010ce5351205615fdc6320d4f32f6801c735a976681bbf52374740e4f104deaf

General

Target

010ce5351205615fdc6320d4f32f6801c735a976681bbf52374740e4f104deaf
Size

220KB
MD5

03a56e9f39a3337c3efcb61cb9a88e43
SHA1

cb05dcc240009c8ee364436955ac2f5483e3820b
SHA256

010ce5351205615fdc6320d4f32f6801c735a976681bbf52374740e4f104deaf
SHA512

a4ff41c112758158863305be523708cfb93644699f85e079841b601f3c4b8f414375fdec93f5dbbf057253864c20c3839ca12f56ca4c4f40b2683ebc6b323102
SSDEEP

3072:GxHEh8dn3xIlOk8FNhBPkUwgmBhuvNeNQrskSrlpiYBPMQawxg4h/R6J8:GW6hIIJN7WN63rrSr5BPMQaL4/R

Score

N/A

Malware Config

Signatures

Files

010ce5351205615fdc6320d4f32f6801c735a976681bbf52374740e4f104deaf
.dll windows x86

27a43463b5e2341019b42428b75130f3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
CreateFileMappingA
DeviceIoControl
EnterCriticalSection
ExitProcess
GetCommandLineA
GetCurrentProcess
GetEnvironmentVariableA
GetModuleHandleA
GetStringTypeA
GetVersionExA
GlobalMemoryStatus
HeapAlloc
HeapCreate
HeapDestroy
InterlockedDecrement
IsBadReadPtr
MapViewOfFile
MultiByteToWideChar
RtlUnwind
SearchPathA
SetEndOfFile
SetHandleCount
SetLastError
SetThreadAffinityMask
SetUnhandledExceptionFilter

user32

SetWindowPlacement
SetScrollInfo
SetClassLongA
MoveWindow
InvalidateRect
GetWindowRect
GetWindow
GetUserObjectSecurity
GetSystemMetrics
GetPropA
GetCursorPos
ExitWindowsEx
EndDeferWindowPos
CreatePopupMenu
BeginDeferWindowPos
AppendMenuA
DrawEdge

advapi32

AllocateLocallyUniqueId
CryptGenRandom
GetTrusteeNameA
LookupPrivilegeNameW
RegisterTraceGuidsW
RegLoadKeyW

ddraw

DDInternalLock
GetDDSurfaceLocal
DirectDrawEnumerateW
DirectDrawCreate

ole32

CoCreateInstance
CoCreateObjectInContext
IsEqualGUID

Exports

Exports

GetObjectData

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27a43463b5e2341019b42428b75130f3

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ddraw

ole32

Exports

Exports

Sections

.text Size: 116KB - Virtual size: 116KB

.data Size: 92KB - Virtual size: 164KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 116KB - Virtual size: 116KB

.data
Size: 92KB - Virtual size: 164KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB