2f29b3786b7c9746ec758d0f960da3e70523f5058c9e91a17e5374cdd1e99680

General

Target

2f29b3786b7c9746ec758d0f960da3e70523f5058c9e91a17e5374cdd1e99680
Size

83KB
MD5

aefebde7619bbc1a6b4e456ecfcb227b
SHA1

744fa822f4a917abd5002e74c8f20e968d09e80b
SHA256

2f29b3786b7c9746ec758d0f960da3e70523f5058c9e91a17e5374cdd1e99680
SHA512

d5af7570826b62f55c9eb17de1a926a59836766a7daf98778b19a16a2c9b243045c6a4c71b04aa01abfedd37dc0d7f1fc6808a0dc70552c90b524dd80985044c
SSDEEP

1536:8NZ3T8POM8cgFzTLdZpScB42064qs+HvEhgx:8NZKN8cKLdnBt0BYHog

Score

N/A

Malware Config

Signatures

Files

2f29b3786b7c9746ec758d0f960da3e70523f5058c9e91a17e5374cdd1e99680
.dll windows x86

fc04b1526bc611a93034830e7812f0b3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ord766
ord31
ord816
ord454
ord91
ord788
ord708
ord595
ord822
ord53
ord800
ord804
ord803
ord813
ord479
ord112
ord480
ord340
ord657
ord457
ord196
ord807
ord164
ord336
ord160
ord721
ord313
ord359
ord306
ord305
ord447
ord446
ord600
ord219
ord315
ord399
ord443
ord269
ord724
ord460
ord722
ord669
ord723
ord302
ord437
ord141
ord783
ord716
ord266
ord441
ord439
ord754
ord665
ord297
ord361
ord478
ord208
ord202
ord327
ord194
ord515
ord282
ord195
ord284
ord770
ord751
ord662
ord697
ord465
ord468
ord462
ord362
ord365
ord681
ord186
ord477

user32

ord150
ord188
ord522
ord264
ord318
ord584
ord648
ord482
ord152
ord692
ord302

gdi32

ord74
ord357
ord153
ord85
ord32

advapi32

ord390
ord424
ord414

Exports

Exports

CreatePlayerPlugins

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 942B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 384B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc04b1526bc611a93034830e7812f0b3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 58KB - Virtual size: 58KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 9KB - Virtual size: 13KB

.idata Size: 1024B - Virtual size: 942B

.rsrc Size: 512B - Virtual size: 384B

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 58KB - Virtual size: 58KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 9KB - Virtual size: 13KB

.idata
Size: 1024B - Virtual size: 942B

.rsrc
Size: 512B - Virtual size: 384B

.reloc
Size: 5KB - Virtual size: 5KB