326410e0b4976628b2f2355afd12cd5e4b1581b4cfa3d876e6f096576a80a951

Sharing

Copy URL Twitter E-mail

General

Target

326410e0b4976628b2f2355afd12cd5e4b1581b4cfa3d876e6f096576a80a951
Size

433KB
MD5

43eb861e6c56d9b5a0b3b05b3f416a4d
SHA1

7c68be1bb321285c5cd06386c1db770b80b1de5f
SHA256

326410e0b4976628b2f2355afd12cd5e4b1581b4cfa3d876e6f096576a80a951
SHA512

049c4f671a54e184dd706c8cc5bf0eb25650609b6fee07a6180ce8e4fa0c451063afd0e683a2a406b79d5f86852c73c80d6457c9ae859ec4add711e5c5065f0f
SSDEEP

6144:N532djZaVHiMRFBus/6kU5lNAAiGskutUu8AoEJFpa8+RwwnWQqvGQVuSf0:N5YgVxDVmlaG01oEaWQ0GQgS0

Score

N/A

Malware Config

Signatures

Files

326410e0b4976628b2f2355afd12cd5e4b1581b4cfa3d876e6f096576a80a951
.dll windows x86

1266ee042362f3b78ce18f01cd0c934f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

tolower
memmove
memcpy
malloc
iswspace
iswpunct
iswprint
iswalpha
free
floor
_wfindnexti64
_vsnprintf
_unlock
_j0
_isnan
_finite
_creat
_controlfp
_atoi64
_amsg_exit
__p__winver
__dllonexit
_XcptFilter
_Strftime
_CxxThrowException
_CIcos
_CIatan
_CIasin
_CIacos

dinput

DirectInputCreateA

kernel32

VirtualAlloc
VerSetConditionMask
UnhandledExceptionFilter
TerminateProcess
WaitForSingleObject
WriteTapemark
CloseHandle
CreateMutexA
CreateThread
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FreeLibrary
GetCommProperties
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFullPathNameW
GetMailslotInfo
GetModuleFileNameA
GetModuleHandleA
GetProcessAffinityMask
SizeofResource
GetSystemTimeAsFileTime
GetTickCount
GetVersion
InterlockedExchange
InterlockedIncrement
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LockResource
MultiByteToWideChar
Process32Next
QueryPerformanceCounter
ReadFile
RtlUnwind
SetThreadContext
SetThreadIdealProcessor
GetProcessPriorityBoost

advapi32

RegCloseKey
RegEnumKeyExA
RegQueryValueExA
RemoveTraceCallback

gdi32

GetObjectA
GetGlyphOutlineA
GetFontLanguageInfo
ExtTextOutW
ExtTextOutA
GetTextMetricsA
DeleteDC
CreateFontIndirectW
CreateDIBSection
CreateCompatibleDC
CloseFigure
SelectObject
SetBkColor
SetBkMode
SetSystemPaletteUse
SetTextAlign
DeleteObject

ole32

CreateStreamOnHGlobal

Exports

Exports

Number_Multiply
ReleaseLock
WithFilename
convert_from_time_t
set_sRGB
set_tRNS

Sections

.text
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 265KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1266ee042362f3b78ce18f01cd0c934f

Headers

File Characteristics

Imports

msvcrt

dinput

kernel32

advapi32

gdi32

ole32

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 76KB

.rdata Size: 265KB - Virtual size: 265KB

.data Size: 69KB - Virtual size: 71KB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 76KB - Virtual size: 76KB

.rdata
Size: 265KB - Virtual size: 265KB

.data
Size: 69KB - Virtual size: 71KB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 4KB - Virtual size: 4KB