b54da80c4828e87c56c2db1d308bbfaf74c6b74484804ac3e85ca1aca523e44d

Sharing

Copy URL Twitter E-mail

General

Target

b54da80c4828e87c56c2db1d308bbfaf74c6b74484804ac3e85ca1aca523e44d
Size

1.1MB
MD5

1fe11cecc377efd1f18706b8346a8fe2
SHA1

d635b0b4baf890c76706dae4c631ba31060b8033
SHA256

b54da80c4828e87c56c2db1d308bbfaf74c6b74484804ac3e85ca1aca523e44d
SHA512

04e17b1f01d0a3459e7cdd07f32d23a1747be3e3642425e7fb516bb94b17cc6ec54a1ae8bfbfde29e39d2125c024bd02a0820c27d3cd0d7b10694ff93e006801
SSDEEP

12288:LmHPTPDZIibdk3hsCmx0okm1WoCnf1/Hnsp97P7jpD7P74nUpInLpN7P78b8Qcf:S7tbdahsbbmdWptpjpAp+8Qcf

Score

N/A

Malware Config

Signatures

Files

b54da80c4828e87c56c2db1d308bbfaf74c6b74484804ac3e85ca1aca523e44d
.dll windows x86

22e08525aba505d3a2c1136a4b40ec8d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
QueryPerformanceFrequency
LoadResource
SizeofResource
FindResourceA
Sleep
GetCommandLineA
GetVersion
SetFilePointer
SetStdHandle
CloseHandle
GetStringTypeA
LCMapStringW
GetStringTypeW
IsBadCodePtr
IsBadWritePtr
LCMapStringA
SetUnhandledExceptionFilter
IsBadReadPtr
WriteFile
WideCharToMultiByte
FlushFileBuffers
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetOEMCP
MultiByteToWideChar
GetCPInfo
VirtualAlloc
GetACP
HeapCreate
HeapDestroy
VirtualFree
GetFileType
GetStdHandle
GetStartupInfoA
HeapFree
HeapSize
SetHandleCount
LoadLibraryA
HeapReAlloc
GetCurrentProcess
TerminateProcess
QueryPerformanceCounter
RtlUnwind
HeapAlloc
GetLastError
GetProcAddress
GetModuleHandleA
ExitProcess

glide2x

_grTexCalcMemRequired@16
_grTexSource@16
_grTexDownloadMipMap@16
_grTexMinAddress@4
_grAADrawLine@8
_grTexMaxAddress@4
_grDrawPolygonVertexList@8
_grSstQueryHardware@4
_grSstControl@4
_grDrawTriangle@12
_grSstOrigin@4
_grBufferClear@12
_grBufferSwap@4
_grAlphaTestFunction@4
_grAlphaBlendFunction@16
_grAlphaCombine@20
_grColorMask@8
_grAlphaTestReferenceValue@4
_grColorCombine@20
_grDepthBiasLevel@4
_grConstantColorValue@4
_grCullMode@4
_grDepthMask@4
_grDepthBufferFunction@4
_grDepthBufferMode@4
_grFogMode@4
_grDitherMode@4
_grFogColorValue@4
_grTexDetailControl@16
_grTexClampMode@12
_grTexCombine@28
_grTexMipMapMode@12
_grTexFilterMode@12
_grTexLodBiasValue@8
_grClipWindow@16
_grGlideSetState@4
_grGlideGetState@4

Exports

Exports

_fxSplash@20
_fxSplashInit@24
_fxSplashPlug@16
_fxSplashShutdown@0

Sections

.text
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1004KB - Virtual size: 1004KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

22e08525aba505d3a2c1136a4b40ec8d

Headers

File Characteristics

Imports

kernel32

glide2x

Exports

Exports

Sections

.text Size: 49KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 11KB - Virtual size: 1.0MB

.rsrc Size: 1004KB - Virtual size: 1004KB

.reloc Size: 9KB - Virtual size: 8KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 49KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 11KB - Virtual size: 1.0MB

.rsrc
Size: 1004KB - Virtual size: 1004KB

.reloc
Size: 9KB - Virtual size: 8KB

.rmnet
Size: 56KB - Virtual size: 60KB