13eb657b00512b378e6f46d2f917568155917c6977a358052fed7beab373c493

General

Target

13eb657b00512b378e6f46d2f917568155917c6977a358052fed7beab373c493
Size

179KB
MD5

0579c6f132b24a20a0ee3143eb45f8a7
SHA1

f3d842cc5d2b55df5f274e7ed39dcd7980aff213
SHA256

13eb657b00512b378e6f46d2f917568155917c6977a358052fed7beab373c493
SHA512

402649e1bc77dca28880367f2307a96fdff51ccafb3ba71b0091edb634bda35b1093294292905e1d497d62cf97949792bb6d3924417a6237197d7b58fc335f55
SSDEEP

3072:NQnUeMEfZACBhYrf5TgwQ6W4HA4Rz+HpQHPZIyuUKM/iN9HrwOSFqg4ZEDVd6ILx:TEfbhYrNW9J0fhKHNqJFqQYIL7XNn

Score

N/A

Malware Config

Signatures

Files

13eb657b00512b378e6f46d2f917568155917c6977a358052fed7beab373c493
.dll windows x86

c718613db5a1d43af3a4284452410159

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringW
ExitProcess
GetACP
GetCommandLineA
GetCurrentProcessId
GetModuleHandleA
GetOEMCP
GetStartupInfoA
GetTimeZoneInformation
HeapAlloc
HeapCreate
HeapReAlloc
LocalFree
MultiByteToWideChar
RtlUnwind
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObject
WriteFile

user32

EnableMenuItem
KillTimer
SetWindowTextA
SetUserObjectSecurity

winmm

joyReleaseCapture
joy32Message

ole32

StringFromGUID2
CoGetMalloc
CoCreateInstance
CoCreateGuid
CoBuildVersion

advapi32

CryptGetDefaultProviderA
GetSecurityDescriptorOwner
GetServiceDisplayNameA
CryptDuplicateKey
SetEntriesInAuditListA
AccessCheckByTypeResultListAndAuditAlarmW
IsWellKnownSid

shlwapi

PathRenameExtensionA
StrTrimA
StrStrW
StrStrA
PathStripPathA
PathFindFileNameA

oleaut32

SysStringLen
SysReAllocString
SafeArrayCreate
SafeArrayAllocData
RevokeActiveObject
OleIconToCursor
GetErrorInfo
ClearCustData

Exports

Exports

D3D9ResourceGetSurfaceDimensions
EnumDevicePropertyReset
Free

Sections

.text
Size: 116KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c718613db5a1d43af3a4284452410159

Headers

File Characteristics

Imports

kernel32

user32

winmm

ole32

advapi32

shlwapi

oleaut32

Exports

Exports

Sections

.text Size: 116KB - Virtual size: 212KB

.data Size: 59KB - Virtual size: 60KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 116KB - Virtual size: 212KB

.data
Size: 59KB - Virtual size: 60KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 4KB