35108b0c0b77e4ad89f95c492d42749aef7a37bd0dbcb182cf1ca2411c995271

General

Target

35108b0c0b77e4ad89f95c492d42749aef7a37bd0dbcb182cf1ca2411c995271
Size

383KB
MD5

31eac85b512e3220a4532ab4baf2d8dd
SHA1

76f034cff56ba04c535395b1411a8e4168b9c631
SHA256

35108b0c0b77e4ad89f95c492d42749aef7a37bd0dbcb182cf1ca2411c995271
SHA512

1e2d3dea004f35f50b3a1ffacf4b1cc67119e61a076c4c077eb4a1ca6461a207e36a6215687f8d8aba43c2199eaba4cc4b5589cc4be484158baa76138509b717
SSDEEP

6144:PtVLktNzSsroEEpdb89KxuIrxbjTHYjvce/tt9EShtkNTw/NCiYZySorClbxjpeN:FVMNzSYHfKv3Yzcett91lNCiYZySoroX

Score

N/A

Malware Config

Signatures

Files

35108b0c0b77e4ad89f95c492d42749aef7a37bd0dbcb182cf1ca2411c995271
.dll windows x86

87499274462cf9260490001146de0960

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegEnumKeyA
RegQueryValueExA
MakeSelfRelativeSD

ole32

CoTaskMemFree
StringFromCLSID

kernel32

lstrlenW
WriteFileEx
WideCharToMultiByte
CloseHandle
CreateFileA
CreateProcessA
DeleteCriticalSection
ExitProcess
FreeLibrary
GetACP
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableA
GetLocaleInfoA
GetLongPathNameA
GetModuleFileNameA
GetModuleHandleA
GetNamedPipeInfo
GetProcAddress
GetProcessPriorityBoost
GetShortPathNameA
GetStartupInfoA
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetTimeZoneInformation
GetVersionExA
GlobalFree
InitializeCriticalSection
InterlockedExchange
LoadLibraryA
LocalLock
OpenProcess
QueryPerformanceCounter
SetThreadPriority
VirtualAlloc
WaitForSingleObject

Exports

Exports

ConvertU2TrusteeToSid
GetBuffer3i
GetDouble
GetPCDResolution
PreprocessShaderFromResourceA
ValueFree

Sections

.text
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87499274462cf9260490001146de0960

Headers

File Characteristics

Imports

advapi32

ole32

kernel32

Exports

Exports

Sections

.text Size: 71KB - Virtual size: 71KB

.rdata Size: 168KB - Virtual size: 167KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 69KB - Virtual size: 69KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 71KB - Virtual size: 71KB

.rdata
Size: 168KB - Virtual size: 167KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 69KB - Virtual size: 69KB

.reloc
Size: 4KB - Virtual size: 3KB