f1c823f05ec0cad7380efa35ae7bfae5b6c0f3a02c2014c49dface8a6c5e2063

General

Target

f1c823f05ec0cad7380efa35ae7bfae5b6c0f3a02c2014c49dface8a6c5e2063
Size

365KB
MD5

0bca12497e708881e7258f0834d980ce
SHA1

87199d2653c825fca00b801f19caa38cb2cd5750
SHA256

f1c823f05ec0cad7380efa35ae7bfae5b6c0f3a02c2014c49dface8a6c5e2063
SHA512

622051d57feb0f8ddbbf2f489ff8a07a2ae3b2050e53e9d71625ca241ddea46249b603c62088bca76be48ae52db9663d8229b9db4cc995a7520ec722963b18cf
SSDEEP

6144:8X9vlfHp8MOp0M1sFyuuzB3mlpKU3F+zCvUlTIGNA3ccLw2phI24JUuFQtopf:8NvtpnYsjuzt6RF+Wv2TIGNA3cXofgRN

Score

N/A

Malware Config

Signatures

Files

f1c823f05ec0cad7380efa35ae7bfae5b6c0f3a02c2014c49dface8a6c5e2063
.dll windows x86

26c3781477b840e8c3082c78db9ff8f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPolyFillMode
GetStockObject
GetTextMetricsA
SelectObject
GetGlyphOutlineA
SetMapMode
SetTextColor
GetDeviceCaps
GetDIBits
EnumFontFamiliesExW
CreateFontIndirectW
CreateCompatibleBitmap
CreateCompatibleDC
SetBkColor

kernel32

GetSystemDirectoryA
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GetVersionExA
LoadLibraryA
QueryPerformanceCounter
UnregisterWait
VirtualAlloc
GetProcessPriorityBoost
GetModuleHandleA
GetCurrentProcessId
GetCommandLineA
ExitProcess
DisableThreadLibraryCalls
GetCurrentThreadId

advapi32

RegEnumValueA
RegEnumValueW
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryInfoKeyW
AddAccessAllowedAceEx

user32

FillRect
GetDC
GetDesktopWindow
GetDlgCtrlID
ReleaseDC
SystemParametersInfoA
EnumDisplayMonitors

Exports

Exports

CreateEffectFromFileExW
MatrixRotationY
PreprocessShader
QuaternionExp
SaveVolumeToFileW

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26c3781477b840e8c3082c78db9ff8f8

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

user32

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 66KB

.rdata Size: 175KB - Virtual size: 174KB

.data Size: 69KB - Virtual size: 69KB

.rsrc Size: 49KB - Virtual size: 48KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 67KB - Virtual size: 66KB

.rdata
Size: 175KB - Virtual size: 174KB

.data
Size: 69KB - Virtual size: 69KB

.rsrc
Size: 49KB - Virtual size: 48KB

.reloc
Size: 4KB - Virtual size: 3KB