a9563319049a356719f082025479e4ba7cd81fa92d3c3e600843d8bdc7dfa4d6

Sharing

Copy URL

Twitter E-mail

General

Target

a9563319049a356719f082025479e4ba7cd81fa92d3c3e600843d8bdc7dfa4d6
Size

1.8MB
MD5

46c5a5113333f039b5b9f1a71c41485a
SHA1

b0dd363ae42bcad1634a5f7d542abb3c98c6218c
SHA256

a9563319049a356719f082025479e4ba7cd81fa92d3c3e600843d8bdc7dfa4d6
SHA512

bae2f8bdff81fa264e674808c8bc026a45cf43f058dbbd5b091fffd3474af8b1e8a1afda3a54ea02dde76acca190adddc32cdb1ab775d6da1e59343b6560b807
SSDEEP

49152:FWcrfin5RxIfQMoV2eplT4QfTFMBKTEsovl:FvimfQHVB/XeMTEJ

Score

N/A

Malware Config

Signatures

Files

a9563319049a356719f082025479e4ba7cd81fa92d3c3e600843d8bdc7dfa4d6
.dll windows x86

1278d9d9257ad3606516266c8e4244a2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreateEx

gdiplus

GdipImageRotateFlip

d3d9

Direct3DCreate9

sdl

SDL_OpenAudio

version

VerQueryValueA

winmm

timeKillEvent

ffbri

ord43

iconv

libiconv

mdesu

ord17

zlib1

uncompress

kernel32

GetVersionExA
GetOEMCP
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

PeekMessageA

gdi32

SetBkMode

advapi32

RegQueryInfoKeyA

ole32

CLSIDFromString

msvcr90

free

wmvcore

WMCreateWriter

msvcp90

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@II@Z

Sections

.text
Size: - Virtual size: 4.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.panda0
Size: - Virtual size: 361KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.panda1
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 188B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1278d9d9257ad3606516266c8e4244a2

Headers

File Characteristics

Imports

ddraw

gdiplus

d3d9

sdl

version

winmm

ffbri

iconv

mdesu

zlib1

kernel32

user32

gdi32

advapi32

ole32

msvcr90

wmvcore

msvcp90

Sections

.text Size: - Virtual size: 4.9MB

.rdata Size: - Virtual size: 151KB

.data Size: - Virtual size: 128KB

.panda0 Size: - Virtual size: 361KB

.panda1 Size: 1.8MB - Virtual size: 1.8MB

.reloc Size: 512B - Virtual size: 188B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: - Virtual size: 4.9MB

.rdata
Size: - Virtual size: 151KB

.data
Size: - Virtual size: 128KB

.panda0
Size: - Virtual size: 361KB

.panda1
Size: 1.8MB - Virtual size: 1.8MB

.reloc
Size: 512B - Virtual size: 188B

.rsrc
Size: 1KB - Virtual size: 1KB