85ee355b659a73fb1712d45de29267767fc0989eaf15e6db2e3061fa946bf0e1

Sharing

Copy URL

Twitter E-mail

General

Target

85ee355b659a73fb1712d45de29267767fc0989eaf15e6db2e3061fa946bf0e1
Size

144KB
MD5

592e2b067f93aea0a7b12ae4dcfab22d
SHA1

14c6872e4155459ea3d506864f4a0dbbd8a15aa8
SHA256

85ee355b659a73fb1712d45de29267767fc0989eaf15e6db2e3061fa946bf0e1
SHA512

ad4cc0a090ed9e30d99d03fbf65464dc28b90f69ae3c46c482bbeb200e96bcf9a8a60291b3c7b27582ea53aa52c1cb86f7aa583aedcd8b01f18ad103d311e2e1
SSDEEP

3072:5YZX/bz/SBkux79qk9CVooH9vMvgIiCNORe8rsZe5bf:5oSf7hyZZMTiUmM

Score

N/A

Malware Config

Signatures

Files

85ee355b659a73fb1712d45de29267767fc0989eaf15e6db2e3061fa946bf0e1
.dll windows x86

150d6098623690d31132d53318e66091

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
OpenProcessToken

shell32

RealShellExecuteW
DoEnvironmentSubstW
CheckEscapesW
RegenerateUserEnvironment

kernel32

lstrlenW
lstrcpyW
lstrcmpiW
VirtualProtect
VirtualFree
CloseHandle
CreateThread
DeleteFileA
ExitProcess
ExitThread
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetFileSize
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetTickCount
GetWindowsDirectoryW
LoadLibraryA
LocalAlloc
LocalFree
LocalLock
LocalUnlock
SetCurrentDirectoryW
SetPriorityClass
VirtualAlloc

msvcrt

exit
_initterm
_exit
_controlfp
_cexit
_c_exit
_adjust_fdiv
__setusermatherr
__set_app_type
__p__fmode
__p__commode
__initenv
__getmainargs
_XcptFilter
_except_handler3

user32

wsprintfW
UpdateWindow
TranslateMessage
TileChildWindows
SwitchToThisWindow
ShowWindow
ShowCursor
SetWindowPos
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetCursor
SendMessageW
SendDlgItemMessageW
RegisterHotKey
ArrangeIconicWindows
CascadeChildWindows
CharNextW
CreateDialogParamW
DestroyWindow
DispatchMessageW
EnableWindow
EndTask
GetCursorPos
GetDesktopWindow
GetDlgItem
GetDlgItemTextW
GetKeyState
GetLastActivePopup
GetMessageW
GetSystemMetrics
GetWindow
GetWindowLongW
GetWindowRect
GetWindowThreadProcessId
InternalGetWindowText
IsDialogMessageW
IsWindow
IsWindowVisible
LoadCursorW
LoadStringW
MessageBeep
MessageBoxW
PostMessageW
PostQuitMessage

Exports

Exports

MessageBoxChecked
SteamAPI_RestartApp
SteamGameServerStats
SteamGameServerUtils

Sections

.text
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 89KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

150d6098623690d31132d53318e66091

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

shell32

kernel32

msvcrt

user32

Exports

Exports

Sections

.text Size: 31KB - Virtual size: 32KB

.rdata Size: 89KB - Virtual size: 92KB

.data Size: 18KB - Virtual size: 20KB

.rsrc Size: 4KB - Virtual size: 8KB

.text
Size: 31KB - Virtual size: 32KB

.rdata
Size: 89KB - Virtual size: 92KB

.data
Size: 18KB - Virtual size: 20KB

.rsrc
Size: 4KB - Virtual size: 8KB