3b67ee495e9329c9284189da3b91d6057b350ab33f1975f1d70a13b3418efed5

Sharing

Copy URL Twitter E-mail

General

Target

3b67ee495e9329c9284189da3b91d6057b350ab33f1975f1d70a13b3418efed5
Size

1.2MB
MD5

8269085ca13d6d37491696092fcc6e50
SHA1

4b9f900e63e280befc8532a46094a85e69192487
SHA256

3b67ee495e9329c9284189da3b91d6057b350ab33f1975f1d70a13b3418efed5
SHA512

e674acfcb015af2437852d9756ea1d680570bbc5e9c872f17fb0fe8788c3fb65d7faba7a032235926bfa6d5a7199b1dd51b7c25a91b5c824b2eb2c57beb6426f
SSDEEP

24576:fB++S1vE7jWpzvy17LLTMy8N8S4HJCgyAcaU:NevqqpQTHfa

Score

N/A

Malware Config

Signatures

Files

3b67ee495e9329c9284189da3b91d6057b350ab33f1975f1d70a13b3418efed5
.dll windows x86

bc46cd4481d14b29e9b080ff91d2f879

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Sleep
GlobalMemoryStatus
GetCurrentThreadId
InterlockedExchange
MultiByteToWideChar
WideCharToMultiByte
RaiseException
GetLastError
lstrlenA
InterlockedDecrement
OutputDebugStringA
GetModuleFileNameA
GetStdHandle
WriteFile
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlUnwind
ExitProcess
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapAlloc
GetVersionExA
HeapFree
GetCommandLineA
VirtualQuery
IsProcessorFeaturePresent
CreateThread
GetThreadLocale
ResumeThread
WaitForMultipleObjects
GetExitCodeThread
GetSystemInfo
CreateFileA
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
SetFilePointer
GetLocaleInfoA
ReadFile
InitializeCriticalSection
LoadLibraryA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
DeleteCriticalSection
GetStartupInfoA
GetFileType
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
CloseHandle
GetCurrentProcessId
GetModuleHandleA
GetProcAddress
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
TlsGetValue

user32

GetClientRect
GetParent
SendMessageA
GetWindowLongA
EnumChildWindows
DefWindowProcA
SetWindowLongA
CreateWindowExA
RegisterClassA
UnregisterClassA
DestroyWindow
EnumWindows
IsIconic
GetMonitorInfoA

ole32

CoCreateInstance
CoUninitialize
CoInitializeSecurity
CoInitialize
CoSetProxyBlanket

oleaut32

SysAllocString
SysFreeString
VariantClear
VariantInit

vstdlib

KeyValuesSystem

tier0

_AssertValidReadPtr
_AssertValidWritePtr
AssertValidStringPtr
LoggingSystem_LogAssert
CallAssertFailedNotifyFunc
ShouldUseNewAssertDialog
DoNewAssertDialog
_ExitOnFatalAssert
LoggingSystem_RegisterLoggingChannel
?DevWarning@@YAXPBDZZ
?UnlockRead@CThreadSpinRWLock@@QAEXXZ
GetCPUInformation
LoggingSystem_IsChannelEnabled
LoggingSystem_Log
?Lock@CThreadFastMutex@@ACEXII@Z
?DevMsg@@YAXPBDZZ
ThreadInMainThread
Plat_FloatTime
Plat_DebugString
Plat_GetPagedPoolInfo
Error
?ExitScope@CVProfile@@QAEXXZ
?EnterScope@CVProfile@@QAEXPBDH0_NH@Z
g_VProfCurrentProfile
?FindOrCreateCounter@CVProfile@@QAEPAHPBDW4CounterGroup_t@@@Z
Msg
g_pMemAlloc
CommandLine
Warning
?LockForRead@CThreadSpinRWLock@@QAEXXZ
?UnlockWrite@CThreadSpinRWLock@@QAEXXZ
?LockForWrite@CThreadSpinRWLock@@QAEXXZ
??0CThreadSpinRWLock@@QAE@XZ
DevMsg

d3d10

D3D10CreateDeviceAndSwapChain
D3D10ReflectShader

d3d9

Direct3DCreate9
D3DPERF_SetOptions

d3dx10_33

D3DX10CompileFromMemory
D3DXPlaneTransform
D3DXMatrixPerspectiveOffCenterRH
D3DXVec4Transform
D3DXMatrixPerspectiveRH
D3DXMatrixOrthoOffCenterRH
D3DXPlaneNormalize
D3DXMatrixInverse
D3DXMatrixMultiply
D3DXVec3TransformCoord
D3DXCreateMatrixStack
D3DXMatrixTranspose
D3DXMatrixTranslation
D3DXVec4Normalize

d3dx9_33

D3DXCompileShader
D3DXGetShaderVersion

dxgi

CreateDXGIFactory

Exports

Exports

CreateInterface

Sections

.text
Size: 488KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 396KB - Virtual size: 395KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 280KB - Virtual size: 280KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bc46cd4481d14b29e9b080ff91d2f879

Headers

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

vstdlib

tier0

d3d10

d3d9

d3dx10_33

d3dx9_33

dxgi

Exports

Exports

Sections

.text Size: 488KB - Virtual size: 484KB

.rdata Size: 396KB - Virtual size: 395KB

.data Size: 24KB - Virtual size: 243KB

.reloc Size: 44KB - Virtual size: 40KB

.text Size: 280KB - Virtual size: 280KB

.text
Size: 488KB - Virtual size: 484KB

.rdata
Size: 396KB - Virtual size: 395KB

.data
Size: 24KB - Virtual size: 243KB

.reloc
Size: 44KB - Virtual size: 40KB

.text
Size: 280KB - Virtual size: 280KB