc
VirtualFree
VirtualProtect
WideCharToMultiByte
lstrcmpA
lstrcmpiA
lstrcpynA
lstrlenA
lstrlenW
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetProcessPriorityBoost
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetACP
FreeLibrary
FlushInstructionCache
DeleteCriticalSection
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
LockResource

user32

PtInRect
RedrawWindow
RegisterClassExA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
SendMessageA
SetCapture
SetCursor
SetFocus
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
UnregisterClassA
wsprintfA
LoadStringA
LoadCursorA
IsWindow
IsChild
InvalidateRgn
InvalidateRect
MessageBoxA
GetWindowTextA
GetWindowRect
GetWindowLongA
GetWindow
GetSysColor
GetParent
GetFocus
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetCursorPos
GetClientRect
GetClassNameA
GetClassInfoExA
GetActiveWindow
FillRect
EndPaint
EndDialog
EnableWindow
DialogBoxIndirectParamA
DestroyWindow
DestroyAcceleratorTable
DefWindowProcA
CreateWindowExA
GetWindowTextLengthA
MapDialogRect
BeginPaint
CallWindowProcA
CharNextA
CreateAcceleratorTableA
GetDC

gdi32

SetBkMode
SetGraphicsMode
SelectObject
SetViewportOrgEx
SetWindowOrgEx
SaveDC
RestoreDC
ModifyWorldTransform
GetStockObject
GetObjectA
GetDeviceCaps
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
SetTextColor
BitBlt

advapi32

RegQueryInfoKeyA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA

shell32

ShellExecuteA

ole32

CoTaskMemFree
CoTaskMemRealloc
CreateStreamOnHGlobal
OleInitialize
OleLockRunning
OleUninitialize
StringFromGUID2
CoGetClassObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc

comctl32

ord17

ddraw

DDInternalLock
GetSurfaceFromDC

Exports

Exports

CheckVolumeTextureRequirements
CreatePatchMesh
GetImageInfoFromFileInMemory
GetImageInfoFromResourceW
LoadLayer
QuaternionSquad
Vec2TransformNormalArray

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb51c6a219e45581ee5e473c9b370e3a

Headers

DLL Characteristics

File Characteristics

Imports

oleaut32

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

ddraw

Exports

Exports

Sections

.text Size: 57KB - Virtual size: 57KB

.rdata Size: 116KB - Virtual size: 116KB

.data Size: 30KB - Virtual size: 30KB

.rsrc Size: 98KB - Virtual size: 98KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 57KB - Virtual size: 57KB

.rdata
Size: 116KB - Virtual size: 116KB

.data
Size: 30KB - Virtual size: 30KB

.rsrc
Size: 98KB - Virtual size: 98KB

.reloc
Size: 3KB - Virtual size: 3KB