7b5e30d725c591e4092cca9ec904c2d88722922f77f13b4e7191990335f047a2

General

Target

7b5e30d725c591e4092cca9ec904c2d88722922f77f13b4e7191990335f047a2
Size

346KB
MD5

61c4b49420ec90b6c3e29c01f02cb4e5
SHA1

33191dc11555df3aac95a93a35df1cf76223e57a
SHA256

7b5e30d725c591e4092cca9ec904c2d88722922f77f13b4e7191990335f047a2
SHA512

8763b868ea6bbf7dc6a644053f3e5184b3d6922d63463b634fae98195ec2b1559291b0c7e535acd4c7082fed517f0cae8ff5b634fac82f21e6c1c2916a473228
SSDEEP

6144:P9QVDiW023N+/FWGga0wjI99IbERlozpUsrjwbldUBe9Uh:PKxP9w/Lxj0nAUsrjbBe+h

Score

N/A

Malware Config

Signatures

Files

7b5e30d725c591e4092cca9ec904c2d88722922f77f13b4e7191990335f047a2
.dll windows x86

2319c40ffd615437206be38a4a2a2b0d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcsrchr
wcscpy
wcscmp
wcscat
vsprintf
strrchr
strlen
strcpy
strcat
sprintf
memset
malloc
fwrite
ftell
fseek
free
fread
fopen
floor
fclose
_wstat
_wfopen
_spawnvp
_errno
_beginthreadex
__dllonexit

winmm

aux32Message
OpenDriver

kernel32

CreateEventA
WaitForSingleObject
VirtualAlloc
Sleep
SetThreadPriority
SetThreadAffinityMask
SetEvent
ResetEvent
QueryPerformanceCounter
LoadLibraryA
LeaveCriticalSection
InitializeCriticalSection
GetTickCount
GetThreadPriority
GetSystemTimeAsFileTime
GetSystemInfo
GetProcessPriorityBoost
GetProcessAffinityMask
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
FreeLibrary
ExitProcess
EnterCriticalSection
DeleteCriticalSection
CloseHandle

Exports

Exports

CreateEffect
CreateSPMesh
CreateVolumeTextureFromFileExW
DeclaratorFromFVF
DeleteMarker
LoadVolumeFromMemory
SHRotateZ
StartRedirectMemory
mpegInSeekFrameExisting

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 158KB - Virtual size: 157KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2319c40ffd615437206be38a4a2a2b0d

Headers

File Characteristics

Imports

msvcrt

winmm

kernel32

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 158KB - Virtual size: 157KB

.data Size: 67KB - Virtual size: 67KB

.rsrc Size: 48KB - Virtual size: 47KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 158KB - Virtual size: 157KB

.data
Size: 67KB - Virtual size: 67KB

.rsrc
Size: 48KB - Virtual size: 47KB

.reloc
Size: 4KB - Virtual size: 4KB