00f09eb9fe6d69c572368ad16cd4017dfcce99771a17f89d49b2b975dafeb237

General

Target

00f09eb9fe6d69c572368ad16cd4017dfcce99771a17f89d49b2b975dafeb237
Size

56KB
MD5

e3a8f4ddf23e1ec02cb2c7019c690a4f
SHA1

c3c4a5c2dd3408aad850de0b61e6f83f6776b7ea
SHA256

00f09eb9fe6d69c572368ad16cd4017dfcce99771a17f89d49b2b975dafeb237
SHA512

d2663d453227d27948ab5a0550dc24ecbbfa4f656548ec85587c84b011bae6b8115ad6db34ac91e3ebb7642dbde314d7be18c6459cdea96e47a37d8460f671ee
SSDEEP

768:5wtqSDwlIiQfNvrmTcJ82+kwSohROdey+Gg9iB9kFnNLgyLW7pFo9/p:5wtqK5rmTcJr+Som6NLhLIo

Score

N/A

Malware Config

Signatures

Files

00f09eb9fe6d69c572368ad16cd4017dfcce99771a17f89d49b2b975dafeb237
.dll windows x86

2a256417a077dd16934fc3618cee5838

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

user32

wsprintfA

kernel32

GetPrivateProfileIntA
WritePrivateProfileStringA
InterlockedDecrement
InterlockedIncrement
RtlUnwind
GetCommandLineA
GetVersion
GetProcAddress
GetModuleHandleA
HeapFree
HeapAlloc
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ExitProcess
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
HeapReAlloc
IsBadWritePtr
GetCPInfo
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
LoadLibraryA

Exports

Exports

CloseStream
CopySettings
CreateSettingsWindow
Free
Initialize
LoadPreset
OpenStream
PlugInInfo
ProcessStream
SavePreset
SetStreamCallBack

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a256417a077dd16934fc3618cee5838

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 13KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 13KB

.reloc
Size: 4KB - Virtual size: 3KB