General

Malware Config

Signatures

Files

• 9dbf567d3fe99e96a18201c213408424f30c08fcbac48e75770c3cbd4f7975a2

  .dll windows x86

  c4b7efdb28b5cb7b80a1fb03b5009a9a

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  Sleep

  GetModuleFileNameA

  VirtualQuery

  HeapAlloc

  GetProcessHeap

  GetTimeZoneInformation

  GetLocaleInfoW

  SetStdHandle

  FlushFileBuffers

  SetConsoleCtrlHandler

  ReadFile

  SetEnvironmentVariableA

  CompareStringW

  CompareStringA

  GetDateFormatA

  GetTimeFormatA

  SetFilePointer

  IsBadCodePtr

  IsBadWritePtr

  InterlockedExchange

  GetOEMCP

  GetACP

  GetStringTypeW

  GetStringTypeA

  IsValidCodePage

  IsValidLocale

  EnumSystemLocalesA

  GetLocaleInfoA

  GetUserDefaultLCID

  GetCPInfo

  LCMapStringW

  LCMapStringA

  GetSystemTimeAsFileTime

  GetCurrentProcessId

  GetCurrentThreadId

  GetTickCount

  QueryPerformanceCounter

  WriteFile

  DisableThreadLibraryCalls

  UnhandledExceptionFilter

  GetEnvironmentStringsW

  GetLastError

  FreeEnvironmentStringsW

  GetEnvironmentStrings

  FreeEnvironmentStringsA

  GetStartupInfoA

  GetFileType

  WideCharToMultiByte

  MultiByteToWideChar

  GetProcAddress

  GetModuleHandleA

  LoadLibraryA

  FreeLibrary

  LeaveCriticalSection

  InitializeCriticalSection

  DeleteCriticalSection

  IsBadReadPtr

  RtlUnwind

  RaiseException

  GetCommandLineA

  GetVersionExA

  ExitProcess

  GetDriveTypeA

  GetCurrentDirectoryA

  GetFullPathNameA

  TerminateProcess

  GetCurrentProcess

  SetUnhandledExceptionFilter

  VirtualProtect

  VirtualAlloc

  GetSystemInfo

  SetHandleCount

  GetStdHandle

  CloseHandle

  user32

  SystemParametersInfoA

  tier0

  g_pMemAlloc

  Warning

  Msg

  DevMsg

  ?DevWarning@@YAXPBDZZ

  ?DevMsg@@YAXPBDZZ

  DevWarning

  ?EnterScope@CVProfile@@QAEXPBDH0_NH@Z

  g_VProfCurrentProfile

  ?Lock@CThreadMutex@@QAEXXZ

  ?Lock@CThreadMutex@@QBEXXZ

  _AssertValidReadPtr

  _AssertValidWritePtr

  AssertValidStringPtr

  GetCPUInformation

  g_ClockSpeed

  MemAllocScratch

  MemFreeScratch

  ?FindOrCreateCounter@CVProfile@@QAEPAHPBDW4CounterGroup_t@@@Z

  _SpewInfo

  _SpewMessage

  ShouldUseNewAssertDialog

  DoNewAssertDialog

  _ExitOnFatalAssert

  CommandLine_Tier0

  Error

  ?ExitScope@CVProfile@@QAEXXZ

  vstdlib

  RandomInt

  RandomSeed

  RandomFloat

  ?AttachToStream@CGaussianRandomStream@@QAEXPAVIUniformRandomStream@@@Z

  ??0CGaussianRandomStream@@QAE@PAVIUniformRandomStream@@@Z

  ??0CUniformRandomStream@@QAE@XZ

  ?RandomFloat@CGaussianRandomStream@@QAEMMM@Z

  ?RandomFloat@CUniformRandomStream@@UAEMMM@Z

  ?SetSeed@CUniformRandomStream@@UAEXH@Z

  KeyValuesSystem

  GetCVarIF

  Exports

  Exports

  CreateInterface

  Sections

  .text

  Size: 2.7MB - Virtual size: 2.7MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 524KB - Virtual size: 523KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 88KB - Virtual size: 568KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .reloc

  Size: 304KB - Virtual size: 302KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

  .text

  Size: 196KB - Virtual size: 196KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE