79bd24679509a1b7cb0bbc395a071602546165fdb42b1cbdfc7fd4e81eb81719

General

Target

79bd24679509a1b7cb0bbc395a071602546165fdb42b1cbdfc7fd4e81eb81719
Size

375KB
MD5

20b546a2a24c41374c28d513a943d743
SHA1

54b84ca93687376abb53a51bfd1dac8d545a48f2
SHA256

79bd24679509a1b7cb0bbc395a071602546165fdb42b1cbdfc7fd4e81eb81719
SHA512

89465a08446eeb435b6eabd4f1510657a196884d5a9e6da9cb04e44dbc5085cbb6df52f78536c47833c68799e3b4d16e7c17bb1abd90c325a281a3f71cbb151c
SSDEEP

6144:0cjdZ9l6L3hi/CrSUhiJS+f/alRUJA20eNbTsVg3DnLzuPX+XJ/tK6VOiyzJaVCf:0M0eC+AIS+f2UJH0Yig3DLzSX+Jt9NIP

Score

N/A

Malware Config

Signatures

Files

79bd24679509a1b7cb0bbc395a071602546165fdb42b1cbdfc7fd4e81eb81719
.dll windows x86

b57d13133806303ddbf23debff061b47

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
ImpersonateAnonymousToken

ole32

CoTaskMemFree
StringFromCLSID

kernel32

lstrlenW
WideCharToMultiByte
WaitForSingleObject
CloseHandle
CreateFileA
CreateProcessA
DeleteCriticalSection
DosDateTimeToFileTime
EnterCriticalSection
ExitProcess
FreeLibrary
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableA
GetLastError
GetLocaleInfoA
GetLongPathNameA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetShortPathNameA
GetStartupInfoA
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetVersionExA
GlobalUnWire
HeapReAlloc
InitializeCriticalSection
InterlockedExchange
LoadLibraryA
QueryInformationJobObject
QueryPerformanceCounter
QueryPerformanceFrequency
VirtualAlloc

Exports

Exports

LoadVolumeFromVolume
MatrixDecompose
SHDot
SHEvalSphericalLight
SchemaIsClassAContainer

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 187KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b57d13133806303ddbf23debff061b47

Headers

File Characteristics

Imports

advapi32

ole32

kernel32

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 66KB

.rdata Size: 187KB - Virtual size: 186KB

.data Size: 70KB - Virtual size: 71KB

.rsrc Size: 47KB - Virtual size: 46KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 67KB - Virtual size: 66KB

.rdata
Size: 187KB - Virtual size: 186KB

.data
Size: 70KB - Virtual size: 71KB

.rsrc
Size: 47KB - Virtual size: 46KB

.reloc
Size: 3KB - Virtual size: 3KB