05c7de2df585620f5fdd55afd1c78e51f1bdbb85f074f18abe726cd5dc0f1a0a

General

Target

05c7de2df585620f5fdd55afd1c78e51f1bdbb85f074f18abe726cd5dc0f1a0a
Size

400KB
MD5

42cf1770658ec3c5a853715da99dc040
SHA1

09df10c953e5ff4eb7c8a8d9e8ae65c4d0a7a913
SHA256

05c7de2df585620f5fdd55afd1c78e51f1bdbb85f074f18abe726cd5dc0f1a0a
SHA512

eae78933d00e1bc9253274433a7572c26eabbb2c21a0b4b7eb6348b351575dbe8bdeb7802a38191421fcc6c5dc4b78b7228ccb7e24acd6d9675f1c34ad08118d
SSDEEP

6144:7T4waPZBgFoaE2NNSKavBMwZm8sRw85ajFz528gK6:H4LIvSJKew45bg

Score

N/A

Malware Config

Signatures

Files

05c7de2df585620f5fdd55afd1c78e51f1bdbb85f074f18abe726cd5dc0f1a0a
.dll windows x86

d9d402fe89d0d95389a4013409ebaba3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

tier0

Error
g_pMemAlloc
GetCPUInformation
Warning
Plat_Realloc
Plat_Alloc
Plat_Free

kernel32

WideCharToMultiByte
CloseHandle
FlushFileBuffers
RtlUnwind
SetStdHandle
LCMapStringW
LCMapStringA
UnhandledExceptionFilter
LoadLibraryA
GetProcAddress
GetModuleHandleA
FreeLibrary
GetCommandLineA
GetVersion
GetCurrentDirectoryA
GetFullPathNameA
GetDriveTypeA
ExitProcess
TerminateProcess
GetCurrentProcess
RaiseException
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetStringTypeW
GetEnvironmentStrings
GetEnvironmentStringsW
DisableThreadLibraryCalls
WriteFile
GetLastError
SetFilePointer
GetCPInfo
GetACP
GetOEMCP
MultiByteToWideChar
GetStringTypeA

vstdlib

CommandLine
?Q_stristr@@YAPBDPBD0@Z
Q_strncpy
Q_snprintf
Q_strcasecmp
Q_strnicmp

Exports

Exports

CreateInterface

Sections

.text
Size: 272KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d9d402fe89d0d95389a4013409ebaba3

Headers

File Characteristics

Imports

tier0

kernel32

vstdlib

Exports

Exports

Sections

.text Size: 272KB - Virtual size: 270KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 28KB - Virtual size: 79KB

.idata Size: 4KB - Virtual size: 2KB

.reloc Size: 24KB - Virtual size: 21KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 272KB - Virtual size: 270KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 28KB - Virtual size: 79KB

.idata
Size: 4KB - Virtual size: 2KB

.reloc
Size: 24KB - Virtual size: 21KB

.rmnet
Size: 60KB - Virtual size: 60KB