30d6ebfc8aea3374777938fe510b71d456171d43b72ceb756816207a40aec596

Sharing

Copy URL Twitter E-mail

General

Target

30d6ebfc8aea3374777938fe510b71d456171d43b72ceb756816207a40aec596
Size

243KB
MD5

58934c2f7bc5fd13a2c23e994f1bc993
SHA1

828a04c6ed3c6e01ed2966264583402b1e8133ec
SHA256

30d6ebfc8aea3374777938fe510b71d456171d43b72ceb756816207a40aec596
SHA512

dc8b4092235addffd3eb1b0a8b0f898470eaf975d7e542c0f739409b5f5972c1ba35202c4107cf0af34a01028064e269e7d094b41aa482bcbfe984961c8f1b27
SSDEEP

3072:D0TwqtUNyNNzROfCgG610BRPr1Rr20A7ljMzi5SjZQUdNO77DwOKJ:g7tU0fzRzgGhjPjrY7ljMz0+aUdxJ

Score

N/A

Malware Config

Signatures

Files

30d6ebfc8aea3374777938fe510b71d456171d43b72ceb756816207a40aec596
.dll windows x86

63bf72c3a562f262436fad82879ffccd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

vclmi

??0Bitmap@@QAE@XZ
??0Bitmap@@QAE@ABVSize@@GPBVBitmapPalette@@@Z
??4Bitmap@@QAEAAV0@ABV0@@Z
??1Bitmap@@QAE@XZ
?AcquireWriteAccess@Bitmap@@QAEPAVBitmapWriteAccess@@XZ
?ReleaseAccess@Bitmap@@QAEXPAVBitmapReadAccess@@@Z
??0Graphic@@QAE@ABVBitmap@@@Z
??4Graphic@@QAEAAV0@ABV0@@Z
??1Graphic@@UAE@XZ
?SetPaletteEntryCount@BitmapWriteAccess@@QAEXG@Z
?SetPaletteColor@BitmapWriteAccess@@QAEXGABVBitmapColor@@@Z
?SetPixel@BitmapWriteAccess@@QAEXJJABVBitmapColor@@@Z

tlmi

?GetError@SvStream@@QBEKXZ
?SetNumberFormatInt@SvStream@@QAEXG@Z
??5SvStream@@QAEAAV0@AAE@Z
??5SvStream@@QAEAAV0@AAG@Z
?Seek@SvStream@@QAEKK@Z
??5SvStream@@QAEAAV0@AAK@Z
?Read@SvStream@@QAEKPAXK@Z
??5SvStream@@QAEAAV0@AAD@Z
?SeekRel@SvStream@@QAEKJ@Z

msvcr90

_crt_debugger_hook
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
__clean_type_info_names_internal
??3@YAXPAX@Z
??_V@YAXPAX@Z
??2@YAPAXI@Z
??_U@YAPAXI@Z
_encode_pointer
_malloc_crt
free
_encoded_null
_decode_pointer
_initterm
_initterm_e
_amsg_exit
_adjust_fdiv
__CppXcptFilter

kernel32

IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DisableThreadLibraryCalls
InterlockedCompareExchange
Sleep
InterlockedExchange

Exports

Exports

GetVersionInfo
GraphicImport

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 924B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 560B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 229KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

63bf72c3a562f262436fad82879ffccd

Headers

DLL Characteristics

File Characteristics

Imports

vclmi

tlmi

msvcr90

kernel32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 924B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 560B

.text Size: 229KB - Virtual size: 232KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 924B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 560B

.text
Size: 229KB - Virtual size: 232KB