11a677a6bc89e14a2e9b90d04fd7dea80124d14d57f42411108f52cd4bb90bbe

General

Target

11a677a6bc89e14a2e9b90d04fd7dea80124d14d57f42411108f52cd4bb90bbe
Size

339KB
MD5

4ddb7b7b947171253d01bd025536be63
SHA1

a97bbd8b5b66acf18390cdaba0a72d2aee411d56
SHA256

11a677a6bc89e14a2e9b90d04fd7dea80124d14d57f42411108f52cd4bb90bbe
SHA512

1a63c3d28082df254d340d4e32d28abeffc0719b1a911363b1b4f06e002476eb0eab911edb986d98db3a0dff993c3a76fb9e227156e4dee7666d56966375ac63
SSDEEP

6144:SoBcee7M9kbbY8tBMmi54S6/hkdhscDstvj1+A966m:hqYkbbpSmi54S6WhZCvp/6l

Score

N/A

Malware Config

Signatures

Files

11a677a6bc89e14a2e9b90d04fd7dea80124d14d57f42411108f52cd4bb90bbe
.dll windows x86

2319c40ffd615437206be38a4a2a2b0d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcsrchr
wcscpy
wcscmp
wcscat
vsprintf
strrchr
strlen
strcpy
strcat
sprintf
memset
malloc
fwrite
ftell
fseek
free
fread
fopen
floor
fclose
_wstat
_wfopen
_spawnvp
_errno
_beginthreadex
__dllonexit

winmm

aux32Message
OpenDriver

kernel32

CreateEventA
WaitForSingleObject
VirtualAlloc
Sleep
SetThreadPriority
SetThreadAffinityMask
SetEvent
ResetEvent
QueryPerformanceCounter
LoadLibraryA
LeaveCriticalSection
InitializeCriticalSection
GetTickCount
GetThreadPriority
GetSystemTimeAsFileTime
GetSystemInfo
GetProcessPriorityBoost
GetProcessAffinityMask
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
FreeLibrary
ExitProcess
EnterCriticalSection
DeleteCriticalSection
CloseHandle

Exports

Exports

LoadMarkers
ParsePageControl
PlaneTransform

Sections

.text
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2319c40ffd615437206be38a4a2a2b0d

Headers

File Characteristics

Imports

msvcrt

winmm

kernel32

Exports

Exports

Sections

.text Size: 65KB - Virtual size: 65KB

.rdata Size: 137KB - Virtual size: 136KB

.data Size: 67KB - Virtual size: 67KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 65KB - Virtual size: 65KB

.rdata
Size: 137KB - Virtual size: 136KB

.data
Size: 67KB - Virtual size: 67KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 4KB - Virtual size: 3KB