d6f7bff37b1f5c5c982b105ba00f449632933776a0de9cd837a7cd31854d4702

General

Target

d6f7bff37b1f5c5c982b105ba00f449632933776a0de9cd837a7cd31854d4702
Size

200KB
MD5

36a6ac654d2c91edcded3eb7ae7d79de
SHA1

bae3b8b79d2911dd1a89afc9457b9ece707e5130
SHA256

d6f7bff37b1f5c5c982b105ba00f449632933776a0de9cd837a7cd31854d4702
SHA512

2744e43f397b1fe008876114879f1d4e14415975c3f96d9a9773b34614da867a207a3e6e8b0c8cab58cc7a4a5c8d684eeb77bfc868dbc72811358a77bc4e5523
SSDEEP

3072:GdxT0HMsaoqpOwHhRmXtT2m7amcWGCmmrMWY24ZWDYNhfMoIVjTUYEX3WXcd:yTE9aoqI2pXWGCmmorVWDsfhI9GY

Score

N/A

Malware Config

Signatures

Files

d6f7bff37b1f5c5c982b105ba00f449632933776a0de9cd837a7cd31854d4702
.dll windows x86

e7bce1c7d8f3b03ce20ee5711abb7647

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringW
DeleteFileA
DeviceIoControl
ExitProcess
FileTimeToLocalFileTime
FindClose
GetCommandLineA
GetCommandLineW
GetCurrentProcess
GetDriveTypeA
GetEnvironmentStringsA
GetModuleHandleA
GetPriorityClass
GetProcAddress
GetStartupInfoA
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadContext
GetVersionExA
GlobalAlloc
GlobalMemoryStatus
HeapAlloc
HeapCreate
HeapReAlloc
IsBadReadPtr
IsDebuggerPresent
LeaveCriticalSection
MultiByteToWideChar
OutputDebugStringA
RaiseException
RtlUnwind
SetLastError
SetProcessWorkingSetSize
SetUnhandledExceptionFilter
WriteConsoleW
WriteFile
lstrcatA

user32

SetWindowPlacement
SetCursor
SendMessageTimeoutA
ScrollWindowEx
KillTimer
InvalidateRgn
GetWindowLongA
GetSysColor
GetPropA
GetMenuItemID
ExitWindowsEx
DefFrameProcA
CreateWindowExA
BeginDeferWindowPos

advapi32

ElfBackupEventLogFileW
IsValidSecurityDescriptor
BuildTrusteeWithNameA
AccessCheckAndAuditAlarmA
MakeAbsoluteSD2
RegQueryValueA
RegisterEventSourceW
SetServiceObjectSecurity
LookupAccountNameA

ddraw

DirectDrawEnumerateExW
DirectDrawEnumerateW
GetSurfaceFromDC
DDInternalLock

ole32

CoRegisterSurrogate
CreateFileMoniker
CoCreateInstance
CoGetCallContext

Exports

Exports

GetObjectData

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e7bce1c7d8f3b03ce20ee5711abb7647

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ddraw

ole32

Exports

Exports

Sections

.text Size: 128KB - Virtual size: 127KB

.data Size: 60KB - Virtual size: 151KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 128KB - Virtual size: 127KB

.data
Size: 60KB - Virtual size: 151KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB